| |
| |||||||
Alles rund um Windows: Windows 10 - Pc extrem langsamWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
 |
11.04.2019, 20:55
| #1 |
 |  Problem: Windows 10 - Pc extrem langsam Hallo ihr lieben, ich hoffe ihr könnt mir helfen  Mein Computer braucht ewig bis er mal fertig hochgefahren ist (5 Minuten und mehr). Wenn ich dann ein Programm starten möchte, z.B Firefox, Internet Explorer dauert es ebenfalls ewig bis er ihn mal öffnet oder eine Seite die ich suche auf macht. Genau so auch bei anderen Programmen wie Steam, Discord, Ts3, Logitech Gaming Software,... Es dauert einfach alles gefühlt Jahre bis sich was bewegt. Wenn dann z.B Steam endlich mal gestartet hat und ich ein Spiel starten möchte verbringe ich wiederrum ewigkeiten mit warten bis dieses endlich beginnt. Den Computer habe ich 2014 gekauft. Also nicht mehr der neuste aber ein wenig mehr sollte man sich doch schon noch erhoffen dürfen ;( Wenn die Programme mal am laufen sind, laufen sie in der Regel auch stabiel. Hin und wieder hängen sie sich mal auf, woraufhin ich dann entweder wieder ewig warte bis es neu gestartet ist oder den Rechner neu starten muss. Ich hoffe ihr könnt mir helfen vielleicht mal ein wenig Datenmüll (z.B kaputte/alte Registrieeinträge oder ähnliches) zu beseitigen. Hier mal noch ein paar Infos zu meinem System, erstellt mit cpuz_x64: Code:
ATTFilter CPU-Z TXT Report
-------------------------------------------------------------------------
Binaries
-------------------------------------------------------------------------
CPU-Z version 1.73.0.x64
Processors
-------------------------------------------------------------------------
Number of processors 1
Number of threads 6
APICs
-------------------------------------------------------------------------
Processor 0
-- Core 0
-- Thread 0 0
-- Core 3
-- Thread 0 3
-- Core 2
-- Thread 0 2
-- Core 4
-- Thread 0 4
-- Core 5
-- Thread 0 5
-- Core 1
-- Thread 0 1
Timers
-------------------------------------------------------------------------
ACPI timer 3.580 MHz
HPET timer 14.318 MHz
Perf timer 3.433 MHz
Sys timer 1.000 KHz
Processors Information
-------------------------------------------------------------------------
Processor 1 ID = 0
Number of cores 6 (max 6)
Number of threads 6 (max 6)
Name AMD FX-6300
Codename Vishera
Specification AMD FX(tm)-6300 Six-Core Processor
Package Socket AM3+ (942)
CPUID F.2.0
Extended CPUID 15.2
Core Stepping OR-C0
Technology 32 nm
TDP Limit 95.0 Watts
Core Speed 3816.8 MHz
Multiplier x Bus Speed 19.0 x 200.9 MHz
Rated Bus speed 2209.7 MHz
Stock frequency 3500 MHz
Instructions sets MMX (+), SSE, SSE2, SSE3, SSSE3, SSE4.1, SSE4.2, SSE4A, x86-64, AMD-V, AES, AVX, XOP, FMA3, FMA4
L1 Data cache 6 x 16 KBytes, 4-way set associative, 64-byte line size
L1 Instruction cache 3 x 64 KBytes, 2-way set associative, 64-byte line size
L2 cache 3 x 2048 KBytes, 16-way set associative, 64-byte line size
L3 cache 8 MBytes, 64-way set associative, 64-byte line size
FID/VID Control yes
Min FID 7.0x
# of P-States 7
P-State FID 0x19 - VID 0x0F - IDD 17 (20.50x - 1.362 V)
P-State FID 0x16 - VID 0x16 - IDD 17 (19.00x - 1.275 V)
P-State FID 0x13 - VID 0x1E - IDD 12 (17.50x - 1.175 V)
P-State FID 0xE - VID 0x24 - IDD 9 (15.00x - 1.100 V)
P-State FID 0x9 - VID 0x2B - IDD 7 (12.50x - 1.012 V)
P-State FID 0x4 - VID 0x32 - IDD 6 (10.00x - 0.925 V)
P-State FID 0x10C - VID 0x3A - IDD 4 (7.00x - 0.825 V)
PStateReg 0x800001A8-0x00001E19
PStateReg 0x800001A8-0x00002C16
PStateReg 0x80000174-0x00003C13
PStateReg 0x8000015E-0x0000480E
PStateReg 0x8000014A-0x00005609
PStateReg 0x80000138-0x00006404
PStateReg 0x80000125-0x0000744C
PStateReg 0x00000000-0x00000000
Package Type 0x1
Model 00
String 1 0x0
String 2 0x0
Page 0x0
Base TDP 13 Watts
Boosted P-States 2
Max non-turbo ratio 17.50x
Max turbo ratio 20.50x
TSC 3515.5 MHz
APERF 3817.0 MHz
Attached device PCI device at bus 0, device 24, function 0
100 00000000 00000000 00000000 00000000
110 00000000 00000000 00000000 00000000
120 00000000 00000000 00000000 00000000
130 000000C1 00000000 00000000 00000000
140 00000000 00000000 00000000 00000000
150 00073900 00000000 00000000 00000000
160 00000000 00000000 00000000 0066E066
170 00000109 00000000 00000000 00000000
180 00000000 00000000 00000000 00000000
190 00000000 00000000 00000000 00000000
1A0 80000003 00000000 00000000 00000000
1B0 00000000 00000000 00000000 00000000
1C0 00000000 00000000 00000000 00000000
1D0 00000000 00000000 00000000 0000003E
1E0 00000000 00000000 00000000 00000000
1F0 00000000 00000000 00000000 00000000
Attached device PCI device at bus 0, device 24, function 1
100 00000000 00000000 00000000 00000000
110 00000000 00000000 00000000 00000000
120 00000000 00000047 00000000 00000000
130 00000000 00000000 00000000 00000000
140 00000000 00000000 00000000 00000000
150 00000000 00000000 00000000 00000000
160 00000000 00000000 00000000 00000000
170 00000000 00000000 00000000 00000000
180 00000000 00000000 00000000 00000000
190 00000000 00000000 00000000 00000000
1A0 00000000 00000000 00000000 00000000
1B0 00000000 00000000 00000000 00000000
1C0 00000000 00000000 00000000 00000000
1D0 00000000 00000000 00000000 00000000
1E0 00000000 00000000 00000000 00000000
1F0 00000000 00000000 00000000 00000000
Attached device PCI device at bus 0, device 24, function 2
100 00000000 00003E51 00000000 00000000
110 00000500 00000000 0440A424 0CE00F41
120 00FCECFD 00000000 00000000 00000000
130 82070BEF 327C012F 97F9C166 F37813B3
140 00000001 00000109 00000000 00000000
150 00000000 00000000 00000000 00000000
160 01F83EE0 00000000 00000000 00000000
170 00000000 00000000 00020000 18240038
180 0000000A 00800004 3C000000 00020000
190 0B010000 0F580892 8D0F4007 00000000
1A0 031D0200 00000000 00000000 00000000
1B0 0FC39001 480F7D26 00000000 00000000
1C0 00000000 00000000 00000000 00000000
1D0 00000000 00000000 00000000 00000000
1E0 00000000 00000000 00000000 00000000
1F0 00000000 00000000 00000000 00000000
Attached device PCI device at bus 0, device 24, function 3
100 00000000 00000000 00000000 00000000
110 00000000 00000000 00000000 00000000
120 00000000 00000000 00000000 00000000
130 00000000 00000000 00000000 00000000
140 00A11755 00000055 0000C12A 00000000
150 00000000 00000000 00000000 00000000
160 C0000000 00000000 C0000000 00000000
170 C0000000 00000000 00000000 00000009
180 017003E3 00000000 08000210 00000000
190 00000000 00000000 00780400 00000000
1A0 00034144 00000000 00000000 00000000
1B0 018F2320 00000000 08141000 00000000
1C0 00000000 0003CCCC 00000000 00000100
1D0 00000000 00000000 002B170F 00000000
1E0 00000000 80001387 00000011 00000010
1F0 00080000 00000000 00000000 004C074F
Attached device PCI device at bus 0, device 24, function 4
100 00000000 00000321 00000000 0085014C
110 000FE001 00000000 0007000B 00000000
120 00000000 00000000 00000500 00000000
130 00000000 00000000 00000000 00000000
140 1159C931 0000034D 23A2DC39 0000079D
150 00000B68 00B4B490 00000000 00000089
160 00600F20 00000003 00000000 00000277
170 00000000 00000000 00000000 00000000
180 E000530F 00001005 00000000 00000000
190 00000000 00000000 00000000 00000000
1A0 00000015 00000000 00000000 00000000
1B0 00000000 00000000 00350182 00000000
1C0 000000C6 00000110 00000000 00000090
1D0 00080000 0000FFFF 00000000 00000000
1E0 0B501E19 0B502C16 0AE83C13 0ABC480E
1F0 0A945609 0A706404 0A4A744C 00000000
Attached device PCI device at bus 0, device 24, function 5
100 00000000 00000000 00000000 00000000
110 00000000 00000000 00000000 00000000
120 00001111 80000000 0000913A 00000000
130 00000000 00000000 00000000 00000000
140 00000000 00000000 00000000 00000000
150 00000000 00000000 00000000 00000000
160 0000800D 00000000 00000000 00000000
170 00000608 00020030 00000000 00000000
180 00000000 00000000 00000000 00000000
190 2233457A 0000000B 00202020 00000000
1A0 00000000 00000000 00000000 00000000
1B0 00000000 00000000 00000000 00000000
1C0 00000000 00000000 00000000 00000000
1D0 00000000 00000000 00000000 00000000
1E0 00000000 00000000 00000000 00000000
1F0 00000000 00000000 00000000 00000000
Temperature 1 43°C (108°F) [0x2A] (Package)
Power 0 30.80 W (Package)
Thread dumps
-------------------------------------------------------------------------
CPU Thread 0
APIC ID 0
Topology Processor ID 0, Core ID 0, Thread ID 0
Type 02040008h
Max CPUID level 0000000Dh
Max CPUID ext. level 8000001Eh
Cache descriptor Level 1, D, 16 KB, 1 thread(s)
Cache descriptor Level 1, I, 64 KB, 2 thread(s)
Cache descriptor Level 2, U, 2 MB, 2 thread(s)
Cache descriptor Level 3, U, 8 MB, 6 thread(s)
CPUID
0x00000000 0x0000000D 0x68747541 0x444D4163 0x69746E65
0x00000001 0x00600F20 0x00060800 0x3E98320B 0x178BFBFF
0x00000002 0x00000000 0x00000000 0x00000000 0x00000000
0x00000003 0x00000000 0x00000000 0x00000000 0x00000000
0x00000004 0x00000000 0x00000000 0x00000000 0x00000000
0x00000005 0x00000040 0x00000040 0x00000003 0x00000000
0x00000006 0x00000000 0x00000000 0x00000001 0x00000000
0x00000007 0x00000000 0x00000008 0x00000000 0x00000000
0x00000008 0x00000000 0x00000000 0x00000000 0x00000000
0x00000009 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000A 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000B 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000D 0x00000007 0x00000340 0x000003C0 0x40000000
0x80000000 0x8000001E 0x68747541 0x444D4163 0x69746E65
0x80000001 0x00600F20 0x10000000 0x01EBBFFF 0x2FD3FBFF
0x80000002 0x20444D41 0x74285846 0x362D296D 0x20303033
0x80000003 0x2D786953 0x65726F43 0x6F725020 0x73736563
0x80000004 0x2020726F 0x20202020 0x20202020 0x00202020
0x80000005 0xFF40FF18 0xFF40FF30 0x10040140 0x40020140
0x80000006 0x64006400 0x64004200 0x08008140 0x0040C140
0x80000007 0x00000000 0x00000000 0x00000000 0x000007D9
0x80000008 0x00003030 0x00000000 0x00004005 0x00000000
0x80000009 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000A 0x00000001 0x00010000 0x00000000 0x00001CFF
0x8000000B 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000D 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000E 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000F 0x00000000 0x00000000 0x00000000 0x00000000
0x80000010 0x00000000 0x00000000 0x00000000 0x00000000
0x80000011 0x00000000 0x00000000 0x00000000 0x00000000
0x80000012 0x00000000 0x00000000 0x00000000 0x00000000
0x80000013 0x00000000 0x00000000 0x00000000 0x00000000
0x80000014 0x00000000 0x00000000 0x00000000 0x00000000
0x80000015 0x00000000 0x00000000 0x00000000 0x00000000
0x80000016 0x00000000 0x00000000 0x00000000 0x00000000
0x80000017 0x00000000 0x00000000 0x00000000 0x00000000
0x80000018 0x00000000 0x00000000 0x00000000 0x00000000
0x80000019 0xF040F018 0x64006400 0x00000000 0x00000000
0x8000001A 0x00000003 0x00000000 0x00000000 0x00000000
0x8000001B 0x000000FF 0x00000000 0x00000000 0x00000000
0x8000001C 0x00000000 0x80032013 0x00010200 0x8000000F
0x8000001D 0x00000121 0x00C0003F 0x0000003F 0x00000000
0x8000001D 0x00004122 0x0040003F 0x000001FF 0x00000000
0x8000001D 0x00004143 0x03C0003F 0x000007FF 0x00000001
0x8000001D 0x00014163 0x0FC0003F 0x000007FF 0x00000001
0x8000001E 0x00000000 0x00000100 0x00000000 0x00000000
MSR 0x0000001B 0x00000000 0xFEE00900
MSR 0xC0010114 0x00000000 0x00000018
MSR 0xC0010061 0x00000000 0x00000040
MSR 0xC0010062 0x00000000 0x00000000
MSR 0xC0010063 0x00000000 0x00000000
MSR 0xC0010064 0x800001A8 0x00001E19
MSR 0xC0010065 0x800001A8 0x00002C16
MSR 0xC0010066 0x80000174 0x00003C13
MSR 0xC0010067 0x8000015E 0x0000480E
MSR 0xC0010068 0x8000014A 0x00005609
MSR 0xC0010058 0x00000000 0xE0000001
MSR 0xC0010015 0x00000000 0x09000010
MSR 0xC001001F 0x00404000 0x00810008
MSR 0xC0010071 0x02000006 0x40023C13
MSR 0xC0010070 0x00000000 0x40023C13
CPU Thread 1
APIC ID 3
Topology Processor ID 0, Core ID 3, Thread ID 0
Type 02040008h
Max CPUID level 0000000Dh
Max CPUID ext. level 8000001Eh
Cache descriptor Level 1, D, 16 KB, 1 thread(s)
Cache descriptor Level 1, I, 64 KB, 2 thread(s)
Cache descriptor Level 2, U, 2 MB, 2 thread(s)
Cache descriptor Level 3, U, 8 MB, 6 thread(s)
CPUID
0x00000000 0x0000000D 0x68747541 0x444D4163 0x69746E65
0x00000001 0x00600F20 0x03060800 0x3E98320B 0x178BFBFF
0x00000002 0x00000000 0x00000000 0x00000000 0x00000000
0x00000003 0x00000000 0x00000000 0x00000000 0x00000000
0x00000004 0x00000000 0x00000000 0x00000000 0x00000000
0x00000005 0x00000040 0x00000040 0x00000003 0x00000000
0x00000006 0x00000000 0x00000000 0x00000001 0x00000000
0x00000007 0x00000000 0x00000008 0x00000000 0x00000000
0x00000008 0x00000000 0x00000000 0x00000000 0x00000000
0x00000009 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000A 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000B 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000D 0x00000007 0x00000340 0x000003C0 0x40000000
0x80000000 0x8000001E 0x68747541 0x444D4163 0x69746E65
0x80000001 0x00600F20 0x10000000 0x01EBBFFF 0x2FD3FBFF
0x80000002 0x20444D41 0x74285846 0x362D296D 0x20303033
0x80000003 0x2D786953 0x65726F43 0x6F725020 0x73736563
0x80000004 0x2020726F 0x20202020 0x20202020 0x00202020
0x80000005 0xFF40FF18 0xFF40FF30 0x10040140 0x40020140
0x80000006 0x64006400 0x64004200 0x08008140 0x0040C140
0x80000007 0x00000000 0x00000000 0x00000000 0x000007D9
0x80000008 0x00003030 0x00000000 0x00004005 0x00000000
0x80000009 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000A 0x00000001 0x00010000 0x00000000 0x00001CFF
0x8000000B 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000D 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000E 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000F 0x00000000 0x00000000 0x00000000 0x00000000
0x80000010 0x00000000 0x00000000 0x00000000 0x00000000
0x80000011 0x00000000 0x00000000 0x00000000 0x00000000
0x80000012 0x00000000 0x00000000 0x00000000 0x00000000
0x80000013 0x00000000 0x00000000 0x00000000 0x00000000
0x80000014 0x00000000 0x00000000 0x00000000 0x00000000
0x80000015 0x00000000 0x00000000 0x00000000 0x00000000
0x80000016 0x00000000 0x00000000 0x00000000 0x00000000
0x80000017 0x00000000 0x00000000 0x00000000 0x00000000
0x80000018 0x00000000 0x00000000 0x00000000 0x00000000
0x80000019 0xF040F018 0x64006400 0x00000000 0x00000000
0x8000001A 0x00000003 0x00000000 0x00000000 0x00000000
0x8000001B 0x000000FF 0x00000000 0x00000000 0x00000000
0x8000001C 0x00000000 0x80032013 0x00010200 0x8000000F
0x8000001D 0x00000121 0x00C0003F 0x0000003F 0x00000000
0x8000001D 0x00004122 0x0040003F 0x000001FF 0x00000000
0x8000001D 0x00004143 0x03C0003F 0x000007FF 0x00000001
0x8000001D 0x00014163 0x0FC0003F 0x000007FF 0x00000001
0x8000001E 0x00000001 0x00000101 0x00000000 0x00000000
MSR 0x0000001B 0x00000000 0xFEE00800
MSR 0xC0010114 0x00000000 0x00000018
MSR 0xC0010061 0x00000000 0x00000040
MSR 0xC0010062 0x00000000 0x00000000
MSR 0xC0010063 0x00000000 0x00000000
MSR 0xC0010064 0x800001A8 0x00001E19
MSR 0xC0010065 0x800001A8 0x00002C16
MSR 0xC0010066 0x80000174 0x00003C13
MSR 0xC0010067 0x8000015E 0x0000480E
MSR 0xC0010068 0x8000014A 0x00005609
MSR 0xC0010058 0x00000000 0xE0000001
MSR 0xC0010015 0x00000000 0x09000010
MSR 0xC001001F 0x00404000 0x00810008
MSR 0xC0010071 0x02000006 0x40023C13
MSR 0xC0010070 0x00000000 0x40023C13
CPU Thread 2
APIC ID 2
Topology Processor ID 0, Core ID 2, Thread ID 0
Type 02040008h
Max CPUID level 0000000Dh
Max CPUID ext. level 8000001Eh
Cache descriptor Level 1, D, 16 KB, 1 thread(s)
Cache descriptor Level 1, I, 64 KB, 2 thread(s)
Cache descriptor Level 2, U, 2 MB, 2 thread(s)
Cache descriptor Level 3, U, 8 MB, 6 thread(s)
CPUID
0x00000000 0x0000000D 0x68747541 0x444D4163 0x69746E65
0x00000001 0x00600F20 0x02060800 0x3E98320B 0x178BFBFF
0x00000002 0x00000000 0x00000000 0x00000000 0x00000000
0x00000003 0x00000000 0x00000000 0x00000000 0x00000000
0x00000004 0x00000000 0x00000000 0x00000000 0x00000000
0x00000005 0x00000040 0x00000040 0x00000003 0x00000000
0x00000006 0x00000000 0x00000000 0x00000001 0x00000000
0x00000007 0x00000000 0x00000008 0x00000000 0x00000000
0x00000008 0x00000000 0x00000000 0x00000000 0x00000000
0x00000009 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000A 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000B 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000D 0x00000007 0x00000340 0x000003C0 0x40000000
0x80000000 0x8000001E 0x68747541 0x444D4163 0x69746E65
0x80000001 0x00600F20 0x10000000 0x01EBBFFF 0x2FD3FBFF
0x80000002 0x20444D41 0x74285846 0x362D296D 0x20303033
0x80000003 0x2D786953 0x65726F43 0x6F725020 0x73736563
0x80000004 0x2020726F 0x20202020 0x20202020 0x00202020
0x80000005 0xFF40FF18 0xFF40FF30 0x10040140 0x40020140
0x80000006 0x64006400 0x64004200 0x08008140 0x0040C140
0x80000007 0x00000000 0x00000000 0x00000000 0x000007D9
0x80000008 0x00003030 0x00000000 0x00004005 0x00000000
0x80000009 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000A 0x00000001 0x00010000 0x00000000 0x00001CFF
0x8000000B 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000D 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000E 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000F 0x00000000 0x00000000 0x00000000 0x00000000
0x80000010 0x00000000 0x00000000 0x00000000 0x00000000
0x80000011 0x00000000 0x00000000 0x00000000 0x00000000
0x80000012 0x00000000 0x00000000 0x00000000 0x00000000
0x80000013 0x00000000 0x00000000 0x00000000 0x00000000
0x80000014 0x00000000 0x00000000 0x00000000 0x00000000
0x80000015 0x00000000 0x00000000 0x00000000 0x00000000
0x80000016 0x00000000 0x00000000 0x00000000 0x00000000
0x80000017 0x00000000 0x00000000 0x00000000 0x00000000
0x80000018 0x00000000 0x00000000 0x00000000 0x00000000
0x80000019 0xF040F018 0x64006400 0x00000000 0x00000000
0x8000001A 0x00000003 0x00000000 0x00000000 0x00000000
0x8000001B 0x000000FF 0x00000000 0x00000000 0x00000000
0x8000001C 0x00000000 0x80032013 0x00010200 0x8000000F
0x8000001D 0x00000121 0x00C0003F 0x0000003F 0x00000000
0x8000001D 0x00004122 0x0040003F 0x000001FF 0x00000000
0x8000001D 0x00004143 0x03C0003F 0x000007FF 0x00000001
0x8000001D 0x00014163 0x0FC0003F 0x000007FF 0x00000001
0x8000001E 0x00000002 0x00000101 0x00000000 0x00000000
MSR 0x0000001B 0x00000000 0xFEE00800
MSR 0xC0010114 0x00000000 0x00000018
MSR 0xC0010061 0x00000000 0x00000040
MSR 0xC0010062 0x00000000 0x00000000
MSR 0xC0010063 0x00000000 0x00000000
MSR 0xC0010064 0x800001A8 0x00001E19
MSR 0xC0010065 0x800001A8 0x00002C16
MSR 0xC0010066 0x80000174 0x00003C13
MSR 0xC0010067 0x8000015E 0x0000480E
MSR 0xC0010068 0x8000014A 0x00005609
MSR 0xC0010058 0x00000000 0xE0000001
MSR 0xC0010015 0x00000000 0x09000010
MSR 0xC001001F 0x00404000 0x00810008
MSR 0xC0010071 0x02000006 0x40023C13
MSR 0xC0010070 0x00000000 0x40023C13
CPU Thread 3
APIC ID 4
Topology Processor ID 0, Core ID 4, Thread ID 0
Type 02040008h
Max CPUID level 0000000Dh
Max CPUID ext. level 8000001Eh
Cache descriptor Level 1, D, 16 KB, 1 thread(s)
Cache descriptor Level 1, I, 64 KB, 2 thread(s)
Cache descriptor Level 2, U, 2 MB, 2 thread(s)
Cache descriptor Level 3, U, 8 MB, 6 thread(s)
CPUID
0x00000000 0x0000000D 0x68747541 0x444D4163 0x69746E65
0x00000001 0x00600F20 0x04060800 0x3E98320B 0x178BFBFF
0x00000002 0x00000000 0x00000000 0x00000000 0x00000000
0x00000003 0x00000000 0x00000000 0x00000000 0x00000000
0x00000004 0x00000000 0x00000000 0x00000000 0x00000000
0x00000005 0x00000040 0x00000040 0x00000003 0x00000000
0x00000006 0x00000000 0x00000000 0x00000001 0x00000000
0x00000007 0x00000000 0x00000008 0x00000000 0x00000000
0x00000008 0x00000000 0x00000000 0x00000000 0x00000000
0x00000009 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000A 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000B 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000D 0x00000007 0x00000340 0x000003C0 0x40000000
0x80000000 0x8000001E 0x68747541 0x444D4163 0x69746E65
0x80000001 0x00600F20 0x10000000 0x01EBBFFF 0x2FD3FBFF
0x80000002 0x20444D41 0x74285846 0x362D296D 0x20303033
0x80000003 0x2D786953 0x65726F43 0x6F725020 0x73736563
0x80000004 0x2020726F 0x20202020 0x20202020 0x00202020
0x80000005 0xFF40FF18 0xFF40FF30 0x10040140 0x40020140
0x80000006 0x64006400 0x64004200 0x08008140 0x0040C140
0x80000007 0x00000000 0x00000000 0x00000000 0x000007D9
0x80000008 0x00003030 0x00000000 0x00004005 0x00000000
0x80000009 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000A 0x00000001 0x00010000 0x00000000 0x00001CFF
0x8000000B 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000D 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000E 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000F 0x00000000 0x00000000 0x00000000 0x00000000
0x80000010 0x00000000 0x00000000 0x00000000 0x00000000
0x80000011 0x00000000 0x00000000 0x00000000 0x00000000
0x80000012 0x00000000 0x00000000 0x00000000 0x00000000
0x80000013 0x00000000 0x00000000 0x00000000 0x00000000
0x80000014 0x00000000 0x00000000 0x00000000 0x00000000
0x80000015 0x00000000 0x00000000 0x00000000 0x00000000
0x80000016 0x00000000 0x00000000 0x00000000 0x00000000
0x80000017 0x00000000 0x00000000 0x00000000 0x00000000
0x80000018 0x00000000 0x00000000 0x00000000 0x00000000
0x80000019 0xF040F018 0x64006400 0x00000000 0x00000000
0x8000001A 0x00000003 0x00000000 0x00000000 0x00000000
0x8000001B 0x000000FF 0x00000000 0x00000000 0x00000000
0x8000001C 0x00000000 0x80032013 0x00010200 0x8000000F
0x8000001D 0x00000121 0x00C0003F 0x0000003F 0x00000000
0x8000001D 0x00004122 0x0040003F 0x000001FF 0x00000000
0x8000001D 0x00004143 0x03C0003F 0x000007FF 0x00000001
0x8000001D 0x00014163 0x0FC0003F 0x000007FF 0x00000001
0x8000001E 0x00000003 0x00000102 0x00000000 0x00000000
MSR 0x0000001B 0x00000000 0xFEE00800
MSR 0xC0010114 0x00000000 0x00000018
MSR 0xC0010061 0x00000000 0x00000040
MSR 0xC0010062 0x00000000 0x00000000
MSR 0xC0010063 0x00000000 0x00000000
MSR 0xC0010064 0x800001A8 0x00001E19
MSR 0xC0010065 0x800001A8 0x00002C16
MSR 0xC0010066 0x80000174 0x00003C13
MSR 0xC0010067 0x8000015E 0x0000480E
MSR 0xC0010068 0x8000014A 0x00005609
MSR 0xC0010058 0x00000000 0xE0000001
MSR 0xC0010015 0x00000000 0x09000010
MSR 0xC001001F 0x00404000 0x00810008
MSR 0xC0010071 0x02000006 0x40023C13
MSR 0xC0010070 0x00000000 0x40023C13
CPU Thread 4
APIC ID 5
Topology Processor ID 0, Core ID 5, Thread ID 0
Type 02040008h
Max CPUID level 0000000Dh
Max CPUID ext. level 8000001Eh
Cache descriptor Level 1, D, 16 KB, 1 thread(s)
Cache descriptor Level 1, I, 64 KB, 2 thread(s)
Cache descriptor Level 2, U, 2 MB, 2 thread(s)
Cache descriptor Level 3, U, 8 MB, 6 thread(s)
CPUID
0x00000000 0x0000000D 0x68747541 0x444D4163 0x69746E65
0x00000001 0x00600F20 0x05060800 0x3E98320B 0x178BFBFF
0x00000002 0x00000000 0x00000000 0x00000000 0x00000000
0x00000003 0x00000000 0x00000000 0x00000000 0x00000000
0x00000004 0x00000000 0x00000000 0x00000000 0x00000000
0x00000005 0x00000040 0x00000040 0x00000003 0x00000000
0x00000006 0x00000000 0x00000000 0x00000001 0x00000000
0x00000007 0x00000000 0x00000008 0x00000000 0x00000000
0x00000008 0x00000000 0x00000000 0x00000000 0x00000000
0x00000009 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000A 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000B 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000D 0x00000007 0x00000340 0x000003C0 0x40000000
0x80000000 0x8000001E 0x68747541 0x444D4163 0x69746E65
0x80000001 0x00600F20 0x10000000 0x01EBBFFF 0x2FD3FBFF
0x80000002 0x20444D41 0x74285846 0x362D296D 0x20303033
0x80000003 0x2D786953 0x65726F43 0x6F725020 0x73736563
0x80000004 0x2020726F 0x20202020 0x20202020 0x00202020
0x80000005 0xFF40FF18 0xFF40FF30 0x10040140 0x40020140
0x80000006 0x64006400 0x64004200 0x08008140 0x0040C140
0x80000007 0x00000000 0x00000000 0x00000000 0x000007D9
0x80000008 0x00003030 0x00000000 0x00004005 0x00000000
0x80000009 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000A 0x00000001 0x00010000 0x00000000 0x00001CFF
0x8000000B 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000D 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000E 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000F 0x00000000 0x00000000 0x00000000 0x00000000
0x80000010 0x00000000 0x00000000 0x00000000 0x00000000
0x80000011 0x00000000 0x00000000 0x00000000 0x00000000
0x80000012 0x00000000 0x00000000 0x00000000 0x00000000
0x80000013 0x00000000 0x00000000 0x00000000 0x00000000
0x80000014 0x00000000 0x00000000 0x00000000 0x00000000
0x80000015 0x00000000 0x00000000 0x00000000 0x00000000
0x80000016 0x00000000 0x00000000 0x00000000 0x00000000
0x80000017 0x00000000 0x00000000 0x00000000 0x00000000
0x80000018 0x00000000 0x00000000 0x00000000 0x00000000
0x80000019 0xF040F018 0x64006400 0x00000000 0x00000000
0x8000001A 0x00000003 0x00000000 0x00000000 0x00000000
0x8000001B 0x000000FF 0x00000000 0x00000000 0x00000000
0x8000001C 0x00000000 0x80032013 0x00010200 0x8000000F
0x8000001D 0x00000121 0x00C0003F 0x0000003F 0x00000000
0x8000001D 0x00004122 0x0040003F 0x000001FF 0x00000000
0x8000001D 0x00004143 0x03C0003F 0x000007FF 0x00000001
0x8000001D 0x00014163 0x0FC0003F 0x000007FF 0x00000001
0x8000001E 0x00000004 0x00000102 0x00000000 0x00000000
MSR 0x0000001B 0x00000000 0xFEE00800
MSR 0xC0010114 0x00000000 0x00000018
MSR 0xC0010061 0x00000000 0x00000040
MSR 0xC0010062 0x00000000 0x00000000
MSR 0xC0010063 0x00000000 0x00000000
MSR 0xC0010064 0x800001A8 0x00001E19
MSR 0xC0010065 0x800001A8 0x00002C16
MSR 0xC0010066 0x80000174 0x00003C13
MSR 0xC0010067 0x8000015E 0x0000480E
MSR 0xC0010068 0x8000014A 0x00005609
MSR 0xC0010058 0x00000000 0xE0000001
MSR 0xC0010015 0x00000000 0x09000010
MSR 0xC001001F 0x00404000 0x00810008
MSR 0xC0010071 0x01000006 0x40012C16
MSR 0xC0010070 0x00000000 0x40012C16
CPU Thread 5
APIC ID 1
Topology Processor ID 0, Core ID 1, Thread ID 0
Type 02040008h
Max CPUID level 0000000Dh
Max CPUID ext. level 8000001Eh
Cache descriptor Level 1, D, 16 KB, 1 thread(s)
Cache descriptor Level 1, I, 64 KB, 2 thread(s)
Cache descriptor Level 2, U, 2 MB, 2 thread(s)
Cache descriptor Level 3, U, 8 MB, 6 thread(s)
CPUID
0x00000000 0x0000000D 0x68747541 0x444D4163 0x69746E65
0x00000001 0x00600F20 0x01060800 0x3E98320B 0x178BFBFF
0x00000002 0x00000000 0x00000000 0x00000000 0x00000000
0x00000003 0x00000000 0x00000000 0x00000000 0x00000000
0x00000004 0x00000000 0x00000000 0x00000000 0x00000000
0x00000005 0x00000040 0x00000040 0x00000003 0x00000000
0x00000006 0x00000000 0x00000000 0x00000001 0x00000000
0x00000007 0x00000000 0x00000008 0x00000000 0x00000000
0x00000008 0x00000000 0x00000000 0x00000000 0x00000000
0x00000009 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000A 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000B 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000D 0x00000007 0x00000340 0x000003C0 0x40000000
0x80000000 0x8000001E 0x68747541 0x444D4163 0x69746E65
0x80000001 0x00600F20 0x10000000 0x01EBBFFF 0x2FD3FBFF
0x80000002 0x20444D41 0x74285846 0x362D296D 0x20303033
0x80000003 0x2D786953 0x65726F43 0x6F725020 0x73736563
0x80000004 0x2020726F 0x20202020 0x20202020 0x00202020
0x80000005 0xFF40FF18 0xFF40FF30 0x10040140 0x40020140
0x80000006 0x64006400 0x64004200 0x08008140 0x0040C140
0x80000007 0x00000000 0x00000000 0x00000000 0x000007D9
0x80000008 0x00003030 0x00000000 0x00004005 0x00000000
0x80000009 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000A 0x00000001 0x00010000 0x00000000 0x00001CFF
0x8000000B 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000D 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000E 0x00000000 0x00000000 0x00000000 0x00000000
0x8000000F 0x00000000 0x00000000 0x00000000 0x00000000
0x80000010 0x00000000 0x00000000 0x00000000 0x00000000
0x80000011 0x00000000 0x00000000 0x00000000 0x00000000
0x80000012 0x00000000 0x00000000 0x00000000 0x00000000
0x80000013 0x00000000 0x00000000 0x00000000 0x00000000
0x80000014 0x00000000 0x00000000 0x00000000 0x00000000
0x80000015 0x00000000 0x00000000 0x00000000 0x00000000
0x80000016 0x00000000 0x00000000 0x00000000 0x00000000
0x80000017 0x00000000 0x00000000 0x00000000 0x00000000
0x80000018 0x00000000 0x00000000 0x00000000 0x00000000
0x80000019 0xF040F018 0x64006400 0x00000000 0x00000000
0x8000001A 0x00000003 0x00000000 0x00000000 0x00000000
0x8000001B 0x000000FF 0x00000000 0x00000000 0x00000000
0x8000001C 0x00000000 0x80032013 0x00010200 0x8000000F
0x8000001D 0x00000121 0x00C0003F 0x0000003F 0x00000000
0x8000001D 0x00004122 0x0040003F 0x000001FF 0x00000000
0x8000001D 0x00004143 0x03C0003F 0x000007FF 0x00000001
0x8000001D 0x00014163 0x0FC0003F 0x000007FF 0x00000001
0x8000001E 0x00000005 0x00000100 0x00000000 0x00000000
MSR 0x0000001B 0x00000000 0xFEE00800
MSR 0xC0010114 0x00000000 0x00000018
MSR 0xC0010061 0x00000000 0x00000040
MSR 0xC0010062 0x00000000 0x00000000
MSR 0xC0010063 0x00000000 0x00000000
MSR 0xC0010064 0x800001A8 0x00001E19
MSR 0xC0010065 0x800001A8 0x00002C16
MSR 0xC0010066 0x80000174 0x00003C13
MSR 0xC0010067 0x8000015E 0x0000480E
MSR 0xC0010068 0x8000014A 0x00005609
MSR 0xC0010058 0x00000000 0xE0000001
MSR 0xC0010015 0x00000000 0x09000010
MSR 0xC001001F 0x00404000 0x00810008
MSR 0xC0010071 0x02000006 0x40023C13
MSR 0xC0010070 0x00000000 0x40023C13
Chipset
-------------------------------------------------------------------------
Northbridge AMD 780G rev. 00
Southbridge AMD SB700 rev. 00
Graphic Interface PCI-Express
PCI-E Link Width x16
PCI-E Max Link Width x16
Memory Type DDR3
Memory Size 8 GBytes
Channels Single
Memory Frequency 803.5 MHz (1:4)
CAS# latency (CL) 11.0
RAS# to CAS# delay (tRCD) 11
RAS# Precharge (tRP) 11
Cycle Time (tRAS) 28
Bank Cycle Time (tRC) 39
Uncore Frequency 2008.8 MHz
Memory SPD
-------------------------------------------------------------------------
DIMM # 1
SMBus address 0x50
Memory type DDR3
Module format UDIMM
Manufacturer (ID) Crucial Technology (7F7F7F7F7F9B00000000)
Size 8192 MBytes
Max bandwidth PC3-12800 (800 MHz)
Part number CT102464BA160B.C16
Serial number 12360000
Number of banks 8
Nominal Voltage 1.50 Volts
EPP no
XMP no
AMP no
JEDEC timings table CL-tRCD-tRP-tRAS-tRC @ frequency
JEDEC #1 6.0-6-6-16-22 @ 457 MHz
JEDEC #2 7.0-7-7-19-26 @ 533 MHz
JEDEC #3 8.0-8-8-22-30 @ 609 MHz
JEDEC #4 9.0-9-9-24-33 @ 685 MHz
JEDEC #5 10.0-10-10-27-37 @ 761 MHz
JEDEC #6 11.0-11-11-28-39 @ 800 MHz
DIMM # 1
SPD registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 92 11 0B 02 04 21 00 09 03 52 01 08 0A 00 FC 00
10 69 78 69 30 69 11 18 81 60 09 3C 3C 00 F0 82 05
20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
30 00 00 00 00 00 00 00 00 00 00 00 00 0F 11 01 01
40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
50 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
60 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
70 00 00 00 00 00 85 9B 48 00 00 12 36 00 00 6F 8F
80 43 54 31 30 32 34 36 34 42 41 31 36 30 42 2E 43
90 31 36 01 00 80 2C 00 00 00 00 00 00 00 00 00 00
A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Monitoring
-------------------------------------------------------------------------
Mainboard Model GA-78LMT-S2 (0x000002C3 - 0x4CA90AA0)
LPCIO
-------------------------------------------------------------------------
LPCIO Vendor ITE
LPCIO Model IT8728
LPCIO Vendor ID 0x90
LPCIO Chip ID 0x8728
LPCIO Revision ID 0x1
Config Mode I/O address 0x2E
Config Mode LDN 0x4
Config Mode registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00
10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20 87 28 01 00 00 01 42 10 00 80 00 48 01 00 00 00
30 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
50 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
60 02 28 00 00 00 00 00 00 00 00 00 00 00 00 00 00
70 00 02 00 00 04 04 00 00 00 00 00 00 00 00 00 00
Register space LPC, base address = 0x0228
Hardware Monitors
-------------------------------------------------------------------------
Hardware monitor ITE IT8728
Voltage 0 1.22 Volts [0x66] (CPU VCORE)
Voltage 1 1.50 Volts [0x7D] (VIN1)
Voltage 2 2.02 Volts [0xA8] (+3.3V)
Voltage 3 2.76 Volts [0x89] (+5V)
Voltage 4 7.92 Volts [0xA5] (+12V)
Voltage 5 -8.88 Volts [0xB9] (-12V)
Voltage 6 -8.88 Volts [0xB9] (-5V)
Voltage 7 2.78 Volts [0x8A] (+5V VCCH)
Voltage 8 1.40 Volts [0x75] (VBAT)
Temperature 0 31°C (87°F) [0x1F] (TMPIN0)
Temperature 1 53°C (127°F) [0x35] (TMPIN1)
Temperature 2 58°C (136°F) [0x3A] (TMPIN2)
Fan 0 3041 RPM [0xDE] (FANIN0)
Fan 1 977 RPM [0x2B3] (FANIN1)
Fan PWM 0 99 pc [0x7F] (FANPWM0)
Fan PWM 1 99 pc [0x7F] (FANPWM1)
Fan PWM 2 0 pc [0x0] (FANPWM2)
Register space LPC, base address = 0x0228
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 11 10 00 00 FF FF 00 37 FF 87 48 0F 07 DE B2 FF
10 FF FF FF 76 D7 7F 7F 82 00 02 FF FF FF FF FF FF
20 66 7D A8 89 A5 B9 B9 8A 75 1F 35 3A B9 C3 C0 C0
30 FF 00 FF 00 FF 00 FF 00 FF 00 FF 00 FF 00 FF 00
40 7F 7F 7F 7F 7F 7F 5F 40 AD 6A D4 00 FF FF FF FF
50 FF CE 7F 7F 7F C0 FD FD 90 00 3E 12 60 00 00 00
60 00 14 41 4E 20 03 0F FF 7F 7F 7F 80 00 00 0F FF
70 00 14 41 40 20 03 0F FF FF FF FF FF FF FF FF FF
80 00 00 00 00 00 00 00 00 00 00 00 00 00 B2 00 87
90 FF 00 00 00 FF 00 00 00 42 99 00 00 01 09 F2 3A
A0 6A 6C 6C 6C 6C 6C 6C FF FF FF FF FF FF FF FF FF
B0 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
C0 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
D0 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
E0 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
F0 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
Hardware monitor NVIDIA I/O
Fan PWM 0 0 pc [0x0] (FANPWMIN0)
Hardware monitor NVIDIA NVAPI
Voltage 0 0.95 Volts [0x3B6] (VIN0)
Power 0 4.77 pc (GPU)
Temperature 0 31°C (87°F) [0x1F] (TMPIN0)
Fan PWM 0 33 pc [0x21] (FANPWMIN0)
Clock Speed 0 1019.50 MHz [0x3FB] (Graphics)
Clock Speed 1 2700.00 MHz [0x3FB] (Memory)
PCI Devices
-------------------------------------------------------------------------
Register space PCI Express, base address = 0x0E0000000
Description Host Bridge
Location bus 0 (0x00), device 0 (0x00), function 0 (0x00)
Common header
Vendor ID 0x1022
Model ID 0x9600
Revision ID 0x00
PI 0x00
SubClass 0x00
BaseClass 0x06
Cache Line 0x00
Latency 0x20
Header 0x00
PCI header
Address 3 (memory) 0xE0000000
Subvendor ID 0x1022
Subsystem ID 0x9600
Int. Line 0x00
Int. Pin 0x00
PCI capability
Caps class HyperTransport
Caps offset 0xC4
Caps revision 3.00
Interface type Slave/Primary
Link 0 width (in/out) 16 bits/16 bits
Link 0 frequency 2200 MHz
Link 1 width (in/out) 8 bits/8 bits
Link 1 frequency 200 MHz
PCI capability
Caps class HyperTransport
Caps offset 0x54
Interface type Clumping
PCI capability
Caps class HyperTransport
Caps offset 0x40
Interface type Retry Mode
PCI capability
Caps class HyperTransport
Caps offset 0x9C
Interface type Gen3
PCI capability
Caps class HyperTransport
Caps offset 0xF8
Interface type Power Management
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 22 10 00 96 06 00 30 22 00 00 00 06 00 20 00 00
10 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00 E0
20 00 00 00 00 00 00 00 00 00 00 00 00 22 10 00 96
30 00 00 00 00 C4 00 00 00 00 00 00 00 00 00 00 00
40 08 9C 00 C0 C1 00 00 00 11 00 00 00 42 20 05 00
50 22 10 00 96 08 40 00 90 08 10 05 00 00 00 3C 5E
60 7F 00 00 00 00 00 00 00 00 02 20 00 09 C0 86 85
70 00 00 00 00 00 00 00 00 D0 3F 0F 00 01 00 00 20
80 00 00 00 00 10 00 00 03 20 3A 00 00 31 20 00 00
90 00 00 00 C0 7F 00 00 00 00 00 00 00 08 F8 7C D0
A0 26 00 74 00 00 00 00 05 00 00 00 00 79 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 80 08 54 80 01 20 00 11 11 D0 00 00 00
D0 60 0C 75 1E 02 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 FF FF FF FF 0C 02 00 00 00 00 00 0F
F0 00 00 00 00 00 80 80 00 08 00 00 E0 00 00 00 00
Description PCI to PCI Bridge
Location bus 0 (0x00), device 2 (0x02), function 0 (0x00)
Common header
Vendor ID 0x1022
Model ID 0x9603
Revision ID 0x00
PI 0x00
SubClass 0x04
BaseClass 0x06
Cache Line 0x10
Latency 0x00
Header 0x01
PCI header
Primary bus 0x00
Secondary bus 0x01
Int. Line 0x0A
Int. Pin 0x01
PCI capability
Caps class Power Management
Caps offset 0x50
Caps version 1.2
PCI capability
Caps class PCI Express
Caps offset 0x58
Device type Root Port of PCI-E Root Complex
Port 0
Version 2.0
Physical slot #0
Presence detect yes
Link width 16x (max 16x)
PCI capability
Caps class Message Signalled Interrupts
Caps offset 0xA0
PCI capability
Caps class Subsystem Vendor
Caps offset 0xB0
SubVendor ID 0x1022
SubSystem ID 0x9600
PCI capability
Caps class HyperTransport
Caps offset 0xB8
Interface type MSI Mapping
Extended capabilities
Caps class Vendor Specific
Caps offset 0x100
Vendor ID 1
Size 16
Caps class Virtual Channel
Caps offset 0x110
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 22 10 03 96 07 04 10 00 00 00 04 06 10 00 01 00
10 00 00 00 00 00 00 00 00 00 01 01 00 E1 E1 00 20
20 00 FB F0 FC 01 C0 F1 DF 00 00 00 00 00 00 00 00
30 00 00 00 00 50 00 00 00 00 00 00 00 0A 01 18 00
40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
50 01 58 03 C8 00 00 00 00 10 A0 42 01 20 80 00 00
60 10 08 00 00 02 0D 30 00 40 00 01 F1 80 25 14 00
70 00 00 48 01 00 00 01 00 00 00 00 00 00 00 00 00
80 00 00 00 00 00 00 00 00 42 00 01 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 05 B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 0D B8 00 00 22 10 00 96 08 00 03 A8 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 FF FF FF FF 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100 0B 00 01 11 01 00 01 01 00 00 00 00 00 00 00 00
110 02 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00
120 01 00 00 00 FF 00 00 80 00 00 00 00 01 00 00 00
130 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description PCI to PCI Bridge
Location bus 0 (0x00), device 6 (0x06), function 0 (0x00)
Common header
Vendor ID 0x1022
Model ID 0x9606
Revision ID 0x00
PI 0x00
SubClass 0x04
BaseClass 0x06
Cache Line 0x10
Latency 0x00
Header 0x01
PCI header
Primary bus 0x00
Secondary bus 0x02
Int. Line 0x0A
Int. Pin 0x01
PCI capability
Caps class Power Management
Caps offset 0x50
Caps version 1.2
PCI capability
Caps class PCI Express
Caps offset 0x58
Device type Root Port of PCI-E Root Complex
Port 3
Version 2.0
Physical slot #0
Presence detect yes
Link width 1x (max 1x)
PCI capability
Caps class Message Signalled Interrupts
Caps offset 0xA0
PCI capability
Caps class Subsystem Vendor
Caps offset 0xB0
SubVendor ID 0x1022
SubSystem ID 0x9600
PCI capability
Caps class HyperTransport
Caps offset 0xB8
Interface type MSI Mapping
Extended capabilities
Caps class Vendor Specific
Caps offset 0x100
Vendor ID 1
Size 16
Caps class Virtual Channel
Caps offset 0x110
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 22 10 06 96 07 04 10 00 00 00 04 06 10 00 01 00
10 00 00 00 00 00 00 00 00 00 02 02 00 D1 D1 00 00
20 C0 FD C0 FD F1 FD F1 FD 00 00 00 00 00 00 00 00
30 00 00 00 00 50 00 00 00 00 00 00 00 0A 01 00 00
40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
50 01 58 03 C8 00 01 00 00 10 A0 42 01 20 80 00 00
60 10 08 00 00 12 0C 30 03 40 00 11 70 80 0C 34 00
70 00 00 48 01 00 00 01 00 00 00 00 00 00 00 00 00
80 00 00 00 00 00 00 00 00 42 00 01 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 05 B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 0D B8 00 00 22 10 00 96 08 00 03 A8 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 FF FF FF FF 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100 0B 00 01 11 01 00 01 01 00 00 00 00 00 00 00 00
110 02 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00
120 01 00 00 00 FF 00 00 80 00 00 00 00 01 00 00 00
130 00 00 00 00 00 00 02 00 00 00 00 00 00 00 00 00
Description IDE Controller
Location bus 0 (0x00), device 17 (0x11), function 0 (0x00)
Common header
Vendor ID 0x1002
Model ID 0x4390
Revision ID 0x00
PI 0x8F
SubClass 0x01
BaseClass 0x01
Cache Line 0x10
Latency 0x20
Header 0x00
PCI header
Address 0 (port) 0x0000FF00
Address 1 (port) 0x0000FE00
Address 2 (port) 0x0000FD00
Address 3 (port) 0x0000FC00
Address 4 (port) 0x0000FB00
Address 5 (memory) 0xFE02F000
Subvendor ID 0x1458
Subsystem ID 0xB002
Int. Line 0x16
Int. Pin 0x01
PCI capability
Caps class Power Management
Caps offset 0x60
Caps version 1.1
PCI capability
Caps class 0x12
Caps offset 0x70
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 02 10 90 43 07 00 30 02 00 8F 01 01 10 20 00 00
10 01 FF 00 00 01 FE 00 00 01 FD 00 00 01 FC 00 00
20 01 FB 00 00 00 F0 02 FE 00 00 00 00 58 14 02 B0
30 00 00 00 00 60 00 00 00 00 00 00 00 16 01 00 00
40 10 00 80 00 01 00 10 00 C0 BF 00 00 00 00 00 00
50 05 70 84 00 00 00 00 00 00 00 00 00 00 00 00 00
60 01 70 22 00 00 00 00 00 00 00 00 00 00 00 00 00
70 12 00 10 00 0F 00 00 00 00 00 00 00 00 00 00 00
80 00 00 00 00 06 00 00 2C 16 80 B4 01 16 80 B4 01
90 16 80 B4 01 16 80 B4 01 16 80 B4 01 16 80 B4 01
A0 7A A0 7A A0 7A A0 7A A0 7A A0 FE A0 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 20 00 00
E0 80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description USB Controller (OHCI)
Location bus 0 (0x00), device 18 (0x12), function 0 (0x00)
Common header
Vendor ID 0x1002
Model ID 0x4397
Revision ID 0x00
PI 0x10
SubClass 0x03
BaseClass 0x0C
Cache Line 0x10
Latency 0x20
Header 0x80
PCI header
Address 0 (memory) 0xFE02E000
Subvendor ID 0x1458
Subsystem ID 0x5004
Int. Line 0x10
Int. Pin 0x01
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 02 10 97 43 06 00 A0 02 00 10 03 0C 10 20 80 00
10 00 E0 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 58 14 04 50
30 00 00 00 00 00 00 00 00 00 00 00 00 10 01 00 00
40 80 03 00 00 11 00 00 00 00 00 00 00 00 00 00 00
50 40 13 03 F6 00 00 00 00 FF FF FF FF 00 00 00 00
60 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
70 00 00 00 00 FF 00 00 80 00 00 00 00 00 00 00 00
80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description USB Controller (OHCI)
Location bus 0 (0x00), device 18 (0x12), function 1 (0x01)
Common header
Vendor ID 0x1002
Model ID 0x4398
Revision ID 0x00
PI 0x10
SubClass 0x03
BaseClass 0x0C
Cache Line 0x10
Latency 0x20
Header 0x00
PCI header
Address 0 (memory) 0xFE02D000
Subvendor ID 0x1458
Subsystem ID 0x5004
Int. Line 0x10
Int. Pin 0x01
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 02 10 98 43 06 00 A0 02 00 10 03 0C 10 20 00 00
10 00 D0 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 58 14 04 50
30 00 00 00 00 00 00 00 00 00 00 00 00 10 01 00 00
40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
50 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
60 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description USB 2.0 Controller (EHCI)
Location bus 0 (0x00), device 18 (0x12), function 2 (0x02)
Common header
Vendor ID 0x1002
Model ID 0x4396
Revision ID 0x00
PI 0x20
SubClass 0x03
BaseClass 0x0C
Cache Line 0x10
Latency 0x20
Header 0x00
PCI header
Address 0 (memory) 0xFE02C000
Subvendor ID 0x1458
Subsystem ID 0x5004
Int. Line 0x11
Int. Pin 0x02
PCI capability
Caps class Power Management
Caps offset 0xC0
Caps version 1.1
PCI capability
Caps class Debug Port
Caps offset 0xE4
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 02 10 96 43 06 00 B0 02 00 20 03 0C 10 20 00 00
10 00 C0 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 58 14 04 50
30 00 00 00 00 C0 00 00 00 00 00 00 00 11 02 00 00
40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
50 D8 01 9E 82 00 00 00 00 00 00 00 00 00 00 00 00
60 20 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00
70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 01 00 00 01 00 20 00 C0 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 01 E4 02 7E 00 00 40 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 0A 00 E0 20 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description USB Controller (OHCI)
Location bus 0 (0x00), device 19 (0x13), function 0 (0x00)
Common header
Vendor ID 0x1002
Model ID 0x4397
Revision ID 0x00
PI 0x10
SubClass 0x03
BaseClass 0x0C
Cache Line 0x10
Latency 0x20
Header 0x80
PCI header
Address 0 (memory) 0xFE02B000
Subvendor ID 0x1458
Subsystem ID 0x5004
Int. Line 0x12
Int. Pin 0x01
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 02 10 97 43 06 00 A0 02 00 10 03 0C 10 20 80 00
10 00 B0 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 58 14 04 50
30 00 00 00 00 00 00 00 00 00 00 00 00 12 01 00 00
40 80 03 00 00 11 00 00 00 00 00 00 00 00 00 00 00
50 40 13 03 F6 00 00 00 00 FF FF FF FF 00 00 00 00
60 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
70 00 00 00 00 FF 00 00 80 00 00 00 00 00 00 00 00
80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description USB Controller (OHCI)
Location bus 0 (0x00), device 19 (0x13), function 1 (0x01)
Common header
Vendor ID 0x1002
Model ID 0x4398
Revision ID 0x00
PI 0x10
SubClass 0x03
BaseClass 0x0C
Cache Line 0x10
Latency 0x20
Header 0x00
PCI header
Address 0 (memory) 0xFE02A000
Subvendor ID 0x1458
Subsystem ID 0x5004
Int. Line 0x12
Int. Pin 0x01
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 02 10 98 43 06 00 A0 02 00 10 03 0C 10 20 00 00
10 00 A0 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 58 14 04 50
30 00 00 00 00 00 00 00 00 00 00 00 00 12 01 00 00
40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
50 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
60 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description USB 2.0 Controller (EHCI)
Location bus 0 (0x00), device 19 (0x13), function 2 (0x02)
Common header
Vendor ID 0x1002
Model ID 0x4396
Revision ID 0x00
PI 0x20
SubClass 0x03
BaseClass 0x0C
Cache Line 0x10
Latency 0x20
Header 0x00
PCI header
Address 0 (memory) 0xFE029000
Subvendor ID 0x1458
Subsystem ID 0x5004
Int. Line 0x13
Int. Pin 0x02
PCI capability
Caps class Power Management
Caps offset 0xC0
Caps version 1.1
PCI capability
Caps class Debug Port
Caps offset 0xE4
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 02 10 96 43 06 00 B0 02 00 20 03 0C 10 20 00 00
10 00 90 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 58 14 04 50
30 00 00 00 00 C0 00 00 00 00 00 00 00 13 02 00 00
40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
50 D8 01 9E 82 00 00 00 00 00 00 00 00 00 00 00 00
60 20 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00
70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 01 00 00 01 00 20 00 C0 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 01 E4 02 7E 00 00 40 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 0A 00 E0 20 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description SMBus Controller
Location bus 0 (0x00), device 20 (0x14), function 0 (0x00)
Common header
Vendor ID 0x1002
Model ID 0x4385
Revision ID 0x3C
PI 0x00
SubClass 0x05
BaseClass 0x0C
Cache Line 0x00
Latency 0x00
Header 0x80
PCI header
Subvendor ID 0x1458
Subsystem ID 0x4385
Int. Line 0x00
Int. Pin 0x00
PCI capability
Caps class HyperTransport
Caps offset 0xB0
Interface type MSI Mapping
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 02 10 85 43 03 04 30 C2 3C 00 05 0C 00 00 80 00
10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 58 14 85 43
30 00 00 00 00 B0 00 00 00 00 00 00 00 00 00 00 00
40 44 EB 00 1C 00 00 00 00 0F FF 00 00 00 00 00 80
50 F0 01 F0 0E F0 0F F0 0F 21 0B F0 0F 80 00 10 00
60 01 00 24 20 BF FC 9E 03 FF 90 00 00 20 00 00 00
70 00 00 00 00 08 00 C0 FE FF 6E 00 00 00 00 F0 07
80 F0 0A F0 0F 00 00 00 00 00 00 00 00 00 00 00 00
90 01 0B 00 00 F9 DE FF 00 00 00 00 00 00 00 00 00
A0 00 00 FF FF 7F FF F0 09 00 FF 08 02 02 49 60 18
B0 08 00 02 A8 00 00 D0 FE 00 00 00 00 F0 0F 08 1A
C0 09 60 E0 DF 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 20 99 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 D8 0C 00 00 00 00 44 00 00 00 00 00 AA 00 10 00
Description IDE Controller
Location bus 0 (0x00), device 20 (0x14), function 1 (0x01)
Common header
Vendor ID 0x1002
Model ID 0x439C
Revision ID 0x00
PI 0x8A
SubClass 0x01
BaseClass 0x01
Cache Line 0x10
Latency 0x20
Header 0x00
PCI header
Address 4 (port) 0x0000FA00
Subvendor ID 0x1458
Subsystem ID 0x5002
Int. Line 0xFF
Int. Pin 0x01
PCI capability
Caps class Message Signalled Interrupts
Caps offset 0x70
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 02 10 9C 43 05 00 30 02 00 8A 01 01 10 20 00 00
10 01 00 00 00 01 00 00 00 01 00 00 00 01 00 00 00
20 01 FA 00 00 00 00 00 00 00 00 00 00 58 14 02 50
30 00 00 00 00 70 00 00 00 00 00 00 00 FF 01 00 00
40 20 99 99 20 20 FF FF 20 00 00 40 04 00 00 00 00
50 00 00 00 00 06 00 50 06 00 00 00 00 00 00 00 00
60 00 00 40 26 10 2C 01 07 01 00 00 00 FF FF 0F 00
70 05 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00
80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description Multimedia device
Location bus 0 (0x00), device 20 (0x14), function 2 (0x02)
Common header
Vendor ID 0x1002
Model ID 0x4383
Revision ID 0x00
PI 0x00
SubClass 0x03
BaseClass 0x04
Cache Line 0x10
Latency 0x20
Header 0x00
PCI header
Address 0 (memory) 0xFE024000
Subvendor ID 0x1458
Subsystem ID 0xA002
Int. Line 0x10
Int. Pin 0x01
PCI capability
Caps class Power Management
Caps offset 0x50
Caps version 1.1
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 02 10 83 43 06 00 10 04 00 00 03 04 10 20 00 00
10 04 40 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 58 14 02 A0
30 00 00 00 00 50 00 00 00 00 00 00 00 10 01 00 00
40 00 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00
50 01 00 42 C8 00 00 00 00 00 00 00 00 00 00 00 00
60 05 00 80 00 00 00 00 00 00 00 00 00 00 00 00 00
70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description PCI to ISA Bridge
Location bus 0 (0x00), device 20 (0x14), function 3 (0x03)
Common header
Vendor ID 0x1002
Model ID 0x439D
Revision ID 0x00
PI 0x00
SubClass 0x01
BaseClass 0x06
Cache Line 0x00
Latency 0x00
Header 0x80
PCI header
Subvendor ID 0x1002
Subsystem ID 0x439D
Int. Line 0x00
Int. Pin 0x00
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 02 10 9D 43 0F 00 20 02 00 00 01 06 00 00 80 00
10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 02 10 9D 43
30 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
40 04 00 00 00 D5 FF 03 FF 3F FF 40 00 00 00 00 00
50 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
60 00 00 00 00 00 0A 00 00 0E 00 0F 00 B8 FF FF FF
70 67 45 23 00 00 00 00 00 1C 00 00 00 05 0A 00 00
80 08 00 03 A8 00 00 00 00 00 00 00 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 08 01 00 00 00
A0 02 00 C1 FE 2F 00 00 00 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 E9 F2 FF 00 00
C0 00 00 00 00 00 00 08 00 F7 FF FF FF 00 00 00 78
D0 00 FF FF 00 00 00 00 FF FF FF FF 00 00 00 00 0C
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description PCI to PCI Bridge
Location bus 0 (0x00), device 20 (0x14), function 4 (0x04)
Common header
Vendor ID 0x1002
Model ID 0x4384
Revision ID 0x00
PI 0x01
SubClass 0x04
BaseClass 0x06
Cache Line 0x00
Latency 0x40
Header 0x81
PCI header
Primary bus 0x00
Secondary bus 0x03
Int. Line 0x00
Int. Pin 0x00
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 02 10 84 43 27 04 A0 02 00 01 04 06 00 40 81 00
10 00 00 00 00 00 00 00 00 00 03 03 40 C0 C0 80 22
20 E0 FD E0 FD D0 FD D0 FD 00 00 00 00 00 00 00 00
30 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
40 26 00 2C FF 00 00 00 00 0C 0F 3D D1 00 01 00 00
50 01 00 00 00 08 00 03 A8 00 00 00 00 85 00 FF FF
60 CA 0E 17 00 BA D8 10 00 00 00 00 00 00 00 00 00
70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 01 00 02 06
E0 00 00 80 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description USB Controller (OHCI)
Location bus 0 (0x00), device 20 (0x14), function 5 (0x05)
Common header
Vendor ID 0x1002
Model ID 0x4399
Revision ID 0x00
PI 0x10
SubClass 0x03
BaseClass 0x0C
Cache Line 0x10
Latency 0x20
Header 0x00
PCI header
Address 0 (memory) 0xFE028000
Subvendor ID 0x1458
Subsystem ID 0x5004
Int. Line 0x12
Int. Pin 0x03
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 02 10 99 43 06 00 A0 02 00 10 03 0C 10 20 00 00
10 00 80 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 58 14 04 50
30 00 00 00 00 00 00 00 00 00 00 00 00 12 03 00 00
40 80 01 00 00 11 00 00 00 00 00 00 00 00 00 00 00
50 40 13 1F F6 00 00 00 00 FF FF FF FF 00 00 00 00
60 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
70 00 00 00 00 FF 00 00 80 00 00 00 00 00 00 00 00
80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description Host Bridge
Location bus 0 (0x00), device 24 (0x18), function 0 (0x00)
Common header
Vendor ID 0x1022
Model ID 0x1600
Revision ID 0x00
PI 0x00
SubClass 0x00
BaseClass 0x06
Cache Line 0x00
Latency 0x00
Header 0x80
PCI header
Subvendor ID 0x0000
Subsystem ID 0x0000
Int. Line 0x00
Int. Pin 0x00
PCI capability
Caps class HyperTransport
Caps offset 0x80
Caps revision 3.00
Interface type Host/Secondary
Device number 0
Link 0 width (in/out) 16 bits/16 bits
Link 0 frequency 2200 MHz
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 22 10 00 16 00 00 10 00 00 00 00 06 00 00 80 00
10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
30 00 00 00 00 80 00 00 00 00 00 00 00 00 00 00 00
40 01 02 04 00 01 02 04 00 01 02 04 00 01 02 04 00
50 01 02 04 00 01 02 04 00 01 02 04 00 01 02 04 00
60 00 00 05 00 E0 00 00 00 00 B8 4E 02 00 0E 80 00
70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
80 08 00 01 21 20 A0 11 11 60 0C F5 FF 13 00 00 00
90 EE 02 84 80 00 00 03 00 07 00 00 00 3E 00 00 00
A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description Host Bridge
Location bus 0 (0x00), device 24 (0x18), function 1 (0x01)
Common header
Vendor ID 0x1022
Model ID 0x1601
Revision ID 0x00
PI 0x00
SubClass 0x00
BaseClass 0x06
Cache Line 0x00
Latency 0x00
Header 0x80
PCI header
Subvendor ID 0x0000
Subsystem ID 0x0000
Int. Line 0x00
Int. Pin 0x00
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 22 10 01 16 00 00 00 00 00 00 00 06 00 00 80 00
10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
30 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
40 03 00 00 00 00 00 3F 02 00 00 00 00 01 00 00 00
50 00 00 00 00 02 00 00 00 00 00 00 00 03 00 00 00
60 00 00 00 00 04 00 00 00 00 00 00 00 05 00 00 00
70 00 00 00 00 06 00 00 00 00 00 00 00 07 00 00 00
80 03 0A 00 00 00 0B 00 00 00 00 00 00 00 00 00 00
90 03 00 C0 00 00 FF DF 00 00 00 00 00 00 00 00 00
A0 00 00 00 00 00 00 00 00 03 00 F0 00 00 02 FE 00
B0 03 00 E0 00 80 3F E0 00 00 00 00 00 00 00 00 00
C0 13 C0 00 00 00 F0 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 03 00 00 03 00 00 00 00 00 00 00 00 00 00 00 00
F0 03 40 00 C0 00 00 00 00 00 00 00 00 00 00 00 00
Description Host Bridge
Location bus 0 (0x00), device 24 (0x18), function 2 (0x02)
Common header
Vendor ID 0x1022
Model ID 0x1602
Revision ID 0x00
PI 0x00
SubClass 0x00
BaseClass 0x06
Cache Line 0x00
Latency 0x00
Header 0x80
PCI header
Subvendor ID 0x0000
Subsystem ID 0x0000
Int. Line 0x00
Int. Pin 0x00
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 22 10 02 16 00 00 00 00 00 00 00 06 00 00 80 00
10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
30 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
40 01 00 00 00 09 01 00 00 00 00 00 00 00 00 00 00
50 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
60 E0 3E F8 01 00 00 00 00 00 00 00 00 00 00 00 00
70 00 00 00 00 00 00 00 00 00 00 02 00 38 00 24 18
80 0A 00 00 00 04 00 80 00 00 00 00 3C 00 00 02 00
90 00 00 01 0B 92 08 58 0F 07 40 0F 8D 00 00 00 00
A0 00 02 1D 03 00 00 00 00 00 00 00 00 00 00 00 00
B0 4B EE 55 4D 86 00 00 00 0C 0F C7 10 16 EE 72 F0
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 0F 3F 7F CE EF 70 C7 CF 8B 80 E1 62 07 07 59 03
E0 1F BB 6B B0 ED F3 29 0F A5 60 F0 FF EF 67 00 E2
F0 00 00 00 00 00 00 00 00 DB C9 9E 80 68 55 15 00
Description Host Bridge
Location bus 0 (0x00), device 24 (0x18), function 3 (0x03)
Common header
Vendor ID 0x1022
Model ID 0x1603
Revision ID 0x00
PI 0x00
SubClass 0x00
BaseClass 0x06
Cache Line 0x00
Latency 0x00
Header 0x80
PCI header
Subvendor ID 0x0000
Subsystem ID 0x0000
Int. Line 0x00
Int. Pin 0x00
PCI capability
Caps class Secure Device
Caps offset 0xF0
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 22 10 03 16 00 00 10 00 00 00 00 06 00 00 80 00
10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
30 00 00 00 00 F0 00 00 00 00 00 00 00 00 00 00 00
40 FF FF FF FF 44 00 B0 4A 00 00 00 00 00 00 00 00
50 00 00 00 00 00 00 00 00 00 00 00 10 00 00 00 00
60 00 00 00 00 05 00 38 46 00 00 00 60 52 00 01 10
70 55 11 17 10 11 21 17 00 12 0E 20 00 16 0F 0D 04
80 81 E2 0B E2 E2 00 E2 01 08 00 81 00 00 40 40 00
90 40 00 00 00 7F 6F 00 00 00 F7 13 CC 00 00 00 00
A0 00 08 06 A0 EF 0F 20 2B 00 00 00 D0 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 B7 D7 01 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 0F 81 C8 10 00 00 03 3A 56 47 05
E0 00 00 00 00 20 00 00 00 1E 4F F0 02 00 00 00 00
F0 0F 00 10 00 00 00 00 00 00 00 00 00 20 0F 60 00
Description Host Bridge
Location bus 0 (0x00), device 24 (0x18), function 4 (0x04)
Common header
Vendor ID 0x1022
Model ID 0x1604
Revision ID 0x00
PI 0x00
SubClass 0x00
BaseClass 0x06
Cache Line 0x00
Latency 0x00
Header 0x80
PCI header
Subvendor ID 0x0000
Subsystem ID 0x0000
Int. Line 0x00
Int. Pin 0x00
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 22 10 04 16 00 00 00 00 00 00 00 06 00 00 80 00
10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
30 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
50 00 00 00 00 FF FF 00 00 00 00 00 00 00 00 00 00
60 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description Host Bridge
Location bus 0 (0x00), device 24 (0x18), function 5 (0x05)
Common header
Vendor ID 0x1022
Model ID 0x1605
Revision ID 0x00
PI 0x00
SubClass 0x00
BaseClass 0x06
Cache Line 0x00
Latency 0x00
Header 0x80
PCI header
Subvendor ID 0x0000
Subsystem ID 0x0000
Int. Line 0x00
Int. Pin 0x00
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 22 10 05 16 00 00 00 00 00 00 00 06 00 00 80 00
10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
30 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
50 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
60 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
80 07 00 07 00 05 30 16 00 00 00 00 00 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 5E 1A 00 00 FB 19 00 00 00 00 00 00 A9 08 00 00
C0 4D 08 00 00 FC 2A 00 00 55 1D 00 00 25 81 00 00
D0 1B 19 00 00 CA 8C 00 00 CA 8C 00 00 00 00 00 00
E0 89 F3 FE 03 00 00 00 00 FC 00 4C 01 71 00 02 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description VGA Controller
Location bus 1 (0x01), device 0 (0x00), function 0 (0x00)
Common header
Vendor ID 0x10DE
Model ID 0x1380
Revision ID 0xA2
PI 0x00
SubClass 0x00
BaseClass 0x03
Cache Line 0x10
Latency 0x00
Header 0x80
PCI header
Address 0 (memory) 0xFB000000
Address 1 (memory) 0xC0000000
Address 3 (memory) 0xDE000000
Address 5 (port) 0x0000EF00
Subvendor ID 0x0000
Subsystem ID 0x0000
Int. Line 0x12
Int. Pin 0x01
PCI capability
Caps class Power Management
Caps offset 0x60
Caps version 1.2
PCI capability
Caps class Message Signalled Interrupts
Caps offset 0x68
PCI capability
Caps class PCI Express
Caps offset 0x78
Device type Legacy PCI-E Endpoint Device
Port 0
Version 2.0
Link width 16x (max 16x)
Extended capabilities
Caps class Virtual Channel
Caps offset 0x100
Caps class 0x18
Caps offset 0x250
Caps class 0x1E
Caps offset 0x258
Caps class Power Budgeting
Caps offset 0x128
Caps class Vendor Specific
Caps offset 0x600
Vendor ID 1
Size 36
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 DE 10 80 13 07 00 10 00 A2 00 00 03 10 00 80 00
10 00 00 00 FB 0C 00 00 C0 00 00 00 00 0C 00 00 DE
20 00 00 00 00 01 EF 00 00 00 00 00 00 00 00 00 00
30 00 00 00 00 60 00 00 00 00 00 00 00 12 01 00 00
40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
50 00 00 00 00 01 00 00 00 CE D6 23 00 00 00 00 00
60 01 68 03 00 08 00 00 00 05 78 80 00 00 00 00 00
70 00 00 00 00 00 00 00 00 10 00 12 00 E1 8D 2C 01
80 10 29 00 00 02 3D 45 00 40 01 01 11 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 13 08 04 00
A0 00 00 00 00 06 00 00 00 02 00 01 00 00 00 00 00
B0 00 00 00 00 09 00 14 01 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100 02 00 01 25 00 00 00 00 00 00 00 00 00 00 00 00
110 00 00 00 00 FF 00 00 80 00 00 00 00 00 00 00 00
120 00 00 00 00 00 00 00 00 04 00 01 60 00 00 00 00
130 21 81 07 00 00 00 00 00 00 00 00 00 00 00 00 00
Description Multimedia device
Location bus 1 (0x01), device 0 (0x00), function 1 (0x01)
Common header
Vendor ID 0x10DE
Model ID 0x0FBC
Revision ID 0xA1
PI 0x00
SubClass 0x03
BaseClass 0x04
Cache Line 0x10
Latency 0x00
Header 0x80
PCI header
Address 0 (memory) 0xFCFFC000
Subvendor ID 0x0000
Subsystem ID 0x0000
Int. Line 0x13
Int. Pin 0x02
PCI capability
Caps class Power Management
Caps offset 0x60
Caps version 1.2
PCI capability
Caps class Message Signalled Interrupts
Caps offset 0x68
PCI capability
Caps class PCI Express
Caps offset 0x78
Device type PCI-E Endpoint Device
Port 0
Version 2.0
Link width 16x (max 16x)
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 DE 10 BC 0F 06 00 10 00 A1 00 03 04 10 00 80 00
10 00 C0 FF FC 00 00 00 00 00 00 00 00 00 00 00 00
20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
30 00 00 00 00 60 00 00 00 00 00 00 00 13 02 00 00
40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
50 00 00 00 00 00 00 00 00 CE D6 23 00 00 00 00 00
60 01 68 03 00 08 00 00 00 05 78 80 00 00 00 00 00
70 00 00 00 00 00 00 00 00 10 00 02 00 E1 8D 2C 01
80 10 29 00 00 02 3D 45 00 43 01 01 11 00 00 00 00
90 00 00 00 00 00 00 00 00 00 00 00 00 13 08 04 00
A0 00 00 00 00 06 00 00 00 00 00 01 00 00 00 00 00
B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100 00 00 00 00 00 00 00 00 00 00 00 00 30 20 46 00
110 00 20 00 00 00 A0 00 00 00 00 00 00 00 00 00 00
120 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Description Ethernet Controller
Location bus 2 (0x02), device 0 (0x00), function 0 (0x00)
Common header
Vendor ID 0x10EC
Model ID 0x8168
Revision ID 0x06
PI 0x00
SubClass 0x00
BaseClass 0x02
Cache Line 0x10
Latency 0x00
Header 0x00
PCI header
Address 0 (port) 0x0000DE00
Address 2 (memory) 0xFDFFF000
Address 4 (memory) 0xFDFF8000
Subvendor ID 0x1458
Subsystem ID 0xE000
Int. Line 0x00
Int. Pin 0x01
PCI capability
Caps class Power Management
Caps offset 0x40
Caps version 1.2
PCI capability
Caps class Message Signalled Interrupts
Caps offset 0x50
PCI capability
Caps class PCI Express
Caps offset 0x70
Device type PCI-E Endpoint Device
Port 0
Version 2.0
Link width 1x (max 1x)
PCI capability
Caps class MSI-X
Caps offset 0xB0
PCI capability
Caps class Virtual Product Data
Caps offset 0xD0
Extended capabilities
Caps class Advanced Error Reporting
Caps offset 0x100
Caps class Virtual Channel
Caps offset 0x140
Caps class Device Serial Number
Caps offset 0x160
PCI registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 EC 10 68 81 07 04 10 00 06 00 00 02 10 00 00 00
10 01 DE 00 00 00 00 00 00 0C F0 FF FD 00 00 00 00
20 0C 80 FF FD 00 00 00 00 00 00 00 00 58 14 00 E0
30 00 00 00 00 40 00 00 00 00 00 00 00 00 01 00 00
40 01 50 C3 FF 08 01 00 00 00 00 00 00 00 00 00 00
50 05 70 80 00 00 00 00 00 00 00 00 00 00 00 00 00
60 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
70 10 B0 02 02 C0 8C 64 00 10 50 10 00 11 7C 07 00
80 40 00 11 10 00 00 00 00 00 00 00 00 00 00 00 00
90 00 00 00 00 1F 00 00 00 10 00 00 00 00 00 00 00
A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
B0 11 D0 03 80 04 00 00 00 04 08 00 00 00 00 00 00
C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
D0 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100 01 00 01 14 00 00 00 00 00 00 10 00 30 20 06 00
110 00 20 00 00 00 20 00 00 A0 00 00 00 00 00 00 00
120 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
DMI
-------------------------------------------------------------------------
DMI BIOS
vendor Award Software International Inc.
version F6
date 01/09/2014
ROM size 2048 KB
DMI System Information
manufacturer Gigabyte Technology Co. Ltd.
product GA-78LMT-S2
version unknown
serial unknown
UUID {34443437-3533-3937-3239-3144FFFFFFFF}
SKU unknown
family unknown
DMI Baseboard
vendor Gigabyte Technology Co. Ltd.
model GA-78LMT-S2
revision x.x
serial unknown
DMI System Enclosure
manufacturer Gigabyte Technology Co. Ltd.
chassis type Desktop
chassis serial unknown
DMI Processor
manufacturer AMD
model AMD FX(tm)-6300 Six-Core Processor
clock speed 3500.0 MHz
FSB speed 200.0 MHz
multiplier 17.5x
DMI Memory Controller
correction 64-bit ECC
Max module size 4096 MBytes
DMI Memory Module
designation A0
size 8192 MBytes (double bank)
DMI Memory Module
designation A1
DMI Port Connector
designation PRIMARY IDE (internal)
connector On Board IDE
DMI Port Connector
designation FDD (internal)
port type 8251 FIFO Compatible
connector On Board Floppy
DMI Port Connector
designation COM1 (internal)
port type Serial Port 16450
connector 9 Pin Dual Inline (pin 10 cut)
connector DB-9 male
DMI Port Connector
designation Keyboard (internal)
port type Keyboard Port
connector PS/2
DMI Port Connector
designation USB (internal)
port type USB
connector Access Bus (USB)
DMI Port Connector
designation USB (internal)
port type USB
connector Access Bus (USB)
DMI Port Connector
designation USB (internal)
port type USB
connector Access Bus (USB)
DMI Port Connector
designation USB (internal)
port type USB
connector Access Bus (USB)
DMI Port Connector
designation USB (internal)
port type USB
connector Access Bus (USB)
DMI Port Connector
designation USB (internal)
port type USB
connector Access Bus (USB)
DMI Port Connector
designation USB (internal)
port type USB
connector Access Bus (USB)
DMI Port Connector
designation USB (internal)
port type USB
connector Access Bus (USB)
DMI Port Connector
designation USB (internal)
port type USB
connector Access Bus (USB)
DMI Port Connector
designation USB (internal)
port type USB
connector Access Bus (USB)
DMI Port Connector
designation USB (internal)
port type USB
connector Access Bus (USB)
DMI Port Connector
designation USB (internal)
port type USB
connector Access Bus (USB)
DMI Extension Slot
designation PCI
type PCI
width 32 bits
populated no
DMI Extension Slot
designation PCI Express x16
type A5
DMI Extension Slot
designation PCI Express x1
type A5
DMI Physical Memory Array
location Motherboard
usage System Memory
correction None
max capacity 8192 MBytes
max# of devices 2
DMI Memory Device
designation A0
format DIMM
type unknown
total width 64 bits
data width 64 bits
size 8192 MBytes
DMI Memory Device
designation A1
format DIMM
type unknown
total width 64 bits
data width 64 bits
Storage
-------------------------------------------------------------------------
Drive 0
Device Path \\?\ide#disktoshiba_dt01aca100______________________ms2oa750#5&14c72ac7&0&1.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}
Type Fixed
Name TOSHIBA DT01ACA100
Capacity 931.5 GB
SMART Support Yes
USB Devices
-------------------------------------------------------------------------
USB Device USB-Verbundgerät, class=0x00, subclass=0x00, vendor=0x046D, product=0xC335
USB Device USB-Eingabegerät, class=0x00, subclass=0x00, vendor=0x046D, product=0x0A5D
USB Device USB-Verbundgerät, class=0x00, subclass=0x00, vendor=0x046D, product=0x0A5B
USB Device USB-Verbundgerät, class=0x00, subclass=0x00, vendor=0x046D, product=0xC07E
Graphics
-------------------------------------------------------------------------
Number of adapters 1
Graphic APIs
-------------------------------------------------------------------------
API NVIDIA I/O
API NVIDIA NVAPI
Display Adapters
-------------------------------------------------------------------------
Display adapter 0
Name NVIDIA GeForce GTX 750 Ti
Board Manufacturer 0x0000 (0x0000)
Revision A2
Codename GM107
Technology 28 nm
Memory size 2 GB
Memory type GDDR5
PCI device bus 1 (0x1), device 0 (0x0), function 0 (0x0)
Vendor ID 0x10DE (0x0000)
Model ID 0x1380 (0x0000)
Performance Level 0
Core clock 135.0 MHz
Memory clock 405.0 MHz
Win32_VideoController AdapterRAM = 0x80000000 (2147483648)
Win32_VideoController DriverVersion = 25.21.14.1616
Win32_VideoController DriverDate = 10/02/2018
Monitor 0
Model HG221A ()
ID HSD1C8F
Serial 909MW3JY00560
Manufacturing Date Week 9, Year 2009
Size 22.3 inches
Max Resolution 1680 x 1050 @ 59 Hz
Horizontal Freq. Range 30-82 kHz
Vertical Freq. Range 50-75 Hz
Max Pixel Clock 150 MHz
Gamma Factor 2.2
Monitor 1
Model E222W (NEC Technologies)
ID NEC6777
Serial 05209743NB
Manufacturing Date Week 21, Year 2010
Size 22.0 inches
Max Resolution 1680 x 1050 @ 59 Hz
Horizontal Freq. Range 31-83 kHz
Vertical Freq. Range 56-75 Hz
Max Pixel Clock 170 MHz
Gamma Factor 2.2
Software
-------------------------------------------------------------------------
Windows Version Microsoft Windows 10 (10.0) Professional 64-bit (Build 17134)
DirectX Version 12.0
Register Spaces
-------------------------------------------------------------------------
Register space PCI
Register space PCI #2
Register space PCI Express, base address = 0x0E0000000
Register space class = 0x12
Register space SMBus, base address = 0x0B00
Register space I2C
Register space LPC, base address = 0x0228
Register space LPC, base address = 0x02E
Register space LPC, base address = 0x0CD0
Liebe Grüße Pascal |
|
12.04.2019, 11:08
| #2 |
 | Windows 10 - Pc extrem langsam Anleitung / Hilfe Tausch die HDD zu einer SSD und du wirst einen merkbaren Unterschied spüren können.
__________________Vorteil ist man kann, wenn man es vernünftig macht auch direkt mit einem sauberen Betriebssystem starten und so die Anzahl der Altlasten und Systembremsen verringern (: |
|
12.04.2019, 15:05
| #3 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Windows 10 - Pc extrem langsam Details Klar eine SSD ist schneller, aber ein System mit normaler Festplatte muss auch nicht unbedingt langsam sein. Zeig uns mal die SMART-Werte. Wie das geht wird da erklärt --> Zustand der Festplatte herausfinden - so gehts - Anleitungen
__________________ Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
13.04.2019, 10:07
| #4 | |
| | Lösung: Windows 10 - Pc extrem langsam Vielen Dank schonmal für die Antwort Zitat:
Und natürlich ist eine SSD schneller und besser, jedoch kann ich mir das momentan nicht leisten. Der Computer muss leider noch ein wenig durchhalten bis es einen neuen gibt. Hier habe ich das genannte Tool mal durchgeführt: Code:
ATTFilter ----------------------------------------------------------------------------
CrystalDiskInfo 8.0.0 (C) 2008-2018 hiyohiyo
Crystal Dew World : https://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 10 Professional [10.0 Build 17134] (x64)
Date : 2019/04/13 11:02:29
-- Controller Map ----------------------------------------------------------
+ ATA Channel 0 (0) [ATA]
- TSSTcorp CDDVDW SH-224DB ATA Device
+ ATA Channel 1 (1) [ATA]
- TOSHIBA DT01ACA100 ATA Device
- ATA Channel 0 (0) [ATA]
- ATA Channel 1 (1) [ATA]
+ Standard-Zweikanal-PCI-IDE-Controller [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Standard-Zweikanal-PCI-IDE-Controller [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
- Microsoft-Controller für Speicherplätze [SCSI]
-- Disk List ---------------------------------------------------------------
(1) TOSHIBA DT01ACA100 : 1000,2 GB [0/1/0, pd1]
----------------------------------------------------------------------------
(1) TOSHIBA DT01ACA100
----------------------------------------------------------------------------
Model : TOSHIBA DT01ACA100
Firmware : MS2OA750
Serial Number : 843A8YWFS
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : 23652 KB
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 13848 Std.
Power On Count : 2412 mal
Temperature : 31 C (87 F)
Health Status : Gut
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : ----
Drive Letter : C:
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _16 000000000000 Lesefehlerrate
02 140 140 _54 00000000004C Datendurchsatz-Leistung
03 125 125 _24 000300B800B7 Mittlere Anlaufzeit
04 100 100 __0 000000000971 Start/Stopp-Zyklen der Spindel
05 100 100 __5 000000000000 Wiederzugewiesene Sektoren
07 100 100 _67 000000000000 Suchfehler
08 118 118 _20 000000000021 Güte der Suchoperationen
09 _99 _99 __0 000000003618 Betriebsstunden
0A 100 100 _60 000000000000 Misslungene Spindelanläufe
0C 100 100 __0 00000000096C Geräte-Einschaltvorgänge
C0 _98 _98 __0 000000000980 Ausschaltungsabbrüche
C1 _98 _98 __0 000000000980 Laden/Entladen-Zyklen
C2 193 193 __0 0029000C001F Temperatur
C4 100 100 __0 000000000000 Wiederzuweisungsereignisse
C5 100 100 __0 000000000000 Aktuell ausstehende Sektoren
C6 100 100 __0 000000000000 Nicht korrigierbare Sektoren
C7 200 200 __0 000000000000 UltraDMA-CRC-Fehler
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2038 3433 4138 5957 4653
020: 0003 B8C8 0038 4D53 324F 4137 3530 544F 5348 4942
030: 4120 4454 3031 4143 4131 3030 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 170E 0004 005E 0040
080: 01FC 0029 746B 7D69 4773 7469 BC41 4763 407F 0050
090: 0000 0000 FFFE 0000 0000 0008 00CA 00F9 2710 0000
100: 6DB0 7470 0000 0000 00CA 0000 6003 5A87 5000 039F
110: FBE0 DC5E 0000 0000 0000 0000 0000 0000 0000 409C
120: 409C 0000 0000 0000 0000 0000 0000 0000 0009 000B
130: 0000 0000 2180 0DF1 FA20 0001 4000 0404 0121 0000
140: 0000 060A 0708 0000 0000 0000 0000 0000 0000 0000
150: 0000 0005 324E 4237 0000 6802 0000 5DBD 7BC8 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 103F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 03E0 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 43A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 8C 8C 4C 00 00 00 00 00 00 03 07 00 7D 7D B7
020: 00 B8 00 03 00 00 04 12 00 64 64 71 09 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 76 76 21
050: 00 00 00 00 00 00 09 12 00 63 63 18 36 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 6C 09 00 00 00 00 00 C0 32 00 62 62 80
080: 09 00 00 00 00 00 C1 12 00 62 62 80 09 00 00 00
090: 00 00 C2 02 00 C1 C1 1F 00 0C 00 29 00 00 C4 32
0A0: 00 64 64 00 00 00 00 00 00 00 C5 22 00 64 64 00
0B0: 00 00 00 00 00 00 C6 08 00 64 64 00 00 00 00 00
0C0: 00 00 C7 0A 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 84 00 30 1C 01 5B
170: 03 00 01 00 01 79 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 59
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 10 00 00 00 00 00 00 00 00 00 00 02 36
010: 00 00 00 00 00 00 00 00 00 00 03 18 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 14 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 C0 00 00 00 00 00
080: 00 00 00 00 00 00 C1 00 00 00 00 00 00 00 00 00
090: 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C4 00
0A0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0B0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0C0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 64
|
|
13.04.2019, 10:44
| #5 |
| | Wie Windows 10 - Pc extrem langsam Die Platte scheint ja erstmal in Ordnung zu sein. Eine Frage wäre, seit wann du die Probleme hast. Hat sich das so eingeschlichen oder war das plötzlich ab einem bestimmten Zeitpunkt (Update, Programminstallation, o.ä.) so? Möglich wäre, dass du dein System einfach im Laufe der Zeit total zugemüllt hast (z.B. den Autostart - was läuft alles im Hintergrund?). Und / oder du hast nicht regelmäßig alles upgedatet (Windows, Treiber, etc.)!? Dein Windows 10 ist jedenfalls nicht mehr aktuell...  Ergänzung: Außerdem hast du scheinbar schon öfter Malware-Probleme gehabt (s. deine früheren Beiträge). Könnte natürlich auch ein Grund sein. Oder deine aktuelle Antivirenlösung bremst alles aus. 
__________________ "Consider again that dot. That's here. That's home. That's us. On it everyone you love, everyone you know, everyone you ever heard of, every human being who ever was, lived out their lives."— Carl Sagan Geändert von Yatagan (13.04.2019 um 11:11 Uhr) |
|
13.04.2019, 11:47
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Wo Windows 10 - Pc extrem langsam Lösung! Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit
Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ --> Windows 10 - Pc extrem langsam |
|
13.04.2019, 11:49
| #7 |
| | Windows 10 - Pc extrem langsam Also ich würde mal sagen das es sich eher so mit der Zeit eingeschlichen hat >.< _Könnte jetzt eher keinen festen Punkt ausmachen. Auf jeden Fall schon länger das er so "schleppend" arbeitet. Ich denke mal das auf jeden Fall sehr viele Datenleichen darauf sind. Mein Autostart sieht so aus:  Ich versuchte immer alle Updates zu machen. Jedoch in letzter Zeit nicht mehr so ganz, da es einfach ewig dauert bis er reagiert oder er sich oft dabei aufhängt. Okey das Windowsupdate werde ich dann gleich mal in die Wege leiten Ja das stimmt, hatte leider des öfteren Probleme mit Malware. Bin für jeden Tipp dankbar wie ich mein System wieder ein wenig bereinigen und schneller machen kann ohne es neu aufzusetzten >.< Als Antivirenprogramm benutze ich den Avast Free Antivirus. Ich hab mal versucht die Hintergrundprozesse darstellen zu lassen. Ich hoffe man kann damit etwas anfangen     EDIT: Gerade den neuen Post von dir gesehen Cosinus, werde ich direkt machen. Soll ich das hier stehen lassen oder wieder löschen? |
|
13.04.2019, 12:03
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 10 - Pc extrem langsam Einfach die Logs machen und als CODE posten.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
13.04.2019, 12:09
| #9 |
| | Windows 10 - Pc extrem langsam Alles klar hier die Logs: FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
durchgeführt von Admin (Administrator) auf SHUYIN (13-04-2019 12:52:48)
Gestartet von C:\Users\Admin\Downloads
Geladene Profile: Admin (Verfügbare Profile: Admin)
Platform: Windows 10 Pro Version 1803 17134.706 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Digital Wave Ltd -> Digital Wave Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Malwarebytes Corporation -> Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Malwarebytes Corporation -> Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
() [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
() [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19021.18010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Malwarebytes Corporation -> Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LAClient\laclient.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Valve -> Valve Corporation) C:\Games\Steam\Steam.exe
(Valve -> Valve Corporation) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\OpenWith.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\OpenWith.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\OpenWith.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [260488 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18591352 2018-03-19] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-01-18] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech, Inc. -> Logitech Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Datei ist nicht signiert]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Syncios device service] => C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe [1910424 2017-06-06] (Anvsoft Inc. -> )
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1163264 2012-09-25] () [Datei ist nicht signiert]
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2480336 2018-12-19] (Malwarebytes Corporation -> Malwarebytes Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [260488 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ACHTUNG
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [GalaxyClient] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [6881864 2018-08-05] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [Discord] => C:\Users\Admin\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [Spotify Web Helper] => C:\Users\Admin\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1444976 2016-12-30] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [Spotify] => C:\Users\Admin\AppData\Roaming\Spotify\Spotify.exe [7153264 2016-12-30] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1504584 2018-09-18] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-01-15] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2018-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [AvastBrowserAutoLaunch_1088872FC4C2207C6D62AF0E8871CAAC] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1960168 2019-04-11] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2015-04-14] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2015-04-14] (Electronic Arts -> On2.com)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-11] (Google LLC -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\73.0.1270.86\Installer\chrmstp.exe [2019-04-13] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{1f529286-3f1a-4b7f-b911-60ec4b68354a}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{3c31fd95-761e-4e0d-a96d-928ee4a3df35}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{c9991f10-0d7c-40b4-a9f1-d4bc13ce08fc}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.live.com/1rewlive4startup/home
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Browser Extensions -> {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} -> C:\Users\Admin\AppData\Roaming\BrowserExtensions\Coupons64.dll => Keine Datei
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-02-10] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-10] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-3980298719-2773488239-3045808690-1000 -> hxxp://www.google.de/
FireFox:
========
FF DefaultProfile: og4hcahm.default-1505430743535
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\og4hcahm.default-1505430743535 [2019-04-13]
FF Homepage: Mozilla\Firefox\Profiles\og4hcahm.default-1505430743535 -> hxxps://www.google.de/
FF NetworkProxy: Mozilla\Firefox\Profiles\og4hcahm.default-1505430743535 -> http", "162.243.78.25"
FF Session Restore: Mozilla\Firefox\Profiles\og4hcahm.default-1505430743535 -> ist aktiviert.
FF Extension: (Avast SafePrice | Vergleich, Angebote, Gutscheine) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\og4hcahm.default-1505430743535\Extensions\sp@avast.com.xpi [2019-04-08]
FF Extension: (Avast Online Security) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\og4hcahm.default-1505430743535\Extensions\wrc@avast.com.xpi [2019-04-08]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll [2017-11-25] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-11-25] (Adobe Systems Incorporated -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1231201.dll [2017-11-02] (Adobe Systems, Inc.) [Datei ist nicht signiert]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-08-26] (Google Inc -> Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2011-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-10-02] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-10-02] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll [2014-10-10] (pdfforge GmbH -> pdfforge GmbH)
FF Plugin HKU\S-1-5-21-3980298719-2773488239-3045808690-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [Keine Datei]
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://google.de/
CHR StartupUrls: Default -> "hxxps://www.google.de/?gws_rd=ssl"
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2018-11-27]
CHR Extension: (Präsentationen) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-06-19]
CHR Extension: (Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-19]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-25]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-07]
CHR Extension: (Google-Suche) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-10]
CHR Extension: (Avast SafePrice | Vergleich, Angebote, Gutscheine) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-11-27]
CHR Extension: (Tabellen) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-06-19]
CHR Extension: (Google Docs Offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-27]
CHR Extension: (Avast Online Security) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-11-27]
CHR Extension: (TubeTab) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhpijolpcimadhjingadnbcjncmjdce [2017-07-13]
CHR Extension: (Zelda Dark) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lilddpnkkhkcjkdaaglfminjopbijomp [2015-06-30]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-19]
CHR Extension: (Google Mail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-30]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-11-27]
CHR HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [jlhpijolpcimadhjingadnbcjncmjdce] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nicht gefunden>
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [85304 2018-10-16] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6570352 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-06] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [360440 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-06] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8361960 2019-02-01] (BattlEye Innovations e.K. -> )
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [382312 2015-10-29] (Digital Wave Ltd -> Digital Wave Ltd.) [Datei ist nicht signiert]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [784512 2018-09-23] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 ElfoService; C:\Program Files (x86)\ElsterFormular Update Service\bin\elfoService.exe [1284328 2018-01-04] (Bayerisches Landesamt fuer Steuern -> )
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [686664 2018-08-05] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8942664 2018-08-05] (GOG Sp. z o.o. -> GOG.com)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Datei ist nicht signiert]
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [202872 2018-03-19] (Logitech Inc -> Logitech Inc.)
R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [152272 2018-12-19] (Malwarebytes Corporation -> Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation -> Malwarebytes Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773328 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773328 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2201920 2018-07-06] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3072328 2018-07-06] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2308424 2018-09-18] (Overwolf Ltd -> Overwolf LTD)
S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH -> pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH -> pdfforge GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5074120 2019-03-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Datei ist nicht signiert]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17639.18041-0\NisSrv.exe [4632736 2018-05-07] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17639.18041-0\MsMpEng.exe [104680 2018-05-07] (Microsoft Corporation -> Microsoft Corporation)
S3 AvastSecureBrowserElevationService; "C:\Program Files (x86)\AVAST Software\Browser\Application\73.0.1270.86\elevation_service.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37320 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205608 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254408 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196304 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320904 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [58168 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-06] (Microsoft Windows Early Launch Anti-Malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [249152 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42496 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [169104 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88152 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034640 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [476264 2019-04-13] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220632 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380160 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [153328 2018-12-19] (Malwarebytes Corporation -> Malwarebytes)
R3 ladfGSS; C:\WINDOWS\system32\drivers\ladfGSS.sys [45168 2018-03-19] (Logitech Inc -> Logitech Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2017-08-18] (Logitech Inc -> Logitech Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2014-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 nusb3hub; C:\WINDOWS\system32\drivers\nusb3hub.sys [80384 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\WINDOWS\system32\drivers\nusb3xhc.sys [180736 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_54bd1f10ac116cd5\nvlddmkm.sys [20605496 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30792 2018-08-21] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-06-08] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [65792 2018-04-24] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek )
R3 Sftfs; C:\WINDOWS\System32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftplay; C:\WINDOWS\System32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftredir; C:\WINDOWS\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftvol; C:\WINDOWS\System32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46072 2018-05-07] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [313888 2018-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [61472 2018-05-07] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2019-04-13 12:52 - 2019-04-13 12:54 - 000032396 _____ C:\Users\Admin\Downloads\FRST.txt
2019-04-13 12:52 - 2019-04-13 12:52 - 000000000 ____D C:\FRST
2019-04-13 12:51 - 2019-04-13 12:51 - 002434048 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2019-04-13 12:42 - 2019-04-13 12:42 - 000000000 _____ C:\Users\Admin\tasklist
2019-04-13 11:32 - 2019-04-13 11:32 - 000003856 _____ C:\WINDOWS\System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2019-04-13 11:32 - 2019-04-13 11:32 - 000003272 _____ C:\WINDOWS\System32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2019-04-13 11:15 - 2019-04-13 11:15 - 000000077 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2019-04-13 11:00 - 2019-04-13 11:01 - 000000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2019-04-13 11:00 - 2019-04-13 11:00 - 000001273 _____ C:\Users\Admin\Desktop\CrystalDiskInfo.lnk
2019-04-13 11:00 - 2019-04-13 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2019-04-13 10:59 - 2019-04-13 10:59 - 003942560 _____ (Crystal Dew World ) C:\Users\Admin\Downloads\CrystalDiskInfo8_0_0.exe
2019-04-11 21:30 - 2019-04-11 21:30 - 000080553 _____ C:\Users\Admin\Desktop\SHUYIN.txt
2019-04-11 21:28 - 2019-04-11 21:28 - 000000000 ____D C:\Users\Admin\Desktop\CPU-Z
2019-04-11 21:00 - 2019-04-02 11:25 - 000607960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-04-11 21:00 - 2019-04-02 10:20 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-04-11 21:00 - 2019-04-02 09:51 - 003399680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-04-11 21:00 - 2019-04-02 09:50 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-04-11 21:00 - 2019-04-02 09:49 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-04-11 21:00 - 2019-04-02 07:05 - 001989544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-04-11 21:00 - 2019-04-02 06:40 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-04-11 21:00 - 2019-03-14 16:29 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-04-11 21:00 - 2019-03-14 16:08 - 003611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-04-11 21:00 - 2019-03-14 15:53 - 000625664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2019-04-11 21:00 - 2019-03-14 10:37 - 002256248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-04-11 21:00 - 2019-03-14 10:22 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-04-11 21:00 - 2019-03-14 10:19 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-04-11 21:00 - 2019-03-14 10:19 - 002969600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-04-11 21:00 - 2019-03-14 10:17 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-04-11 21:00 - 2019-03-14 10:17 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-04-11 21:00 - 2019-03-14 10:17 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-04-11 21:00 - 2019-03-14 10:14 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-04-11 21:00 - 2019-03-14 10:14 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-04-11 21:00 - 2019-03-14 10:14 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-04-11 21:00 - 2019-03-14 10:14 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2019-04-11 21:00 - 2019-03-14 10:13 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-04-11 21:00 - 2019-03-14 10:13 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-04-11 21:00 - 2019-03-14 09:58 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-04-11 21:00 - 2019-03-14 09:57 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-04-11 21:00 - 2019-03-14 09:56 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-04-11 21:00 - 2019-03-14 09:56 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-04-11 21:00 - 2019-03-14 09:55 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-04-11 21:00 - 2019-03-14 09:54 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-04-11 21:00 - 2019-03-14 09:54 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-04-11 21:00 - 2019-03-14 09:51 - 001216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-04-11 21:00 - 2019-03-14 09:51 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-04-11 21:00 - 2019-03-14 09:50 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-04-11 21:00 - 2019-03-14 09:50 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-04-11 21:00 - 2019-03-14 09:50 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-04-11 20:59 - 2019-04-02 14:38 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-04-11 20:59 - 2019-04-02 14:33 - 001634912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-04-11 20:59 - 2019-04-02 14:33 - 000719984 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-04-11 20:59 - 2019-04-02 14:19 - 012730880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-04-11 20:59 - 2019-04-02 14:19 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-04-11 20:59 - 2019-04-02 14:18 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-04-11 20:59 - 2019-04-02 14:16 - 001030144 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-04-11 20:59 - 2019-04-02 14:15 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-04-11 20:59 - 2019-04-02 14:13 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-04-11 20:59 - 2019-04-02 14:12 - 003643904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-04-11 20:59 - 2019-04-02 14:12 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-04-11 20:59 - 2019-04-02 14:11 - 004053504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-04-11 20:59 - 2019-04-02 14:11 - 001857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-04-11 20:59 - 2019-04-02 14:11 - 001662976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-04-11 20:59 - 2019-04-02 14:10 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-04-11 20:59 - 2019-04-02 14:10 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-04-11 20:59 - 2019-04-02 11:25 - 001454648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-04-11 20:59 - 2019-04-02 11:11 - 011919360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-04-11 20:59 - 2019-04-02 11:11 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-04-11 20:59 - 2019-04-02 11:10 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-04-11 20:59 - 2019-04-02 11:08 - 002889216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-04-11 20:59 - 2019-04-02 11:07 - 004054528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-04-11 20:59 - 2019-04-02 11:07 - 001586688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-04-11 20:59 - 2019-04-02 11:06 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-04-11 20:59 - 2019-04-02 10:36 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-04-11 20:59 - 2019-04-02 10:24 - 000135184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-04-11 20:59 - 2019-04-02 10:23 - 001023800 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-04-11 20:59 - 2019-04-02 10:22 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-04-11 20:59 - 2019-04-02 10:22 - 000567592 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-04-11 20:59 - 2019-04-02 10:22 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-04-11 20:59 - 2019-04-02 10:21 - 007520136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-04-11 20:59 - 2019-04-02 10:21 - 002822160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-04-11 20:59 - 2019-04-02 10:21 - 002467536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-04-11 20:59 - 2019-04-02 10:21 - 000735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-04-11 20:59 - 2019-04-02 10:20 - 002719032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-04-11 20:59 - 2019-04-02 10:19 - 009083704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-04-11 20:59 - 2019-04-02 10:19 - 000793400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-04-11 20:59 - 2019-04-02 10:19 - 000786080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-04-11 20:59 - 2019-04-02 10:19 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-04-11 20:59 - 2019-04-02 10:01 - 025857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-04-11 20:59 - 2019-04-02 09:53 - 022717440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-04-11 20:59 - 2019-04-02 09:53 - 004384256 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-04-11 20:59 - 2019-04-02 09:50 - 007591936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-04-11 20:59 - 2019-04-02 09:49 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-04-11 20:59 - 2019-04-02 09:48 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-04-11 20:59 - 2019-04-02 09:48 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-04-11 20:59 - 2019-04-02 09:48 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-04-11 20:59 - 2019-04-02 09:47 - 001214464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-04-11 20:59 - 2019-04-02 09:47 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-04-11 20:59 - 2019-04-02 09:46 - 002174976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-04-11 20:59 - 2019-04-02 09:45 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-04-11 20:59 - 2019-04-02 09:44 - 002208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-04-11 20:59 - 2019-04-02 09:44 - 001724416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-04-11 20:59 - 2019-04-02 09:44 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-04-11 20:59 - 2019-04-02 09:43 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-04-11 20:59 - 2019-04-02 08:22 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2019-04-11 20:59 - 2019-04-02 07:04 - 006572120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-04-11 20:59 - 2019-04-02 07:04 - 000604008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-04-11 20:59 - 2019-04-02 07:04 - 000581832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-04-11 20:59 - 2019-04-02 07:04 - 000560600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-04-11 20:59 - 2019-04-02 06:56 - 022018048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-04-11 20:59 - 2019-04-02 06:50 - 019404800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-04-11 20:59 - 2019-04-02 06:43 - 005788160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-04-11 20:59 - 2019-04-02 06:43 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-04-11 20:59 - 2019-04-02 06:43 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-04-11 20:59 - 2019-04-02 06:42 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-04-11 20:59 - 2019-04-02 06:41 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-04-11 20:59 - 2019-04-02 06:41 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-04-11 20:59 - 2019-04-02 06:41 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-04-11 20:59 - 2019-04-02 06:40 - 001073664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-04-11 20:59 - 2019-03-16 14:54 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-04-11 20:59 - 2019-03-16 11:03 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-04-11 20:59 - 2019-03-14 16:55 - 001786680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-04-11 20:59 - 2019-03-14 16:53 - 001626928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-04-11 20:59 - 2019-03-14 16:53 - 001038136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2019-04-11 20:59 - 2019-03-14 16:53 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-04-11 20:59 - 2019-03-14 16:53 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 003933296 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-04-11 20:59 - 2019-03-14 16:52 - 001424696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000954160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000830264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000827704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2019-04-11 20:59 - 2019-03-14 16:52 - 000825144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000749880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000670008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000495416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000164664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AppvVemgr.sys
2019-04-11 20:59 - 2019-03-14 16:51 - 000157192 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2019-04-11 20:59 - 2019-03-14 16:35 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfoext.dll
2019-04-11 20:59 - 2019-03-14 16:34 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-04-11 20:59 - 2019-03-14 16:33 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2019-04-11 20:59 - 2019-03-14 16:33 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-04-11 20:59 - 2019-03-14 16:33 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe
2019-04-11 20:59 - 2019-03-14 16:31 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-04-11 20:59 - 2019-03-14 16:30 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2019-04-11 20:59 - 2019-03-14 16:30 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2019-04-11 20:59 - 2019-03-14 16:29 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll
2019-04-11 20:59 - 2019-03-14 16:28 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll
2019-04-11 20:59 - 2019-03-14 15:56 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-04-11 20:59 - 2019-03-14 15:55 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe
2019-04-11 20:59 - 2019-03-14 15:53 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2019-04-11 20:59 - 2019-03-14 15:53 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2019-04-11 20:59 - 2019-03-14 15:52 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsound.dll
2019-04-11 20:59 - 2019-03-14 10:57 - 000611640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-04-11 20:59 - 2019-03-14 10:56 - 000375096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-04-11 20:59 - 2019-03-14 10:38 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-04-11 20:59 - 2019-03-14 10:38 - 000090360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2019-04-11 20:59 - 2019-03-14 10:37 - 006043496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-04-11 20:59 - 2019-03-14 10:37 - 001171568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-04-11 20:59 - 2019-03-14 10:28 - 000152072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-04-11 20:59 - 2019-03-14 10:27 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-04-11 20:59 - 2019-03-14 10:27 - 000097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2019-04-11 20:59 - 2019-03-14 10:26 - 007436016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-04-11 20:59 - 2019-03-14 10:26 - 002768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-04-11 20:59 - 2019-03-14 10:26 - 002421048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-04-11 20:59 - 2019-03-14 10:26 - 001457576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-04-11 20:59 - 2019-03-14 10:26 - 001258688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-04-11 20:59 - 2019-03-14 10:26 - 001140984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-04-11 20:59 - 2019-03-14 10:26 - 001014344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-04-11 20:59 - 2019-03-14 10:26 - 000983424 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-04-11 20:59 - 2019-03-14 10:26 - 000481048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-04-11 20:59 - 2019-03-14 10:26 - 000175416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-04-11 20:59 - 2019-03-14 10:20 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-04-11 20:59 - 2019-03-14 10:18 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-04-11 20:59 - 2019-03-14 10:18 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-04-11 20:59 - 2019-03-14 10:18 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2019-04-11 20:59 - 2019-03-14 10:18 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-04-11 20:59 - 2019-03-14 10:17 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-04-11 20:59 - 2019-03-14 10:17 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll
2019-04-11 20:59 - 2019-03-14 10:17 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2019-04-11 20:59 - 2019-03-14 10:16 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-04-11 20:59 - 2019-03-14 10:16 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-04-11 20:59 - 2019-03-14 10:15 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-04-11 20:59 - 2019-03-14 10:15 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-04-11 20:59 - 2019-03-14 10:15 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2019-04-11 20:59 - 2019-03-14 10:15 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2019-04-11 20:59 - 2019-03-14 10:14 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-04-11 20:59 - 2019-03-14 10:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-11 20:59 - 2019-03-14 10:14 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-04-11 20:59 - 2019-03-14 10:13 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2019-04-11 20:59 - 2019-03-14 10:01 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-04-11 20:59 - 2019-03-14 09:58 - 002509824 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2019-04-11 20:59 - 2019-03-14 09:58 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-04-11 20:59 - 2019-03-14 09:57 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-04-11 20:59 - 2019-03-14 09:56 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-04-11 20:59 - 2019-03-14 09:56 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-04-11 20:59 - 2019-03-14 09:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 000528896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-04-11 20:59 - 2019-03-14 09:55 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-04-11 20:59 - 2019-03-14 09:55 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmapi.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-04-11 20:59 - 2019-03-14 09:55 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 002368000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-04-11 20:59 - 2019-03-14 09:53 - 000787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-04-11 20:59 - 2019-03-14 09:53 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-04-11 20:59 - 2019-03-14 09:53 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-04-11 20:59 - 2019-03-14 09:53 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-11 20:59 - 2019-03-14 09:52 - 002909696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-04-11 20:59 - 2019-03-14 09:52 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2019-04-11 20:59 - 2019-03-14 09:52 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-04-11 20:59 - 2019-03-14 09:52 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2019-04-11 20:59 - 2019-03-14 09:51 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2019-04-11 20:59 - 2019-03-14 09:50 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2019-04-11 20:59 - 2019-03-14 09:50 - 001410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-04-11 20:59 - 2019-03-14 09:50 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-04-11 20:59 - 2019-03-14 09:50 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-04-11 20:59 - 2019-03-14 09:50 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-04-11 20:59 - 2019-03-14 09:50 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-04-11 20:59 - 2019-03-14 03:57 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-04-11 20:59 - 2019-03-14 03:57 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-04-11 20:59 - 2019-03-14 03:57 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-04-11 20:59 - 2019-03-14 03:57 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-04-11 20:59 - 2019-03-14 03:57 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-04-06 12:21 - 2019-04-06 12:26 - 000000000 ____D C:\Users\Admin\Desktop\Rezepte
2019-03-31 18:49 - 2019-03-31 18:55 - 000020220 _____ C:\Users\Admin\Desktop\Kopie von Energieverbrauchsplan Margarethenweg 4 Neu .xlsx
2019-03-22 21:32 - 2019-03-06 17:37 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-03-22 21:32 - 2019-03-06 14:04 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-03-22 21:32 - 2019-03-06 11:04 - 000945464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-03-22 21:32 - 2019-03-06 11:03 - 001921848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-03-22 21:32 - 2019-03-06 10:33 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-03-22 21:32 - 2019-03-06 10:32 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-03-22 21:32 - 2019-03-06 10:31 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-03-22 21:32 - 2019-03-06 10:31 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-03-22 21:32 - 2019-03-06 10:29 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2019-03-22 21:32 - 2019-03-06 10:28 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-03-22 21:32 - 2019-03-06 10:25 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-03-22 21:32 - 2019-03-06 07:50 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-03-22 21:32 - 2019-03-06 07:50 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2019-03-22 21:32 - 2019-02-21 05:26 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-03-22 21:32 - 2019-02-16 14:57 - 001048472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-03-22 21:32 - 2019-02-16 14:56 - 000549520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-03-22 21:32 - 2019-02-16 14:34 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-03-22 21:32 - 2019-02-16 14:34 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-03-22 21:32 - 2019-02-16 14:30 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-03-22 21:32 - 2019-02-16 14:24 - 000444176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-03-22 21:32 - 2019-02-16 14:06 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-03-22 21:32 - 2019-02-16 10:04 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-03-22 21:32 - 2019-02-16 10:03 - 005625360 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-03-22 21:32 - 2019-02-16 10:02 - 000432952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-03-22 21:32 - 2019-02-16 10:01 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-03-22 21:32 - 2019-02-16 09:31 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2019-03-22 21:32 - 2019-02-16 09:30 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2019-03-22 21:32 - 2019-02-16 09:30 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-03-22 21:32 - 2019-02-16 09:29 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-03-22 21:32 - 2019-02-16 09:29 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-03-22 21:32 - 2019-02-16 09:28 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2019-03-22 21:32 - 2019-02-16 09:28 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2019-03-22 21:32 - 2019-02-16 09:28 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2019-03-22 21:32 - 2019-02-16 09:27 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2019-03-22 21:32 - 2019-02-16 09:26 - 001459712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-03-22 21:32 - 2019-02-16 09:25 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-03-22 21:31 - 2019-03-06 17:14 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-03-22 21:31 - 2019-03-06 17:14 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-03-22 21:31 - 2019-03-06 11:16 - 001188000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-03-22 21:31 - 2019-03-06 11:07 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-03-22 21:31 - 2019-03-06 11:03 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-03-22 21:31 - 2019-03-06 10:31 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-03-22 21:31 - 2019-03-06 10:29 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-03-22 21:31 - 2019-03-06 10:28 - 004937728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-03-22 21:31 - 2019-03-06 08:14 - 000785568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-03-22 21:31 - 2019-03-06 07:49 - 004516352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-03-22 21:31 - 2019-02-16 15:02 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-03-22 21:31 - 2019-02-16 14:57 - 002266936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-03-22 21:31 - 2019-02-16 14:57 - 000257848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-03-22 21:31 - 2019-02-16 14:57 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2019-03-22 21:31 - 2019-02-16 14:57 - 000228152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2019-03-22 21:31 - 2019-02-16 14:57 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2019-03-22 21:31 - 2019-02-16 14:57 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe
2019-03-22 21:31 - 2019-02-16 14:57 - 000180528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2019-03-22 21:31 - 2019-02-16 14:57 - 000172856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe
2019-03-22 21:31 - 2019-02-16 14:57 - 000034104 _____ C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2019-03-22 21:31 - 2019-02-16 14:53 - 001516416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-03-22 21:31 - 2019-02-16 14:34 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-03-22 21:31 - 2019-02-16 14:22 - 001322176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-03-22 21:31 - 2019-02-16 14:08 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-03-22 21:31 - 2019-02-16 12:24 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-03-22 21:31 - 2019-02-16 12:22 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-03-22 21:31 - 2019-02-16 10:03 - 007901392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-03-22 21:31 - 2019-02-16 10:03 - 000510288 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-03-22 21:31 - 2019-02-16 10:02 - 005821440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-03-22 21:31 - 2019-02-16 10:02 - 003291632 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-03-22 21:31 - 2019-02-16 10:02 - 001792712 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-03-22 21:31 - 2019-02-16 10:02 - 000705848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-03-22 21:31 - 2019-02-16 10:01 - 001285424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-03-22 21:31 - 2019-02-16 10:01 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-03-22 21:31 - 2019-02-16 10:01 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-03-22 21:31 - 2019-02-16 10:01 - 001028920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-03-22 21:31 - 2019-02-16 10:01 - 000594024 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-03-22 21:31 - 2019-02-16 10:01 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-03-22 21:31 - 2019-02-16 09:53 - 000443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-03-22 21:31 - 2019-02-16 09:51 - 002479168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-03-22 21:31 - 2019-02-16 09:51 - 001584536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-03-22 21:31 - 2019-02-16 09:50 - 001130568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-03-22 21:31 - 2019-02-16 09:50 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-03-22 21:31 - 2019-02-16 09:37 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-03-22 21:31 - 2019-02-16 09:36 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2019-03-22 21:31 - 2019-02-16 09:34 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2019-03-22 21:31 - 2019-02-16 09:33 - 006646784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-03-22 21:31 - 2019-02-16 09:31 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-03-22 21:31 - 2019-02-16 09:31 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-03-22 21:31 - 2019-02-16 09:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-03-22 21:31 - 2019-02-16 09:30 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-03-22 21:31 - 2019-02-16 09:30 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-03-22 21:31 - 2019-02-16 09:28 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-03-22 21:31 - 2019-02-16 09:28 - 002585600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-03-22 21:31 - 2019-02-16 09:27 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2019-03-22 21:31 - 2019-02-16 09:27 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-03-22 21:31 - 2019-02-16 09:26 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-03-22 21:31 - 2019-02-16 09:26 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2019-03-22 21:31 - 2019-02-16 09:26 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-03-22 21:31 - 2019-02-16 09:25 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2019-03-22 21:30 - 2019-03-06 17:36 - 001047352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-03-22 21:30 - 2019-03-06 17:17 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-03-22 21:30 - 2019-03-06 17:12 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-03-22 21:30 - 2019-03-06 14:18 - 000918032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-03-22 21:30 - 2019-03-06 11:16 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-03-22 21:30 - 2019-03-06 11:16 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-03-22 21:30 - 2019-03-06 11:16 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-03-22 21:30 - 2019-03-06 11:11 - 000493880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-03-22 21:30 - 2019-03-06 11:10 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-03-22 21:30 - 2019-03-06 11:04 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2019-03-22 21:30 - 2019-03-06 08:15 - 000434488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-03-22 21:30 - 2019-03-06 08:14 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-03-22 21:30 - 2019-03-06 08:14 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2019-03-22 21:30 - 2019-03-06 08:13 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 001644040 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 000808456 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 000735752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 000620040 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 000460296 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 000147464 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-03-22 21:30 - 2019-02-16 15:02 - 000071176 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-03-22 21:30 - 2019-02-16 14:57 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-03-22 21:30 - 2019-02-16 14:56 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-03-22 21:30 - 2019-02-16 14:33 - 002194432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-03-22 21:30 - 2019-02-16 14:33 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-03-22 21:30 - 2019-02-16 14:32 - 002051072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-03-22 21:30 - 2019-02-16 14:32 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-03-22 21:30 - 2019-02-16 14:31 - 001271808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2019-03-22 21:30 - 2019-02-16 14:31 - 001186816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-03-22 21:30 - 2019-02-16 14:31 - 001003520 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-03-22 21:30 - 2019-02-16 14:31 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-03-22 21:30 - 2019-02-16 14:29 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-03-22 21:30 - 2019-02-16 14:25 - 001539896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-03-22 21:30 - 2019-02-16 14:25 - 000148784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mavinject.exe
2019-03-22 21:30 - 2019-02-16 14:07 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-03-22 21:30 - 2019-02-16 14:07 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-03-22 21:30 - 2019-02-16 14:06 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-03-22 21:30 - 2019-02-16 14:06 - 000774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-03-22 21:30 - 2019-02-16 14:04 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-03-22 21:30 - 2019-02-16 10:16 - 000511800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-03-22 21:30 - 2019-02-16 10:15 - 000505656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-03-22 21:30 - 2019-02-16 10:02 - 001934800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-03-22 21:30 - 2019-02-16 10:02 - 000413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-03-22 21:30 - 2019-02-16 10:01 - 000641984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-03-22 21:30 - 2019-02-16 09:57 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-03-22 21:30 - 2019-02-16 09:50 - 001805648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-03-22 21:30 - 2019-02-16 09:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-03-22 21:30 - 2019-02-16 09:26 - 000935424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-03-22 21:30 - 2019-02-16 08:07 - 000806320 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-03-22 21:30 - 2019-02-16 08:07 - 000806320 _____ C:\WINDOWS\system32\locale.nls
2019-03-22 21:29 - 2019-03-06 17:17 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2019-03-22 21:29 - 2019-03-06 17:14 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-03-22 21:29 - 2019-03-06 14:06 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-03-22 21:29 - 2019-03-06 11:05 - 000439224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-03-22 21:29 - 2019-03-06 11:05 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-03-22 21:29 - 2019-03-06 11:02 - 000626488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2019-03-22 21:29 - 2019-03-06 10:31 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2019-03-22 21:29 - 2019-03-06 10:26 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-03-22 21:29 - 2019-03-06 10:26 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-03-22 21:29 - 2019-03-06 08:17 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-03-22 21:29 - 2019-03-06 07:51 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-03-22 21:29 - 2019-02-16 14:31 - 000861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-03-22 21:29 - 2019-02-16 14:30 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2019-03-22 21:29 - 2019-02-16 14:29 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-03-22 21:29 - 2019-02-16 14:06 - 000765952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-03-22 21:29 - 2019-02-16 14:02 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe
2019-03-22 21:29 - 2019-02-16 13:55 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.dll
2019-03-22 21:29 - 2019-02-16 10:15 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-03-22 21:29 - 2019-02-16 10:05 - 000087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-03-22 21:29 - 2019-02-16 10:01 - 000161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2019-03-22 21:29 - 2019-02-16 09:51 - 000170952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2019-03-22 21:29 - 2019-02-16 09:50 - 000504072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2019-03-22 21:29 - 2019-02-16 09:33 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-03-22 21:29 - 2019-02-16 09:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2019-03-22 21:29 - 2019-02-16 09:32 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2019-03-22 21:29 - 2019-02-16 09:30 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2019-03-22 21:29 - 2019-02-16 09:30 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2019-03-21 20:44 - 2019-03-21 20:44 - 000000000 ____D C:\WINDOWS\Panther
2019-03-19 20:35 - 2019-03-19 20:34 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
==================== Ein Monat (geänderte) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2019-04-13 12:42 - 2018-06-03 19:16 - 000000000 ____D C:\Users\Admin
2019-04-13 12:38 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-13 12:38 - 2017-09-18 23:08 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2019-04-13 12:25 - 2018-06-07 09:41 - 000000000 ____D C:\Users\Admin\AppData\Local\D3DSCache
2019-04-13 11:41 - 2015-05-14 20:32 - 000000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2019-04-13 11:32 - 2018-04-06 19:54 - 000002490 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-04-13 11:17 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-13 11:17 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-04-13 11:15 - 2018-06-03 18:26 - 000476264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-04-13 11:01 - 2015-10-15 21:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-04-13 10:54 - 2018-06-03 19:48 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-04-13 10:54 - 2017-06-14 14:36 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla
2019-04-13 10:52 - 2018-04-06 19:52 - 000000000 ____D C:\Users\Admin\AppData\Local\AVAST Software
2019-04-13 10:45 - 2017-06-17 20:38 - 000000000 ____D C:\ProgramData\NVIDIA
2019-04-13 10:40 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-04-13 10:38 - 2018-06-03 19:04 - 004964928 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-04-13 10:36 - 2018-06-03 19:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-04-11 22:23 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-04-11 22:21 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-04-11 22:21 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-04-11 22:20 - 2018-04-12 18:19 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-04-11 22:20 - 2018-04-12 01:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-04-11 22:20 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-04-11 22:18 - 2018-06-03 19:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-04-11 22:18 - 2014-03-28 12:30 - 000000000 ____D C:\Users\Admin\AppData\Roaming\SoftGrid Client
2019-04-11 21:46 - 2014-10-18 15:36 - 000000000 ____D C:\Users\Admin\Documents\Dokumente
2019-04-11 21:22 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-04-11 20:58 - 2014-03-28 09:54 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-04-11 20:52 - 2014-03-28 09:54 - 131129288 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-04-11 20:37 - 2015-01-06 15:16 - 000000000 ____D C:\ProgramData\LogiShrd
2019-04-11 20:27 - 2014-10-29 23:35 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-08 22:11 - 2018-06-03 19:48 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2019-04-07 11:22 - 2018-06-03 19:11 - 002004578 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-04-07 11:22 - 2018-04-12 18:14 - 000854020 _____ C:\WINDOWS\system32\perfh007.dat
2019-04-07 11:22 - 2018-04-12 18:14 - 000191522 _____ C:\WINDOWS\system32\perfc007.dat
2019-04-07 11:06 - 2014-10-18 11:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-04-07 10:40 - 2018-11-16 21:03 - 000000000 ____D C:\Program Files\rempl
2019-04-06 13:54 - 2017-06-21 02:09 - 000000000 ____D C:\Users\Bilder
2019-04-06 10:37 - 2018-02-02 02:02 - 000000000 ____D C:\Users\Admin\AppData\Roaming\7DaysToDie
2019-04-06 10:22 - 2019-03-09 14:38 - 000000000 ____D C:\Users\Admin\AppData\Roaming\EasyAntiCheat
2019-04-01 19:51 - 2018-11-14 18:56 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-04-01 19:51 - 2018-11-14 18:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-03-30 05:02 - 2016-12-27 23:51 - 000000000 ____D C:\Users\Admin\AppData\Roaming\discord
2019-03-30 02:49 - 2014-10-18 11:44 - 000001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-03-30 02:49 - 2014-10-18 11:44 - 000000000 ____D C:\ProgramData\Mozilla
2019-03-30 00:56 - 2018-06-03 19:48 - 000003616 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-30 00:56 - 2018-06-03 19:48 - 000003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-03-30 00:56 - 2018-06-03 19:48 - 000003392 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-30 00:53 - 2016-12-27 23:51 - 000000000 ____D C:\Users\Admin\AppData\Local\Discord
2019-03-23 02:20 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-03-23 02:20 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-03-23 02:20 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-03-23 02:19 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-03-23 02:19 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-03-19 21:22 - 2016-06-18 19:23 - 000000000 ____D C:\Users\Admin\AppData\Local\UnrealEngine
2019-03-19 20:35 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-03-19 20:34 - 2019-02-13 14:07 - 000249152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-03-19 20:34 - 2019-01-06 12:16 - 000037320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-03-19 20:34 - 2018-11-05 10:09 - 000042496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-03-19 20:34 - 2018-06-03 18:26 - 000476256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys.155514688154601
2019-03-19 20:34 - 2018-06-03 18:26 - 000380160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-03-19 20:34 - 2018-06-03 18:26 - 000220632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-03-19 20:34 - 2018-06-03 18:26 - 000205608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-03-19 20:34 - 2018-06-03 18:26 - 000169104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-03-19 20:34 - 2018-06-03 18:26 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-03-19 20:34 - 2018-06-03 18:26 - 000088152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-03-19 20:33 - 2019-01-17 19:34 - 000254408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-03-19 20:33 - 2019-01-06 12:16 - 000320904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-03-19 20:33 - 2019-01-06 12:16 - 000196304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-03-19 20:33 - 2019-01-06 12:16 - 000058168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-03-19 20:33 - 2018-06-03 18:26 - 001034640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-01-06 19:22 - 2017-05-26 20:02 - 000009728 _____ () C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-08-26 16:54 - 2018-08-26 16:54 - 000002316 _____ () C:\Users\Admin\AppData\Local\recently-used.xbel
2015-06-14 20:41 - 2017-06-25 18:38 - 000007605 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\dllhost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dllhost.exe => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2018-06-03 19:04
==================== Ende von FRST.txt ============================
|
|
13.04.2019, 12:10
| #10 |
| | Windows 10 - Pc extrem langsam [gelöst] Und hier die nächste Log: Addition: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 17.03.2019
durchgeführt von Admin (13-04-2019 12:54:52)
Gestartet von C:\Users\Admin\Downloads
Windows 10 Pro Version 1803 17134.706 (X64) (2018-06-03 17:50:07)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Admin (S-1-5-21-3980298719-2773488239-3045808690-1000 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-3980298719-2773488239-3045808690-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3980298719-2773488239-3045808690-503 - Limited - Disabled)
Gast (S-1-5-21-3980298719-2773488239-3045808690-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3980298719-2773488239-3045808690-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-PDF Split & Merge Version 2.5.0 (Build 168) (HKLM-x32\...\7-PDF Split & Merge_is1) (Version: 7-PDF Split & Merge - Version 2.5.0 (Build 168) - 7-PDF, Germany - Thorsten Hodes)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated)
Adobe Flash Player 31 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 31.0.0.108 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.1.201 - Adobe Systems, Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{5A659BE5-849B-484E-A83B-DCB78407F3A4}) (Version: 7.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{F8060941-C0AB-4BCE-88AC-F2FDA2E9F286}) (Version: 7.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5FA8C4BE-8C74-4B9C-9B49-EBF759230189}) (Version: 12.1.0.25 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.3.2369 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 73.0.1270.86 - Die Avast Secure Browser-Autoren)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Big Fish: Game Manager (HKLM-x32\...\BFGC) (Version: 3.3.0.2 - )
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite MFC-290C (HKLM-x32\...\{48D082B9-18F6-4426-AFAC-8B6A3E7021B1}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5931 - CDBurnerXP)
chip 1-click download service (HKLM-x32\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH) <==== ACHTUNG
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\CopyTrans Suite) (Version: 4.017 - WindSolutions)
CrystalDiskInfo 8.0.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 8.0.0 - Crystal Dew World)
Curse Client (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dark Parables: Goldlöckchen und der Stern der Wünsche Sammleredition (HKLM-x32\...\BFG-Dark Parables - Goldloeckchen und der Stern der Wuensche Sammleredition) (Version: - )
Dawn of Hope: Skyline Abenteuer Sammleredition (HKLM-x32\...\BFG-Dawn of Hope - Skyline Abenteuer Sammleredition) (Version: - )
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.69.43.024017 - Electronic Arts Inc.)
Discord (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.16 - NVIDIA Corporation) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 19.1 - Thüringer Landesfinanzdirektion)
Epic Games Launcher (HKLM-x32\...\{AF7881ED-41D7-4ECA-8C7C-AE10DFA0E489}) (Version: 1.1.151.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (HKLM-x32\...\Fraps) (Version: - )
Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.0.4.1029 - DVDVideoSoft Ltd.)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Grim Tales: Fäden des Schicksals (HKLM-x32\...\BFG-Grim Tales - Faeden des Schicksals) (Version: - )
Gwent (HKLM-x32\...\1971477531_is1) (Version: 0.9.24.3.432 - GOG.com)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
iCloud (HKLM\...\{05D97028-FD26-4A3D-BADC-D1CA2E9F1214}) (Version: 7.10.0.9 - Apple Inc.)
Immortal Love: Wunder haben einen Preis (HKLM-x32\...\BFG-Immortal Love - Wunder haben einen Preis) (Version: - )
IrfanView 4.50 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.50 - Irfan Skiljan)
iTunes (HKLM\...\{C704C598-39D0-4B12-BBFA-FF6D43C95BFD}) (Version: 12.9.3.3 - Apple Inc.)
Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Last Year: The Nightmare (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\478637764565401630) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech Gaming Software 8.98 (HKLM\...\Logitech Gaming Software) (Version: 8.98.218 - Logitech Inc.)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
Malwarebytes Anti-Exploit version 1.12.1.147 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.12.1.147 - Malwarebytes)
Malwarebytes Anti-Malware Version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6122.5000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.6129.5001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\OneDriveSetup.exe) (Version: 18.151.0729.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Might & Magic Heroes VI (HKLM-x32\...\{745D37C2-26F4-4B65-BA13-F9840EBFA75B}) (Version: 1.8 - Ubisoft)
Might and Magic Heroes VII (HKLM-x32\...\Uplay Install 1176) (Version: - Ubisoft)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 66.0.2 (x64 de) (HKLM\...\Mozilla Firefox 66.0.2 (x64 de)) (Version: 66.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision Controller-Treiber 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 416.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.16 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.15.0.164 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.164 - NVIDIA Corporation)
NVIDIA Grafiktreiber 416.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.16 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.37.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.5 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.21.179 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.118.2.33 - Overwolf Ltd.)
PDF Architect 2 (HKLM-x32\...\PDF Architect 2) (Version: 2.0.24.16092 - pdfforge GmbH)
PDF Architect 2 View Module (HKLM-x32\...\{D691E998-CF53-4F6C-AC20-E4284660E0E7}) (Version: 2.1.6.19758 - pdfforge GmbH)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.140.248 - Google, Inc.)
PokerStars.net (HKLM-x32\...\PokerStars.net) (Version: - PokerStars.net)
Queen's Quest III: Das Ende der Dämmerung Sammleredition (HKLM-x32\...\BFG-Queens Quest III - Das Ende der Daemmerung Sammleredition) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.2.0 - Rockstar Games)
Spotify (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Spotify) (Version: 1.0.45.186.g3b5036d6 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Syncios 6.1.4 (HKLM-x32\...\Syncios) (Version: 6.1.4 - Anvsoft)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Forgotten Fairytales: Reise nach Spectra Sammleredition (HKLM-x32\...\BFG-The Forgotten Fairytales - Reise nach Spectra Sammleredition) (Version: - )
The Walking Dead (HKLM-x32\...\{067A7675-CF5E-456D-AB72-615E3BBB34CE}) (Version: - Telltale Games)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.31.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.31.0.0 - GOG.com)
TP-LINK TL-WN821N Driver (HKLM-x32\...\{26B52E5B-1620-4676-9B46-B6C56B8105CE}) (Version: 1.2.1 - TP-LINK)
Twitch (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Twitch Interactive, Inc.)
Twitch (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 4.8 - Ubisoft)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.70 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
YTD Video Downloader 5.9.8 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 5.9.8 - GreenTree Applications SRL) <==== ACHTUNG
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3980298719-2773488239-3045808690-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-3980298719-2773488239-3045808690-1000_Classes\CLSID\{67dbd5b3-4935-49a1-b0d7-9ab53310d9f3}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-01-15] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-10-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0AB300DE-58A7-47F8-8074-7559C251D8EC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe (Apple Inc. -> Apple Inc.)
Task: {0E44159A-B6A3-4763-BD24-EFB1A2B9FED7} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F3A31FE-999B-45B6-BCF1-A2E11C848C43} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {107182C3-8147-4025-88D7-670683E20D95} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {1375F71A-1645-4DD7-B030-D53C5BD97B35} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {170B5C22-43B1-41C3-83EC-71CDCBD71AA0} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {19C3820F-2251-42EA-8923-D222D5E75AF7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Keine Datei <==== ACHTUNG
Task: {1AEEFE7D-67BA-40E4-855D-76EFCAB3FA65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {1B3E7F41-4314-4A0F-9012-EF68BDBC7DCA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1B9A6809-903D-4080-8CE5-0AF47B49BE4C} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1EA70B72-BE39-43C0-AED7-8165831ED1E3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {1FF6ABF2-F76F-4C3A-87B3-6A3E112EFC55} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {2AAE79E8-D40D-4984-8329-653FF53B2D38} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2ADAC3BB-5C3E-4CDE-880D-288FD6BE7846} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2CBD74C7-022A-42AB-BB79-73F444BC2411} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {33B9A822-B026-4E5D-AAA4-5DFB5922E92D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {34DE784D-8ECA-4B16-8B59-B89FF11D41EE} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {356D5C7D-F6E4-4C30-ACDC-ECF989B6AEBE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {37C60830-CFAD-416A-AB94-39A85FDF020E} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {3B464C4B-9206-4429-9282-7D8D5FCDDC30} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {48A6D12D-CB15-4A78-8ECA-ACC4780AA6E1} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {4B19C0B0-B42C-4024-BD24-2F97BE2C4C93} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_pepper.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {4B9CE7B3-D657-4B6E-8D9E-79C453EF9B53} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {599F6115-3848-4506-ADFE-755BEAE57B63} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5B74F499-7615-431A-B431-6AFE54B1D07B} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {5C5ED77C-D670-4F50-BEB3-079E73154D6E} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {675FEF00-9230-40D2-B8EB-69A15023206D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6899DB0F-CCE5-4A91-AF96-070A7B91A6FB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {68C5E84E-2672-4E80-83DC-844618DAFE85} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe (Overwolf Ltd -> Overwolf LTD)
Task: {6B845EAF-9AF6-46FC-BD3F-05DB5E51A72C} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {754B69B9-1E68-4B7C-9BFA-48921B292EBB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {7B323C2F-2395-4352-9BD2-DA59A144E8C8} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7D7BB82A-6F33-4B0F-9C10-660176BA03FE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {815F918D-5475-4B87-B373-049CFE77AA42} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {8FD5B74B-04A3-4DE1-963C-9FAEE7E9CF26} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {92046BE7-D25B-4626-811C-1A0361FB1EBB} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {923EE09C-72F5-49E4-926F-AAC343A143A1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {9D0B5CC9-4A1C-44AF-87F8-4C3CBFDAA43F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {A30755A2-9AC0-409F-8B26-511EE4EF2D13} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {ADD0F212-78DC-4538-88B3-BDD1B31EDB46} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AF033D66-CAD4-4DCD-A35D-0A2070C4FD80} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B17206E4-B922-4A71-983F-3F1CF98CD95F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B3D05A67-C139-4AFA-A440-3FDDAEF08C19} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {B4D96B81-2207-4323-9D85-2118986DECDC} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {B6A43785-883B-4B87-A697-23A102EDE488} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B6A69130-14BA-4C8B-948E-3310E61FC14D} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {B9979F0E-FB70-4FDA-A0BF-A04C98664A3D} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C15F91CC-8758-4733-9DF5-5D0CBB4489D7} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C6FC9D0D-A68B-4E32-84C8-1EBBDB06507B} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CA565177-38BD-4580-888F-50C32B16F4BE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D0F4103B-3B6C-4BE1-882E-167B236A62DA} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {D31B1EB3-6F59-4788-8DEB-84C402FC5086} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {D35A134F-04F2-4BAA-ACBB-68C4D1A357D2} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {D8603055-060E-43FE-80CB-0F5F1CB4C054} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {E2BE6555-DB97-4397-86F8-2CFB6B90DF76} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe (Apple Inc. -> Apple Inc.)
Task: {EB97B95A-7EDC-4552-8910-E9A74DFFC713} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F121BE7E-541E-427E-ABFE-75E989AEBBB6} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {F2C94E47-53E3-4805-8118-33F61802E181} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F3C45966-B426-4CDA-ABB4-6A3E8B5FE800} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {F650C222-2088-4972-B60A-1C93DF3B8084} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F667076C-F20F-44AE-B9CA-55550CB32C6D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {F67357A2-A6BC-4E0A-93CE-28149FBBA692} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {FA000C06-16AC-480D-A1D3-811D72F59054} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FB06EF73-8322-4FA0-AA18-6FF249D1265D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-11-02 18:45 - 2015-10-29 19:10 - 000382312 _____ (Digital Wave Ltd -> Digital Wave Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
2017-08-18 10:41 - 2017-08-18 10:41 - 000077824 _____ () [Datei ist nicht signiert] C:\Program Files\Logitech Gaming Software\LAClient\zlib.dll
2017-08-18 10:41 - 2017-08-18 10:41 - 000355840 _____ (The cURL library, hxxp://curl.haxx.se/) [Datei ist nicht signiert] C:\Program Files\Logitech Gaming Software\LAClient\LIBCURL.dll
2017-08-18 10:41 - 2017-08-18 10:41 - 000144896 _____ () [Datei ist nicht signiert] C:\Program Files\Logitech Gaming Software\LAClient\libssh2.dll
2017-08-18 10:41 - 2017-08-18 10:41 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files\Logitech Gaming Software\LAClient\SSLEAY32.dll
2017-08-18 10:41 - 2017-08-18 10:41 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files\Logitech Gaming Software\LAClient\LIBEAY32.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000958312 _____ (Digital Wave Ltd -> Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\MSVCR120.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000442728 _____ (Digital Wave Ltd -> Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\MSVCP120.dll
2015-11-02 18:45 - 2015-10-29 19:10 - 000196968 _____ (Digital Wave Ltd -> DVDVideoSoft Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\updhelperlib.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000110952 _____ (Digital Wave Ltd -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000253800 _____ (Digital Wave Ltd -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\collector.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 001160552 _____ (Digital Wave Ltd -> The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\LIBEAY32.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000125288 _____ (Digital Wave Ltd -> DVDVideoSoft Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\tier0.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000104296 _____ (Digital Wave Ltd -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000020328 _____ (Digital Wave Ltd -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000044392 _____ (Digital Wave Ltd -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000286056 _____ (Digital Wave Ltd -> The cURL library, hxxp://curl.haxx.se/) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\libcurl.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000282472 _____ (Digital Wave Ltd -> DVDVideoSoft Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\dlmgr.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000295272 _____ (Digital Wave Ltd -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\stat.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000272232 _____ (Digital Wave Ltd -> The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\SSLEAY32.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000771432 _____ (Digital Wave Ltd -> Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\MSVCR100.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\TEMP:0B9DC6BB [190]
AlternateDataStreams: C:\ProgramData\TEMP:195E8317 [180]
AlternateDataStreams: C:\ProgramData\TEMP:20C00621 [225]
AlternateDataStreams: C:\ProgramData\TEMP:2187A2BB [219]
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F [134]
AlternateDataStreams: C:\ProgramData\TEMP:2F947175 [170]
AlternateDataStreams: C:\ProgramData\TEMP:37AEC263 [240]
AlternateDataStreams: C:\ProgramData\TEMP:44A0FEC3 [468]
AlternateDataStreams: C:\ProgramData\TEMP:46CDAE37 [245]
AlternateDataStreams: C:\ProgramData\TEMP:4C235DA4 [237]
AlternateDataStreams: C:\ProgramData\TEMP:4EE36485 [242]
AlternateDataStreams: C:\ProgramData\TEMP:5167543E [238]
AlternateDataStreams: C:\ProgramData\TEMP:565D4B03 [241]
AlternateDataStreams: C:\ProgramData\TEMP:5C188F78 [220]
AlternateDataStreams: C:\ProgramData\TEMP:5E7551D4 [221]
AlternateDataStreams: C:\ProgramData\TEMP:667D4A95 [166]
AlternateDataStreams: C:\ProgramData\TEMP:7F477B0D [232]
AlternateDataStreams: C:\ProgramData\TEMP:87731E5E [175]
AlternateDataStreams: C:\ProgramData\TEMP:9E3D44B7 [388]
AlternateDataStreams: C:\ProgramData\TEMP:A19DFC74 [189]
AlternateDataStreams: C:\ProgramData\TEMP:A1EB942C [494]
AlternateDataStreams: C:\ProgramData\TEMP:B504E4C2 [169]
AlternateDataStreams: C:\ProgramData\TEMP:B61767F5 [177]
AlternateDataStreams: C:\ProgramData\TEMP:B6E58523 [187]
AlternateDataStreams: C:\ProgramData\TEMP:B74BD6BF [90]
AlternateDataStreams: C:\ProgramData\TEMP:B7D1FD90 [223]
AlternateDataStreams: C:\ProgramData\TEMP:BB6E0C06 [244]
AlternateDataStreams: C:\ProgramData\TEMP:C00C7190 [165]
AlternateDataStreams: C:\ProgramData\TEMP:C1616CD9 [222]
AlternateDataStreams: C:\ProgramData\TEMP:C453123E [246]
AlternateDataStreams: C:\ProgramData\TEMP:C50DBD80 [220]
AlternateDataStreams: C:\ProgramData\TEMP:C8E3A625 [442]
AlternateDataStreams: C:\ProgramData\TEMP:CF82DADF [224]
AlternateDataStreams: C:\ProgramData\TEMP:CFE660B9 [227]
AlternateDataStreams: C:\ProgramData\TEMP:D6A43EB0 [171]
AlternateDataStreams: C:\ProgramData\TEMP:DFB12512 [237]
AlternateDataStreams: C:\ProgramData\TEMP:EF123AF6 [227]
AlternateDataStreams: C:\ProgramData\TEMP:F176B6C6 [173]
AlternateDataStreams: C:\Users\Public\AppData:CSM [482]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\localhost -> localhost
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2019-01-05 11:57 - 000000030 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\system32\wbem;C:\Windows\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\Pictures\Bilder\1280x1024.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Keine Datei)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "LWS"
HKLM\...\StartupApproved\Run32: => "Syncios device service"
HKLM\...\StartupApproved\Run32: => "BrMfcWnd"
HKLM\...\StartupApproved\Run32: => "ControlCenter3"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\StartupFolder: => "CurseClientStartup.ccip"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "iCloudDrive"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "iCloudPhotos"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "Overwolf"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{91586618-946C-4FB4-91CD-5005643AEF07}C:\program files (x86)\heroes of the storm\versions\base65285\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base65285\heroesofthestorm_x64.exe Keine Datei
FirewallRules: [TCP Query User{D5CE599F-BC72-4139-9B92-8EE7940047AF}C:\program files (x86)\heroes of the storm\versions\base65285\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base65285\heroesofthestorm_x64.exe Keine Datei
FirewallRules: [{FA0E4702-4093-4E15-B270-2626F46D64E7}] => (Allow) C:\Games\Steam\SteamApps\common\The Forest\TheForestVR.exe () [Datei ist nicht signiert]
FirewallRules: [{DAA29CEF-0243-4B9C-A15D-92C32AD4DF69}] => (Allow) C:\Games\Steam\SteamApps\common\The Forest\TheForestVR.exe () [Datei ist nicht signiert]
FirewallRules: [{97CC336C-6B98-408F-90D1-3241C64BB954}] => (Allow) C:\Games\Steam\SteamApps\common\The Forest\TheForest.exe () [Datei ist nicht signiert]
FirewallRules: [{E2E288BC-973B-4883-9CE9-FFDD0D83BA41}] => (Allow) C:\Games\Steam\SteamApps\common\The Forest\TheForest.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{5B6B753B-9851-43FC-BC23-13DF59657DC4}C:\games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{8D0AB38E-A89C-4DD6-8130-453DC5962439}C:\games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{248D0268-6379-41DF-9A1F-D50FBAE1017E}C:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{9BD958E7-D77F-4F5D-80F4-0B90BB678079}C:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{CD1D4941-86C2-4582-8E72-6910520AB4F0}C:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{E274FBF5-D677-40AD-973B-A339F7EDDFC2}C:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{624C8525-1D3E-464F-8F65-85A88E9BB9C3}C:\games\steam\steamapps\common\7 days to die rmod\7daystodie.exe] => (Allow) C:\games\steam\steamapps\common\7 days to die rmod\7daystodie.exe Keine Datei
FirewallRules: [TCP Query User{8664D5EB-CEE1-47EE-8A1A-2F9D79A5AD3E}C:\games\steam\steamapps\common\7 days to die rmod\7daystodie.exe] => (Allow) C:\games\steam\steamapps\common\7 days to die rmod\7daystodie.exe Keine Datei
FirewallRules: [{FC1CA88F-E491-4082-A011-A244340BCB83}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4EBA2AA2-1BE7-4135-9ED7-FB8D445CED42}] => (Allow) C:\Games\Steam\SteamApps\common\FINAL FANTASY IX\FF9_Launcher.exe () [Datei ist nicht signiert]
FirewallRules: [{0AFBA540-3B10-4BF5-A1E6-7BD15C05F813}] => (Allow) C:\Games\Steam\SteamApps\common\FINAL FANTASY IX\FF9_Launcher.exe () [Datei ist nicht signiert]
FirewallRules: [{141590C2-3110-44FD-9306-012C5DB79128}] => (Allow) C:\Games\Steam\SteamApps\common\FINAL FANTASY VII\FF7_Launcher.exe (Square Enix Ltd. -> )
FirewallRules: [{934CB9CE-FF9C-4407-86B3-034868175EDD}] => (Allow) C:\Games\Steam\SteamApps\common\FINAL FANTASY VII\FF7_Launcher.exe (Square Enix Ltd. -> )
FirewallRules: [UDP Query User{FE829D35-C82F-4921-9A82-5916D9C62894}C:\games\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) C:\games\steam\steamapps\common\7 days to die\7daystodie.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{976FB3A8-03BC-48AC-94E4-FB4F2C6F4FD6}C:\games\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) C:\games\steam\steamapps\common\7 days to die\7daystodie.exe () [Datei ist nicht signiert]
FirewallRules: [{1EB35C04-BC98-4557-A713-3525A67FF6CF}] => (Allow) C:\Games\Steam\SteamApps\common\7 Days To Die\7dLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{0299E3D2-12F3-430A-AF82-20CA25A6B9EF}] => (Allow) C:\Games\Steam\SteamApps\common\7 Days To Die\7dLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{7CD05211-4599-40AF-A989-6CB1FBF295EA}] => (Allow) C:\Games\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{BF45EB9C-D3D0-45CD-B8E3-9380EB8C103F}] => (Allow) C:\Games\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{1C098A03-26A5-45C7-BA6E-D44E62936CBB}] => (Allow) C:\Games\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{CC31B6E3-2EA6-4601-BD57-347AC66A3A6D}] => (Allow) C:\Games\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{5155D4E5-454D-4015-B993-606F65F2E8A5}] => (Allow) C:\Games\Steam\SteamApps\common\Crystals of Time\Crystals of Time.exe () [Datei ist nicht signiert]
FirewallRules: [{4F2EE6D9-2457-4800-AA58-00DBF751E097}] => (Allow) C:\Games\Steam\SteamApps\common\Crystals of Time\Crystals of Time.exe () [Datei ist nicht signiert]
FirewallRules: [{D295C900-9F94-4D5C-BE1F-8379766657E6}] => (Allow) LPort=1900
FirewallRules: [{48112717-B1BD-4207-87EF-2AC1540B1B0A}] => (Allow) LPort=2869
FirewallRules: [{FEE46130-1FC0-4235-9C20-0CDBDA4BAD4D}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{8D483CB3-2E14-42B8-ADFF-F1170DC6F1DA}C:\program files (x86)\gog galaxy\games\gwent\gwent.exe] => (Allow) C:\program files (x86)\gog galaxy\games\gwent\gwent.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{B31FE111-8414-4424-BDA6-48A64CD64904}C:\program files (x86)\gog galaxy\games\gwent\gwent.exe] => (Allow) C:\program files (x86)\gog galaxy\games\gwent\gwent.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{AD04857A-5FDB-4DEF-8671-D8DCC97C80B8}C:\users\admin\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\admin\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{6EA372A1-052E-4E88-AE19-219F942CEF38}C:\users\admin\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\admin\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{0449A45F-4E07-40EE-A04C-43ACB40601D4}C:\games\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\games\steam\steamapps\common\h1z1 king of the kill\h1z1.exe Keine Datei
FirewallRules: [TCP Query User{E3CA4442-9822-4696-80EE-DC01FBFCF9EC}C:\games\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\games\steam\steamapps\common\h1z1 king of the kill\h1z1.exe Keine Datei
FirewallRules: [{00FDF1E6-76AA-4724-A42A-6AC3E95C0895}] => (Allow) C:\Games\Steam\SteamApps\common\H1Z1 King of the Kill\LaunchPad.exe Keine Datei
FirewallRules: [{024FE7F4-B110-49B0-9C36-44078106AF47}] => (Allow) C:\Games\Steam\SteamApps\common\H1Z1 King of the Kill\LaunchPad.exe Keine Datei
FirewallRules: [{7B196BEB-4F81-4A74-A604-97E336CB2472}] => (Allow) C:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{256457AB-CE0B-445C-8B8B-39827A55BCCD}] => (Allow) C:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{562DB2B3-2F4C-490E-89B7-C636E35E4D52}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{3E7910F9-7889-4892-A86F-7F3955D1658D}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [TCP Query User{1C761363-3E1D-4E0B-82ED-608013A75D78}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{3C72DBCA-C707-41BB-9DA9-BFEE6C0785AE}] => (Allow) C:\Games\Steam\SteamApps\common\Fallout 4\Fallout4Launcher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{4E55F47E-A945-478A-8982-814323AC762D}] => (Allow) C:\Games\Steam\SteamApps\common\Fallout 4\Fallout4Launcher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{A0441FB0-512F-43F5-8429-7F683074CAD1}] => (Allow) C:\Games\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{32377C80-65D0-4749-A996-43E29E4E9E39}] => (Allow) C:\Games\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{658706B1-5E77-4784-BDBB-E1E75C7DEAFA}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{5CE650F1-83E8-4644-8E8A-56FE5BBC48BA}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{E08A2929-BA62-4E6A-A781-87C24E09BF2A}] => (Allow) C:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EF1F2960-3FCE-475F-B926-7280BE96D0F0}] => (Allow) C:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{CF335F13-7058-4729-8886-899D336D0205}C:\games\heroes of might&magic vi\might & magic heroes vi.exe] => (Allow) C:\games\heroes of might&magic vi\might & magic heroes vi.exe (Limbic Entertainment GmbH -> Black Hole Entertainment)
FirewallRules: [UDP Query User{53DBFE2B-5996-4ACF-AB26-A00AF7BDF7EF}C:\games\heroes of might&magic vi\might & magic heroes vi.exe] => (Allow) C:\games\heroes of might&magic vi\might & magic heroes vi.exe (Limbic Entertainment GmbH -> Black Hole Entertainment)
FirewallRules: [{9C846C10-3A01-4AB8-A8DD-2257E3527AEC}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{ABAD258C-041A-48A6-819C-BF98267AE0B1}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{7016414A-AF80-44B4-8983-5052769EC3A5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B1CA6F07-71E2-42D0-9418-569FA5C3CAEE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{E7395505-38F3-4F95-A834-490481A10ADA}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{A75426AD-0FCD-4A2D-BFA9-6214CF9A1069}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F9FA37E8-3621-461C-909E-3859BB75D189}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.exe Keine Datei
FirewallRules: [{A2A3DE87-21DD-4E02-AD9F-D0C542EA1EC9}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe Keine Datei
FirewallRules: [{C6B395B9-7470-490C-92C8-85CCD3A9B385}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.exe Keine Datei
FirewallRules: [{5456823E-7266-40FC-8988-CBE970066E0B}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe Keine Datei
FirewallRules: [{353DEE2A-3DDF-42EB-98E9-0A8BF4174710}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Tools\Launcher.exe Keine Datei
FirewallRules: [{2B9A08FE-8573-4078-AB8F-3106E29CC397}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe Keine Datei
FirewallRules: [{1D18CF12-94F0-4089-8730-2CCE253A3132}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.exe Keine Datei
FirewallRules: [{4B1FB6A7-B75F-4123-ACF7-432579ED04A9}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe Keine Datei
FirewallRules: [{2DE751CA-F2D1-4371-A5D1-CD7850653B87}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.exe Keine Datei
FirewallRules: [{8ABD0BD0-9291-4DA3-843B-0B6C8A01AFE8}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe Keine Datei
FirewallRules: [{D2128E1F-218B-4669-933C-0A4BD743E8D8}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Tools\Launcher.exe Keine Datei
FirewallRules: [{00A75919-3561-421B-B9B2-88D57941DE82}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe Keine Datei
FirewallRules: [{7E28241B-9897-465C-96DD-5D47626AFCF7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{99CE67B2-299D-4383-8ED3-E81C424FFAAD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe Keine Datei
FirewallRules: [{96E87DDA-14EA-435D-8490-E381618FCB42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{853B66C9-BECE-4644-8BCD-FA4D1BF3D193}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{25D7E928-2D0E-4AD2-A4E8-B119C0CFF407}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4474F81F-895B-468B-9D6B-38B7F51F4FCF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F5CC905F-94A2-47C7-99E2-DFC590DF4590}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{242D3480-2E50-4611-8377-FBCDF161FE83}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C2EFB4F7-A5C5-47D0-9ECE-3583F257D105}] => (Allow) C:\Games\Ubisoft Game Launcher\games\Might and Magic Heroes VII\Binaries\Win64\MMH7Game-Win64-Shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.)
FirewallRules: [TCP Query User{F0B91633-CF64-4335-8076-1D0A3C31C3F9}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{9E37AF27-DFB0-4E2B-AF58-654A0358F9BC}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{4FA504A8-9F19-487B-9903-54840BF074EA}] => (Allow) C:\Games\Steam\SteamApps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7CED4406-4925-4499-AAFE-7225FB94C513}] => (Allow) C:\Games\Steam\SteamApps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{D745747A-D81B-4D5D-8763-343B0AC5ECB5}C:\games\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) C:\games\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{9ACED6CD-0432-4F69-B203-91E4FDDA998F}C:\games\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) C:\games\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{43D81546-74C9-4539-B147-27729F587138}] => (Allow) C:\Games\Steam\SteamApps\common\The Binding Of Isaac\Isaac.exe (Edmund Mcmillen & Florian Himsl ) [Datei ist nicht signiert]
FirewallRules: [{A3255493-8D63-4FD3-8653-ACC78386C264}] => (Allow) C:\Games\Steam\SteamApps\common\The Binding Of Isaac\Isaac.exe (Edmund Mcmillen & Florian Himsl ) [Datei ist nicht signiert]
FirewallRules: [{826FF667-2940-47A8-9020-CA550630FD96}] => (Allow) C:\Games\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe (Valve Corp. -> Irrational Games)
FirewallRules: [{80BA1865-ED77-41BA-A3B9-0A339D35D224}] => (Allow) C:\Games\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe (Valve Corp. -> Irrational Games)
FirewallRules: [{B01585EB-6762-42C3-A9B7-CD9F16F54C8F}] => (Allow) C:\Program Files (x86)\Anvsoft\Syncios\pdt_syncios.exe (Anvsoft Inc. -> Syncios Data Transfer)
FirewallRules: [{A257D034-51A6-4DFC-9498-36641310CD66}] => (Allow) C:\Games\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe (Double Fine Productions) [Datei ist nicht signiert]
FirewallRules: [{26AB552B-8543-437E-8069-879489736C61}] => (Allow) C:\Games\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe (Double Fine Productions) [Datei ist nicht signiert]
FirewallRules: [{3B16FB3A-391E-4552-B2F7-32CAAA2134DF}] => (Allow) C:\Games\Steam\SteamApps\common\WormsRevolution\WormsRevolution.exe () [Datei ist nicht signiert]
FirewallRules: [{F1671749-D48E-435D-9B99-3AF0CF4B46AD}] => (Allow) C:\Games\Steam\SteamApps\common\WormsRevolution\WormsRevolution.exe () [Datei ist nicht signiert]
FirewallRules: [{6C27287A-7653-4E67-992D-B0DC92C0E6D5}] => (Allow) C:\Games\GTA V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{58717B16-5A58-4F3C-BA6C-988E72C37A07}] => (Allow) C:\Games\GTA V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{91221136-E375-41C3-993C-7EE1EA9BA9F9}] => (Allow) C:\Games\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{8D1EDAD2-F66D-4C72-8F08-37A0893B9938}] => (Allow) C:\Games\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{9D1B5246-E552-4CF1-A29F-68FD575FA80C}] => (Allow) C:\Games\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{3A5FB783-3438-4539-A90C-6934D05B789D}] => (Allow) C:\Games\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{EF0C8522-B0EE-4997-B39B-A22D457F8899}] => (Allow) C:\Games\Steam\SteamApps\common\Shadowrun Returns\Shadowrun.exe () [Datei ist nicht signiert]
FirewallRules: [{B7F1DADB-BBA4-4886-AB02-A55549A50CD9}] => (Allow) C:\Games\Steam\SteamApps\common\Shadowrun Returns\Shadowrun.exe () [Datei ist nicht signiert]
FirewallRules: [{2DF31FFC-C921-418D-92D5-18E647E6597F}] => (Allow) C:\Games\Steam\SteamApps\common\Age2HD\Launcher.exe (TODO: <Company name>) [Datei ist nicht signiert]
FirewallRules: [{727C60AF-A5ED-44A2-A926-4D8A254B5E95}] => (Allow) C:\Games\Steam\SteamApps\common\Age2HD\Launcher.exe (TODO: <Company name>) [Datei ist nicht signiert]
FirewallRules: [{3B403097-72BA-47FD-A84A-DF766DEF25F8}] => (Allow) C:\Games\Steam\SteamApps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe (FUNCOM OSLO AS -> BattlEye Innovations)
FirewallRules: [{C73D6480-044C-4742-85A1-A73EE7CD89B2}] => (Allow) C:\Games\Steam\SteamApps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe (FUNCOM OSLO AS -> BattlEye Innovations)
FirewallRules: [{6DFDAC77-8A9D-4271-B2D6-7AB862050D28}] => (Allow) C:\Games\Steam\SteamApps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe (FUNCOM OSLO AS -> Funcom Oslo AS)
FirewallRules: [{94450024-0574-4010-9D81-5BC5ABBB5A1A}] => (Allow) C:\Games\Steam\SteamApps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe (FUNCOM OSLO AS -> Funcom Oslo AS)
FirewallRules: [{9DDA2956-262B-4D4C-87EE-DFDC1F381227}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4F320E5F-6D9A-425C-A0BE-0ACDEA79B7F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BE344FE6-965E-4491-9B2B-E9D4A492179A}] => (Allow) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6C7A775B-7FA3-4F03-B478-085D550B2314}] => (Allow) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4BF46722-1CBA-4D6F-BFAC-6E604B02FE70}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F1722F8B-24B7-4EEC-9EA6-2CC08956A657}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FBC0754F-99BC-4766-9D95-CBB32BDB39C5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{247CE6C0-9ED8-4F7E-90DA-ADF94CF06024}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F20F98EB-3ADF-4DC3-919C-7477B769B58C}] => (Allow) C:\Games\Steam\SteamApps\common\Ben and Ed\BenAndEd.exe () [Datei ist nicht signiert]
FirewallRules: [{5801DA57-E489-4D05-9622-032FB17E93FB}] => (Allow) C:\Games\Steam\SteamApps\common\Ben and Ed\BenAndEd.exe () [Datei ist nicht signiert]
FirewallRules: [{C8C8C016-C5BE-462A-A7D5-FFC0E8521DAB}] => (Allow) C:\Games\Steam\SteamApps\common\Ben and Ed - Blood Party\BaEBloodParty.exe () [Datei ist nicht signiert]
FirewallRules: [{8EB3CB15-8F8A-4D68-ABC8-97A9608D967D}] => (Allow) C:\Games\Steam\SteamApps\common\Ben and Ed - Blood Party\BaEBloodParty.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{B2878FE4-F92B-4D53-9873-3BC612C43B8F}C:\games\steam\steamapps\common\ben and ed\benanded\binaries\win32\benanded.exe] => (Allow) C:\games\steam\steamapps\common\ben and ed\benanded\binaries\win32\benanded.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{E44D739E-0F10-4165-992D-B7ABC501D362}C:\games\steam\steamapps\common\ben and ed\benanded\binaries\win32\benanded.exe] => (Allow) C:\games\steam\steamapps\common\ben and ed\benanded\binaries\win32\benanded.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{7C2EEF8A-CEC0-4ABD-9AF6-70DD55D93D35}] => (Allow) C:\Games\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe () [Datei ist nicht signiert]
FirewallRules: [{197F105F-01F1-422B-AE84-945BA2352D99}] => (Allow) C:\Games\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{BB918DA0-889E-4882-A98C-115483FB85F8}C:\games\steam\steamapps\common\ben and ed - blood party\baebloodparty\binaries\win32\baebloodparty-win32-debuggame.exe] => (Allow) C:\games\steam\steamapps\common\ben and ed - blood party\baebloodparty\binaries\win32\baebloodparty-win32-debuggame.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{DAEBCE4F-9EBD-43C0-BB7A-510CDD303D59}C:\games\steam\steamapps\common\ben and ed - blood party\baebloodparty\binaries\win32\baebloodparty-win32-debuggame.exe] => (Allow) C:\games\steam\steamapps\common\ben and ed - blood party\baebloodparty\binaries\win32\baebloodparty-win32-debuggame.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{D51E499F-7E03-4353-84E2-65E06280822A}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C5456322-DAF9-4276-871F-4B835C5F305E}] => (Allow) C:\Games\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Datei ist nicht signiert]
FirewallRules: [{6E5FA043-7E28-46AF-ABD9-D80C4E6B5156}] => (Allow) C:\Games\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Datei ist nicht signiert]
FirewallRules: [{5361E50A-5590-4E57-A3DA-682B366F3303}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{4A6DCF92-DBE4-49AE-A360-0299A8DB3947}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
==================== Wiederherstellungspunkte =========================
11-04-2019 20:51:36 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (04/13/2019 12:41:36 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (04/13/2019 12:38:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: PickerHost.Exe, Version: 10.0.17134.1, Zeitstempel: 0x2fa59209
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.17134.556, Zeitstempel: 0x74bed8b0
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000f479b
ID des fehlerhaften Prozesses: 0xe48
Startzeit der fehlerhaften Anwendung: 0x01d4f1e505db1f48
Pfad der fehlerhaften Anwendung: C:\Windows\System32\PickerHost.Exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: 15dff58d-df3b-4e7f-9964-b816a65dc112
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (04/13/2019 12:33:04 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: SHUYIN)
Description: httphttp-2147467263
Error: (04/13/2019 12:25:09 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: SHUYIN)
Description: httphttp-2147467263
Error: (04/13/2019 11:59:47 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (04/13/2019 11:41:55 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (04/13/2019 10:48:30 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Nur zur Information.
(Patch task for {90140011-0066-0407-0000-0000000FF1CE}): DownloadLatest Failed: HTTP-Status 403: Der Client verfügt nicht über genügend Zugriffsrechte auf das angeforderte Serverobjekt.
Error: (04/13/2019 10:48:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: PickerHost.Exe, Version: 10.0.17134.1, Zeitstempel: 0x2fa59209
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.17134.556, Zeitstempel: 0x74bed8b0
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000f479b
ID des fehlerhaften Prozesses: 0x164c
Startzeit der fehlerhaften Anwendung: 0x01d4f1d575243f74
Pfad der fehlerhaften Anwendung: C:\Windows\System32\PickerHost.Exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: 4a5c0916-a3f1-43f6-af09-8084a68295e8
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Systemfehler:
=============
Error: (04/13/2019 12:35:51 PM) (Source: DCOM) (EventID: 10016) (User: SHUYIN)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "SHUYIN\Admin" (SID: S-1-5-21-3980298719-2773488239-3045808690-1000) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (04/13/2019 12:35:51 PM) (Source: DCOM) (EventID: 10016) (User: SHUYIN)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "SHUYIN\Admin" (SID: S-1-5-21-3980298719-2773488239-3045808690-1000) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (04/13/2019 12:35:51 PM) (Source: DCOM) (EventID: 10016) (User: SHUYIN)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "SHUYIN\Admin" (SID: S-1-5-21-3980298719-2773488239-3045808690-1000) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (04/13/2019 12:33:02 PM) (Source: DCOM) (EventID: 10016) (User: SHUYIN)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "SHUYIN\Admin" (SID: S-1-5-21-3980298719-2773488239-3045808690-1000) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (04/13/2019 12:32:34 PM) (Source: DCOM) (EventID: 10005) (User: SHUYIN)
Description: Fehler "2" in DCOM, als der Dienst "AvastSecureBrowserElevationService" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{620A093F-79D3-4CAB-8CAD-EB1A39A8C0A2}
Error: (04/13/2019 12:32:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Avast Secure Browser Elevation Service" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (04/13/2019 12:32:34 PM) (Source: DCOM) (EventID: 10005) (User: SHUYIN)
Description: Fehler "2" in DCOM, als der Dienst "AvastSecureBrowserElevationService" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{620A093F-79D3-4CAB-8CAD-EB1A39A8C0A2}
Error: (04/13/2019 12:32:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Avast Secure Browser Elevation Service" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
CodeIntegrity:
===================================
Date: 2019-04-13 10:38:53.809
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-13 10:38:25.383
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-11 22:22:38.471
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-11 20:16:04.020
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-11 20:14:54.502
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-08 14:30:21.532
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-04-08 14:30:20.665
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\ashShell.dll that did not meet the Microsoft signing level requirements.
Date: 2019-04-07 11:17:38.822
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: AMD FX(tm)-6300 Six-Core Processor
Prozentuale Nutzung des RAM: 57%
Installierter physikalischer RAM: 8189.55 MB
Verfügbarer physikalischer RAM: 3521.39 MB
Summe virtueller Speicher: 16381.55 MB
Verfügbarer virtueller Speicher: 10419.1 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:930.97 GB) (Free:20.31 GB) NTFS
\\?\Volume{d1100f04-b5b1-11e3-869c-806e6f6e6963}\ (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{2cc7c6e0-0000-0000-0000-a0c4e8000000}\ () (Fixed) (Total:0.44 GB) (Free:0.04 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 2CC7C6E0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
==================== Ende von Addition.txt ============================
|
|
13.04.2019, 12:23
| #11 | ||
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 10 - Pc extrem langsam [gelöst]Zitat:
 sach jetzt nicht, dass das irgendeine gecrackte Kacke ist... ...obwohl ich schon davon ausgehe, wenn ich ein CS6 auf einem privaten Rechner sehe Und das folgende zitierte bitte deinstallieren: Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
13.04.2019, 12:47
| #12 |
| | Windows 10 - Pc extrem langsam [gelöst] Ohje keine Ahnung was das für ein Mist war. Ich habe es auf jeden Fall noch nie benutzt. Meine Freundin hatte das Programm von ihrem Vater mal bekommen und wohl an meinem Rechner installiert -.- Habe es direkt mal mit gelöscht/deinstalliert, da ich es eh nicht brauche bzw will  Die anderen Programme habe ich auch alle Deinstalliert. |
|
13.04.2019, 13:00
| #13 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 10 - Pc extrem langsam [gelöst] Dann zeig mal neue FRST-Logs . Haken setzen bei addition.txt dann auf Untersuchen klicken.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
13.04.2019, 13:12
| #14 |
| | Windows 10 - Pc extrem langsam [gelöst] Okey hier die FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
durchgeführt von Admin (Administrator) auf SHUYIN (13-04-2019 14:01:10)
Gestartet von C:\Users\Admin\Downloads
Geladene Profile: Admin (Verfügbare Profile: Admin)
Platform: Windows 10 Pro Version 1803 17134.706 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Digital Wave Ltd -> Digital Wave Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Malwarebytes Corporation -> Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Malwarebytes Corporation -> Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1903.4-0\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1903.4-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Malwarebytes Corporation -> Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LAClient\laclient.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
(Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19021.18010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18591352 2018-03-19] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-01-18] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech, Inc. -> Logitech Inc.)
HKLM-x32\...\Run: [Syncios device service] => C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe [1910424 2017-06-06] (Anvsoft Inc. -> )
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1163264 2012-09-25] () [Datei ist nicht signiert]
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2480336 2018-12-19] (Malwarebytes Corporation -> Malwarebytes Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ACHTUNG
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [GalaxyClient] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [6881864 2018-08-05] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [Discord] => C:\Users\Admin\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [Spotify Web Helper] => C:\Users\Admin\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1444976 2016-12-30] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [Spotify] => C:\Users\Admin\AppData\Roaming\Spotify\Spotify.exe [7153264 2016-12-30] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1504584 2018-09-18] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-01-15] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2018-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [524752 2019-04-13] (Mozilla Corporation -> Mozilla Corporation)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2015-04-14] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2015-04-14] (Electronic Arts -> On2.com)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-11] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{1f529286-3f1a-4b7f-b911-60ec4b68354a}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{3c31fd95-761e-4e0d-a96d-928ee4a3df35}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{c9991f10-0d7c-40b4-a9f1-d4bc13ce08fc}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.live.com/1rewlive4startup/home
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Browser Extensions -> {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} -> C:\Users\Admin\AppData\Roaming\BrowserExtensions\Coupons64.dll => Keine Datei
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-02-10] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-10] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-3980298719-2773488239-3045808690-1000 -> hxxp://www.google.de/
FireFox:
========
FF DefaultProfile: og4hcahm.default-1505430743535
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\og4hcahm.default-1505430743535 [2019-04-13]
FF Homepage: Mozilla\Firefox\Profiles\og4hcahm.default-1505430743535 -> hxxps://www.google.de/
FF NetworkProxy: Mozilla\Firefox\Profiles\og4hcahm.default-1505430743535 -> http", "162.243.78.25"
FF Session Restore: Mozilla\Firefox\Profiles\og4hcahm.default-1505430743535 -> ist aktiviert.
FF Extension: (Avast SafePrice | Vergleich, Angebote, Gutscheine) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\og4hcahm.default-1505430743535\Extensions\sp@avast.com.xpi [2019-04-08]
FF Extension: (Avast Online Security) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\og4hcahm.default-1505430743535\Extensions\wrc@avast.com.xpi [2019-04-08]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1231201.dll [2017-11-02] (Adobe Systems, Inc.) [Datei ist nicht signiert]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-08-26] (Google Inc -> Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2011-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-10-02] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-10-02] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-3980298719-2773488239-3045808690-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [Keine Datei]
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://google.de/
CHR StartupUrls: Default -> "hxxps://www.google.de/?gws_rd=ssl"
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2018-11-27]
CHR Extension: (Präsentationen) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-06-19]
CHR Extension: (Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-19]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-25]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-07]
CHR Extension: (Google-Suche) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-10]
CHR Extension: (Avast SafePrice | Vergleich, Angebote, Gutscheine) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-11-27]
CHR Extension: (Tabellen) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-06-19]
CHR Extension: (Google Docs Offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-27]
CHR Extension: (Avast Online Security) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-11-27]
CHR Extension: (TubeTab) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhpijolpcimadhjingadnbcjncmjdce [2017-07-13]
CHR Extension: (Zelda Dark) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lilddpnkkhkcjkdaaglfminjopbijomp [2015-06-30]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-19]
CHR Extension: (Google Mail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-30]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-11-27]
CHR HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [jlhpijolpcimadhjingadnbcjncmjdce] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nicht gefunden>
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
HKLM\SYSTEM\CurrentControlSet\Services\aswSP <==== ACHTUNG (Rootkit!)
HKLM\SYSTEM\CurrentControlSet\Services\aswMonFlt <==== ACHTUNG (Rootkit!)
HKLM\SYSTEM\CurrentControlSet\Services\aswSnx <==== ACHTUNG (Rootkit!)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [85304 2018-10-16] (Apple Inc. -> Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8361960 2019-02-01] (BattlEye Innovations e.K. -> )
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [382312 2015-10-29] (Digital Wave Ltd -> Digital Wave Ltd.) [Datei ist nicht signiert]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [784512 2018-09-23] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 ElfoService; C:\Program Files (x86)\ElsterFormular Update Service\bin\elfoService.exe [1284328 2018-01-04] (Bayerisches Landesamt fuer Steuern -> )
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [686664 2018-08-05] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8942664 2018-08-05] (GOG Sp. z o.o. -> GOG.com)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Datei ist nicht signiert]
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [202872 2018-03-19] (Logitech Inc -> Logitech Inc.)
R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [152272 2018-12-19] (Malwarebytes Corporation -> Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation -> Malwarebytes Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773328 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773328 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2201920 2018-07-06] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3072328 2018-07-06] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2308424 2018-09-18] (Overwolf Ltd -> Overwolf LTD)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5074120 2019-03-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\NisSrv.exe [3856504 2019-04-13] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MsMpEng.exe [113992 2019-04-13] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [153328 2018-12-19] (Malwarebytes Corporation -> Malwarebytes)
R3 ladfGSS; C:\WINDOWS\system32\drivers\ladfGSS.sys [45168 2018-03-19] (Logitech Inc -> Logitech Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2017-08-18] (Logitech Inc -> Logitech Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2014-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 nusb3hub; C:\WINDOWS\system32\drivers\nusb3hub.sys [80384 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\WINDOWS\system32\drivers\nusb3xhc.sys [180736 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_54bd1f10ac116cd5\nvlddmkm.sys [20605496 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30792 2018-08-21] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-06-08] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [65792 2018-04-24] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek )
R3 Sftfs; C:\WINDOWS\System32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftplay; C:\WINDOWS\System32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftredir; C:\WINDOWS\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftvol; C:\WINDOWS\System32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-04-13] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [343520 2019-04-13] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [68576 2019-04-13] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2019-04-13 13:01 - 2019-04-13 13:01 - 000088209 _____ C:\Users\Admin\Desktop\FRST.txt
2019-04-13 13:01 - 2019-04-13 13:01 - 000076685 _____ C:\Users\Admin\Desktop\Addition.txt
2019-04-13 12:54 - 2019-04-13 12:57 - 000076682 _____ C:\Users\Admin\Downloads\Addition.txt
2019-04-13 12:52 - 2019-04-13 14:04 - 000026723 _____ C:\Users\Admin\Downloads\FRST.txt
2019-04-13 12:52 - 2019-04-13 14:01 - 000000000 ____D C:\FRST
2019-04-13 12:51 - 2019-04-13 12:51 - 002434048 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2019-04-13 12:42 - 2019-04-13 12:42 - 000000000 _____ C:\Users\Admin\tasklist
2019-04-13 11:15 - 2019-04-13 11:15 - 000000077 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2019-04-13 11:01 - 2019-04-13 13:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-04-13 11:00 - 2019-04-13 11:01 - 000000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2019-04-13 11:00 - 2019-04-13 11:00 - 000001273 _____ C:\Users\Admin\Desktop\CrystalDiskInfo.lnk
2019-04-13 11:00 - 2019-04-13 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2019-04-13 10:59 - 2019-04-13 10:59 - 003942560 _____ (Crystal Dew World ) C:\Users\Admin\Downloads\CrystalDiskInfo8_0_0.exe
2019-04-11 21:30 - 2019-04-11 21:30 - 000080553 _____ C:\Users\Admin\Desktop\SHUYIN.txt
2019-04-11 21:28 - 2019-04-11 21:28 - 000000000 ____D C:\Users\Admin\Desktop\CPU-Z
2019-04-11 21:00 - 2019-04-02 11:25 - 000607960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-04-11 21:00 - 2019-04-02 10:20 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-04-11 21:00 - 2019-04-02 09:51 - 003399680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-04-11 21:00 - 2019-04-02 09:50 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-04-11 21:00 - 2019-04-02 09:49 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-04-11 21:00 - 2019-04-02 07:05 - 001989544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-04-11 21:00 - 2019-04-02 06:40 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-04-11 21:00 - 2019-03-14 16:29 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-04-11 21:00 - 2019-03-14 16:08 - 003611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-04-11 21:00 - 2019-03-14 15:53 - 000625664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2019-04-11 21:00 - 2019-03-14 10:37 - 002256248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-04-11 21:00 - 2019-03-14 10:22 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-04-11 21:00 - 2019-03-14 10:19 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-04-11 21:00 - 2019-03-14 10:19 - 002969600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-04-11 21:00 - 2019-03-14 10:17 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-04-11 21:00 - 2019-03-14 10:17 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-04-11 21:00 - 2019-03-14 10:17 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-04-11 21:00 - 2019-03-14 10:14 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-04-11 21:00 - 2019-03-14 10:14 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-04-11 21:00 - 2019-03-14 10:14 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-04-11 21:00 - 2019-03-14 10:14 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2019-04-11 21:00 - 2019-03-14 10:13 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-04-11 21:00 - 2019-03-14 10:13 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-04-11 21:00 - 2019-03-14 09:58 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-04-11 21:00 - 2019-03-14 09:57 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-04-11 21:00 - 2019-03-14 09:56 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-04-11 21:00 - 2019-03-14 09:56 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-04-11 21:00 - 2019-03-14 09:55 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-04-11 21:00 - 2019-03-14 09:54 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-04-11 21:00 - 2019-03-14 09:54 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-04-11 21:00 - 2019-03-14 09:51 - 001216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-04-11 21:00 - 2019-03-14 09:51 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-04-11 21:00 - 2019-03-14 09:50 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-04-11 21:00 - 2019-03-14 09:50 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-04-11 21:00 - 2019-03-14 09:50 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-04-11 20:59 - 2019-04-02 14:38 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-04-11 20:59 - 2019-04-02 14:33 - 001634912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-04-11 20:59 - 2019-04-02 14:33 - 000719984 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-04-11 20:59 - 2019-04-02 14:19 - 012730880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-04-11 20:59 - 2019-04-02 14:19 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-04-11 20:59 - 2019-04-02 14:18 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-04-11 20:59 - 2019-04-02 14:16 - 001030144 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-04-11 20:59 - 2019-04-02 14:15 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-04-11 20:59 - 2019-04-02 14:13 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-04-11 20:59 - 2019-04-02 14:12 - 003643904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-04-11 20:59 - 2019-04-02 14:12 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-04-11 20:59 - 2019-04-02 14:11 - 004053504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-04-11 20:59 - 2019-04-02 14:11 - 001857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-04-11 20:59 - 2019-04-02 14:11 - 001662976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-04-11 20:59 - 2019-04-02 14:10 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-04-11 20:59 - 2019-04-02 14:10 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-04-11 20:59 - 2019-04-02 11:25 - 001454648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-04-11 20:59 - 2019-04-02 11:11 - 011919360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-04-11 20:59 - 2019-04-02 11:11 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-04-11 20:59 - 2019-04-02 11:10 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-04-11 20:59 - 2019-04-02 11:08 - 002889216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-04-11 20:59 - 2019-04-02 11:07 - 004054528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-04-11 20:59 - 2019-04-02 11:07 - 001586688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-04-11 20:59 - 2019-04-02 11:06 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-04-11 20:59 - 2019-04-02 10:36 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-04-11 20:59 - 2019-04-02 10:24 - 000135184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-04-11 20:59 - 2019-04-02 10:23 - 001023800 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-04-11 20:59 - 2019-04-02 10:22 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-04-11 20:59 - 2019-04-02 10:22 - 000567592 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-04-11 20:59 - 2019-04-02 10:22 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-04-11 20:59 - 2019-04-02 10:21 - 007520136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-04-11 20:59 - 2019-04-02 10:21 - 002822160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-04-11 20:59 - 2019-04-02 10:21 - 002467536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-04-11 20:59 - 2019-04-02 10:21 - 000735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-04-11 20:59 - 2019-04-02 10:20 - 002719032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-04-11 20:59 - 2019-04-02 10:19 - 009083704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-04-11 20:59 - 2019-04-02 10:19 - 000793400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-04-11 20:59 - 2019-04-02 10:19 - 000786080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-04-11 20:59 - 2019-04-02 10:19 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-04-11 20:59 - 2019-04-02 10:01 - 025857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-04-11 20:59 - 2019-04-02 09:53 - 022717440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-04-11 20:59 - 2019-04-02 09:53 - 004384256 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-04-11 20:59 - 2019-04-02 09:50 - 007591936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-04-11 20:59 - 2019-04-02 09:49 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-04-11 20:59 - 2019-04-02 09:48 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-04-11 20:59 - 2019-04-02 09:48 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-04-11 20:59 - 2019-04-02 09:48 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-04-11 20:59 - 2019-04-02 09:47 - 001214464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-04-11 20:59 - 2019-04-02 09:47 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-04-11 20:59 - 2019-04-02 09:46 - 002174976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-04-11 20:59 - 2019-04-02 09:45 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-04-11 20:59 - 2019-04-02 09:44 - 002208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-04-11 20:59 - 2019-04-02 09:44 - 001724416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-04-11 20:59 - 2019-04-02 09:44 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-04-11 20:59 - 2019-04-02 09:43 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-04-11 20:59 - 2019-04-02 08:22 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2019-04-11 20:59 - 2019-04-02 07:04 - 006572120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-04-11 20:59 - 2019-04-02 07:04 - 000604008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-04-11 20:59 - 2019-04-02 07:04 - 000581832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-04-11 20:59 - 2019-04-02 07:04 - 000560600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-04-11 20:59 - 2019-04-02 06:56 - 022018048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-04-11 20:59 - 2019-04-02 06:50 - 019404800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-04-11 20:59 - 2019-04-02 06:43 - 005788160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-04-11 20:59 - 2019-04-02 06:43 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-04-11 20:59 - 2019-04-02 06:43 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-04-11 20:59 - 2019-04-02 06:42 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-04-11 20:59 - 2019-04-02 06:41 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-04-11 20:59 - 2019-04-02 06:41 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-04-11 20:59 - 2019-04-02 06:41 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-04-11 20:59 - 2019-04-02 06:40 - 001073664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-04-11 20:59 - 2019-03-16 14:54 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-04-11 20:59 - 2019-03-16 11:03 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-04-11 20:59 - 2019-03-14 16:55 - 001786680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-04-11 20:59 - 2019-03-14 16:53 - 001626928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-04-11 20:59 - 2019-03-14 16:53 - 001038136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2019-04-11 20:59 - 2019-03-14 16:53 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-04-11 20:59 - 2019-03-14 16:53 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 003933296 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-04-11 20:59 - 2019-03-14 16:52 - 001424696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000954160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000830264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000827704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2019-04-11 20:59 - 2019-03-14 16:52 - 000825144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000749880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000670008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000495416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-04-11 20:59 - 2019-03-14 16:52 - 000164664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AppvVemgr.sys
2019-04-11 20:59 - 2019-03-14 16:51 - 000157192 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2019-04-11 20:59 - 2019-03-14 16:35 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfoext.dll
2019-04-11 20:59 - 2019-03-14 16:34 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-04-11 20:59 - 2019-03-14 16:33 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2019-04-11 20:59 - 2019-03-14 16:33 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-04-11 20:59 - 2019-03-14 16:33 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe
2019-04-11 20:59 - 2019-03-14 16:31 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-04-11 20:59 - 2019-03-14 16:30 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2019-04-11 20:59 - 2019-03-14 16:30 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2019-04-11 20:59 - 2019-03-14 16:29 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll
2019-04-11 20:59 - 2019-03-14 16:28 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll
2019-04-11 20:59 - 2019-03-14 15:56 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-04-11 20:59 - 2019-03-14 15:55 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe
2019-04-11 20:59 - 2019-03-14 15:53 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2019-04-11 20:59 - 2019-03-14 15:53 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2019-04-11 20:59 - 2019-03-14 15:52 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsound.dll
2019-04-11 20:59 - 2019-03-14 10:57 - 000611640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-04-11 20:59 - 2019-03-14 10:56 - 000375096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-04-11 20:59 - 2019-03-14 10:38 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-04-11 20:59 - 2019-03-14 10:38 - 000090360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2019-04-11 20:59 - 2019-03-14 10:37 - 006043496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-04-11 20:59 - 2019-03-14 10:37 - 001171568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-04-11 20:59 - 2019-03-14 10:28 - 000152072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-04-11 20:59 - 2019-03-14 10:27 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-04-11 20:59 - 2019-03-14 10:27 - 000097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2019-04-11 20:59 - 2019-03-14 10:26 - 007436016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-04-11 20:59 - 2019-03-14 10:26 - 002768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-04-11 20:59 - 2019-03-14 10:26 - 002421048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-04-11 20:59 - 2019-03-14 10:26 - 001457576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-04-11 20:59 - 2019-03-14 10:26 - 001258688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-04-11 20:59 - 2019-03-14 10:26 - 001140984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-04-11 20:59 - 2019-03-14 10:26 - 001014344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-04-11 20:59 - 2019-03-14 10:26 - 000983424 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-04-11 20:59 - 2019-03-14 10:26 - 000481048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-04-11 20:59 - 2019-03-14 10:26 - 000175416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-04-11 20:59 - 2019-03-14 10:20 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-04-11 20:59 - 2019-03-14 10:18 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-04-11 20:59 - 2019-03-14 10:18 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-04-11 20:59 - 2019-03-14 10:18 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2019-04-11 20:59 - 2019-03-14 10:18 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-04-11 20:59 - 2019-03-14 10:17 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-04-11 20:59 - 2019-03-14 10:17 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll
2019-04-11 20:59 - 2019-03-14 10:17 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2019-04-11 20:59 - 2019-03-14 10:16 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-04-11 20:59 - 2019-03-14 10:16 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-04-11 20:59 - 2019-03-14 10:15 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-04-11 20:59 - 2019-03-14 10:15 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-04-11 20:59 - 2019-03-14 10:15 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2019-04-11 20:59 - 2019-03-14 10:15 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2019-04-11 20:59 - 2019-03-14 10:14 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-04-11 20:59 - 2019-03-14 10:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-11 20:59 - 2019-03-14 10:14 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-04-11 20:59 - 2019-03-14 10:13 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2019-04-11 20:59 - 2019-03-14 10:01 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-04-11 20:59 - 2019-03-14 09:58 - 002509824 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2019-04-11 20:59 - 2019-03-14 09:58 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-04-11 20:59 - 2019-03-14 09:57 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-04-11 20:59 - 2019-03-14 09:56 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-04-11 20:59 - 2019-03-14 09:56 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-04-11 20:59 - 2019-03-14 09:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 000528896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-04-11 20:59 - 2019-03-14 09:55 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-04-11 20:59 - 2019-03-14 09:55 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmapi.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2019-04-11 20:59 - 2019-03-14 09:55 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-04-11 20:59 - 2019-03-14 09:55 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 002368000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2019-04-11 20:59 - 2019-03-14 09:54 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-04-11 20:59 - 2019-03-14 09:53 - 000787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-04-11 20:59 - 2019-03-14 09:53 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-04-11 20:59 - 2019-03-14 09:53 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-04-11 20:59 - 2019-03-14 09:53 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-11 20:59 - 2019-03-14 09:52 - 002909696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-04-11 20:59 - 2019-03-14 09:52 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2019-04-11 20:59 - 2019-03-14 09:52 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-04-11 20:59 - 2019-03-14 09:52 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2019-04-11 20:59 - 2019-03-14 09:51 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2019-04-11 20:59 - 2019-03-14 09:50 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2019-04-11 20:59 - 2019-03-14 09:50 - 001410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-04-11 20:59 - 2019-03-14 09:50 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-04-11 20:59 - 2019-03-14 09:50 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-04-11 20:59 - 2019-03-14 09:50 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-04-11 20:59 - 2019-03-14 09:50 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-04-11 20:59 - 2019-03-14 03:57 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-04-11 20:59 - 2019-03-14 03:57 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-04-11 20:59 - 2019-03-14 03:57 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-04-11 20:59 - 2019-03-14 03:57 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-04-11 20:59 - 2019-03-14 03:57 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-04-06 12:21 - 2019-04-06 12:26 - 000000000 ____D C:\Users\Admin\Desktop\Rezepte
2019-03-31 18:49 - 2019-03-31 18:55 - 000020220 _____ C:\Users\Admin\Desktop\Kopie von Energieverbrauchsplan Margarethenweg 4 Neu .xlsx
2019-03-22 21:32 - 2019-03-06 17:37 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-03-22 21:32 - 2019-03-06 14:04 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-03-22 21:32 - 2019-03-06 11:04 - 000945464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-03-22 21:32 - 2019-03-06 11:03 - 001921848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-03-22 21:32 - 2019-03-06 10:33 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-03-22 21:32 - 2019-03-06 10:32 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-03-22 21:32 - 2019-03-06 10:31 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-03-22 21:32 - 2019-03-06 10:31 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-03-22 21:32 - 2019-03-06 10:29 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2019-03-22 21:32 - 2019-03-06 10:28 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-03-22 21:32 - 2019-03-06 10:25 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-03-22 21:32 - 2019-03-06 07:50 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-03-22 21:32 - 2019-03-06 07:50 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2019-03-22 21:32 - 2019-02-21 05:26 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-03-22 21:32 - 2019-02-16 14:57 - 001048472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-03-22 21:32 - 2019-02-16 14:56 - 000549520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-03-22 21:32 - 2019-02-16 14:34 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-03-22 21:32 - 2019-02-16 14:34 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-03-22 21:32 - 2019-02-16 14:30 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-03-22 21:32 - 2019-02-16 14:24 - 000444176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-03-22 21:32 - 2019-02-16 14:06 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-03-22 21:32 - 2019-02-16 10:04 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-03-22 21:32 - 2019-02-16 10:03 - 005625360 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-03-22 21:32 - 2019-02-16 10:02 - 000432952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-03-22 21:32 - 2019-02-16 10:01 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-03-22 21:32 - 2019-02-16 09:31 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2019-03-22 21:32 - 2019-02-16 09:30 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2019-03-22 21:32 - 2019-02-16 09:30 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-03-22 21:32 - 2019-02-16 09:29 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-03-22 21:32 - 2019-02-16 09:29 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-03-22 21:32 - 2019-02-16 09:28 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2019-03-22 21:32 - 2019-02-16 09:28 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2019-03-22 21:32 - 2019-02-16 09:28 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2019-03-22 21:32 - 2019-02-16 09:27 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2019-03-22 21:32 - 2019-02-16 09:26 - 001459712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-03-22 21:32 - 2019-02-16 09:25 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-03-22 21:31 - 2019-03-06 17:14 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-03-22 21:31 - 2019-03-06 17:14 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-03-22 21:31 - 2019-03-06 11:16 - 001188000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-03-22 21:31 - 2019-03-06 11:07 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-03-22 21:31 - 2019-03-06 11:03 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-03-22 21:31 - 2019-03-06 10:31 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-03-22 21:31 - 2019-03-06 10:29 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-03-22 21:31 - 2019-03-06 10:28 - 004937728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-03-22 21:31 - 2019-03-06 08:14 - 000785568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-03-22 21:31 - 2019-03-06 07:49 - 004516352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-03-22 21:31 - 2019-02-16 15:02 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-03-22 21:31 - 2019-02-16 14:57 - 002266936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-03-22 21:31 - 2019-02-16 14:57 - 000257848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-03-22 21:31 - 2019-02-16 14:57 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2019-03-22 21:31 - 2019-02-16 14:57 - 000228152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2019-03-22 21:31 - 2019-02-16 14:57 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2019-03-22 21:31 - 2019-02-16 14:57 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe
2019-03-22 21:31 - 2019-02-16 14:57 - 000180528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2019-03-22 21:31 - 2019-02-16 14:57 - 000172856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe
2019-03-22 21:31 - 2019-02-16 14:57 - 000034104 _____ C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2019-03-22 21:31 - 2019-02-16 14:53 - 001516416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-03-22 21:31 - 2019-02-16 14:34 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-03-22 21:31 - 2019-02-16 14:22 - 001322176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-03-22 21:31 - 2019-02-16 14:08 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-03-22 21:31 - 2019-02-16 12:24 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-03-22 21:31 - 2019-02-16 12:22 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-03-22 21:31 - 2019-02-16 10:03 - 007901392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-03-22 21:31 - 2019-02-16 10:03 - 000510288 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-03-22 21:31 - 2019-02-16 10:02 - 005821440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-03-22 21:31 - 2019-02-16 10:02 - 003291632 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-03-22 21:31 - 2019-02-16 10:02 - 001792712 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-03-22 21:31 - 2019-02-16 10:02 - 000705848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-03-22 21:31 - 2019-02-16 10:01 - 001285424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-03-22 21:31 - 2019-02-16 10:01 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-03-22 21:31 - 2019-02-16 10:01 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-03-22 21:31 - 2019-02-16 10:01 - 001028920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-03-22 21:31 - 2019-02-16 10:01 - 000594024 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-03-22 21:31 - 2019-02-16 10:01 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-03-22 21:31 - 2019-02-16 09:53 - 000443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-03-22 21:31 - 2019-02-16 09:51 - 002479168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-03-22 21:31 - 2019-02-16 09:51 - 001584536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-03-22 21:31 - 2019-02-16 09:50 - 001130568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-03-22 21:31 - 2019-02-16 09:50 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-03-22 21:31 - 2019-02-16 09:37 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-03-22 21:31 - 2019-02-16 09:36 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2019-03-22 21:31 - 2019-02-16 09:34 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2019-03-22 21:31 - 2019-02-16 09:33 - 006646784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-03-22 21:31 - 2019-02-16 09:31 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-03-22 21:31 - 2019-02-16 09:31 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-03-22 21:31 - 2019-02-16 09:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-03-22 21:31 - 2019-02-16 09:30 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-03-22 21:31 - 2019-02-16 09:30 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-03-22 21:31 - 2019-02-16 09:28 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-03-22 21:31 - 2019-02-16 09:28 - 002585600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-03-22 21:31 - 2019-02-16 09:27 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2019-03-22 21:31 - 2019-02-16 09:27 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-03-22 21:31 - 2019-02-16 09:26 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-03-22 21:31 - 2019-02-16 09:26 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2019-03-22 21:31 - 2019-02-16 09:26 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-03-22 21:31 - 2019-02-16 09:25 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2019-03-22 21:30 - 2019-03-06 17:36 - 001047352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-03-22 21:30 - 2019-03-06 17:17 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-03-22 21:30 - 2019-03-06 17:12 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-03-22 21:30 - 2019-03-06 14:18 - 000918032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-03-22 21:30 - 2019-03-06 11:16 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-03-22 21:30 - 2019-03-06 11:16 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-03-22 21:30 - 2019-03-06 11:16 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-03-22 21:30 - 2019-03-06 11:11 - 000493880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-03-22 21:30 - 2019-03-06 11:10 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-03-22 21:30 - 2019-03-06 11:04 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2019-03-22 21:30 - 2019-03-06 08:15 - 000434488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-03-22 21:30 - 2019-03-06 08:14 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-03-22 21:30 - 2019-03-06 08:14 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2019-03-22 21:30 - 2019-03-06 08:13 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 001644040 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 000808456 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 000735752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 000620040 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 000460296 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-03-22 21:30 - 2019-02-16 15:02 - 000147464 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-03-22 21:30 - 2019-02-16 15:02 - 000071176 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-03-22 21:30 - 2019-02-16 14:57 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-03-22 21:30 - 2019-02-16 14:56 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-03-22 21:30 - 2019-02-16 14:33 - 002194432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-03-22 21:30 - 2019-02-16 14:33 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-03-22 21:30 - 2019-02-16 14:32 - 002051072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-03-22 21:30 - 2019-02-16 14:32 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-03-22 21:30 - 2019-02-16 14:31 - 001271808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2019-03-22 21:30 - 2019-02-16 14:31 - 001186816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-03-22 21:30 - 2019-02-16 14:31 - 001003520 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-03-22 21:30 - 2019-02-16 14:31 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-03-22 21:30 - 2019-02-16 14:29 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-03-22 21:30 - 2019-02-16 14:25 - 001539896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-03-22 21:30 - 2019-02-16 14:25 - 000148784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mavinject.exe
2019-03-22 21:30 - 2019-02-16 14:07 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-03-22 21:30 - 2019-02-16 14:07 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-03-22 21:30 - 2019-02-16 14:06 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-03-22 21:30 - 2019-02-16 14:06 - 000774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-03-22 21:30 - 2019-02-16 14:04 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-03-22 21:30 - 2019-02-16 10:16 - 000511800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-03-22 21:30 - 2019-02-16 10:15 - 000505656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-03-22 21:30 - 2019-02-16 10:02 - 001934800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-03-22 21:30 - 2019-02-16 10:02 - 000413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-03-22 21:30 - 2019-02-16 10:01 - 000641984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-03-22 21:30 - 2019-02-16 09:57 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-03-22 21:30 - 2019-02-16 09:50 - 001805648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-03-22 21:30 - 2019-02-16 09:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-03-22 21:30 - 2019-02-16 09:26 - 000935424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-03-22 21:30 - 2019-02-16 08:07 - 000806320 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-03-22 21:30 - 2019-02-16 08:07 - 000806320 _____ C:\WINDOWS\system32\locale.nls
2019-03-22 21:29 - 2019-03-06 17:17 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2019-03-22 21:29 - 2019-03-06 17:14 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-03-22 21:29 - 2019-03-06 14:06 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-03-22 21:29 - 2019-03-06 11:05 - 000439224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-03-22 21:29 - 2019-03-06 11:05 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-03-22 21:29 - 2019-03-06 11:02 - 000626488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2019-03-22 21:29 - 2019-03-06 10:31 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2019-03-22 21:29 - 2019-03-06 10:26 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-03-22 21:29 - 2019-03-06 10:26 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-03-22 21:29 - 2019-03-06 08:17 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-03-22 21:29 - 2019-03-06 07:51 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-03-22 21:29 - 2019-02-16 14:31 - 000861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-03-22 21:29 - 2019-02-16 14:30 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2019-03-22 21:29 - 2019-02-16 14:29 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-03-22 21:29 - 2019-02-16 14:06 - 000765952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-03-22 21:29 - 2019-02-16 14:02 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe
2019-03-22 21:29 - 2019-02-16 13:55 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.dll
2019-03-22 21:29 - 2019-02-16 10:15 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-03-22 21:29 - 2019-02-16 10:05 - 000087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-03-22 21:29 - 2019-02-16 10:01 - 000161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2019-03-22 21:29 - 2019-02-16 09:51 - 000170952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2019-03-22 21:29 - 2019-02-16 09:50 - 000504072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2019-03-22 21:29 - 2019-02-16 09:33 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-03-22 21:29 - 2019-02-16 09:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2019-03-22 21:29 - 2019-02-16 09:32 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2019-03-22 21:29 - 2019-02-16 09:30 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2019-03-22 21:29 - 2019-02-16 09:30 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2019-03-21 20:44 - 2019-03-21 20:44 - 000000000 ____D C:\WINDOWS\Panther
2019-03-19 20:35 - 2019-03-19 20:34 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
==================== Ein Monat (geänderte) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2019-04-13 13:58 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-13 13:53 - 2017-06-14 14:36 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla
2019-04-13 13:50 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-04-13 13:50 - 2017-06-17 20:38 - 000000000 ____D C:\ProgramData\NVIDIA
2019-04-13 13:47 - 2018-05-07 17:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-04-13 13:40 - 2014-10-18 11:44 - 000001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-04-13 13:40 - 2014-10-18 11:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-04-13 13:39 - 2018-04-06 19:52 - 000000000 ____D C:\Users\Admin\AppData\Local\AVAST Software
2019-04-13 13:39 - 2015-05-14 20:34 - 000000000 ____D C:\ProgramData\AVAST Software
2019-04-13 13:38 - 2010-11-21 05:27 - 000592616 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-04-13 13:35 - 2014-10-18 15:48 - 000000000 ____D C:\ProgramData\Adobe
2019-04-13 13:33 - 2014-10-18 15:49 - 000000000 ____D C:\Program Files (x86)\Adobe
2019-04-13 13:32 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-04-13 13:32 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-04-13 13:26 - 2018-06-03 19:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-04-13 12:42 - 2018-06-03 19:16 - 000000000 ____D C:\Users\Admin
2019-04-13 12:38 - 2017-09-18 23:08 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2019-04-13 12:25 - 2018-06-07 09:41 - 000000000 ____D C:\Users\Admin\AppData\Local\D3DSCache
2019-04-13 11:41 - 2015-05-14 20:32 - 000000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2019-04-13 11:17 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-13 11:15 - 2018-06-03 18:26 - 000476264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7e72c5246d5517c7.tmp
2019-04-13 10:40 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-04-13 10:38 - 2018-06-03 19:04 - 004964928 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-04-13 10:36 - 2018-06-03 19:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-04-11 22:23 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-04-11 22:21 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-04-11 22:21 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-04-11 22:20 - 2018-04-12 18:19 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-04-11 22:20 - 2018-04-12 01:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-04-11 22:20 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-04-11 22:18 - 2014-03-28 12:30 - 000000000 ____D C:\Users\Admin\AppData\Roaming\SoftGrid Client
2019-04-11 21:46 - 2014-10-18 15:36 - 000000000 ____D C:\Users\Admin\Documents\Dokumente
2019-04-11 21:22 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-04-11 20:58 - 2014-03-28 09:54 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-04-11 20:52 - 2014-03-28 09:54 - 131129288 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-04-11 20:37 - 2015-01-06 15:16 - 000000000 ____D C:\ProgramData\LogiShrd
2019-04-11 20:27 - 2014-10-29 23:35 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-08 22:11 - 2018-06-03 19:48 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2019-04-07 11:22 - 2018-06-03 19:11 - 002004578 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-04-07 11:22 - 2018-04-12 18:14 - 000854020 _____ C:\WINDOWS\system32\perfh007.dat
2019-04-07 11:22 - 2018-04-12 18:14 - 000191522 _____ C:\WINDOWS\system32\perfc007.dat
2019-04-07 10:40 - 2018-11-16 21:03 - 000000000 ____D C:\Program Files\rempl
2019-04-06 13:54 - 2017-06-21 02:09 - 000000000 ____D C:\Users\Bilder
2019-04-06 10:37 - 2018-02-02 02:02 - 000000000 ____D C:\Users\Admin\AppData\Roaming\7DaysToDie
2019-04-06 10:22 - 2019-03-09 14:38 - 000000000 ____D C:\Users\Admin\AppData\Roaming\EasyAntiCheat
2019-04-01 19:51 - 2018-11-14 18:56 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-04-01 19:51 - 2018-11-14 18:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-03-30 05:02 - 2016-12-27 23:51 - 000000000 ____D C:\Users\Admin\AppData\Roaming\discord
2019-03-30 02:49 - 2014-10-18 11:44 - 000000000 ____D C:\ProgramData\Mozilla
2019-03-30 00:56 - 2018-06-03 19:48 - 000003616 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-30 00:56 - 2018-06-03 19:48 - 000003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-03-30 00:56 - 2018-06-03 19:48 - 000003392 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-30 00:53 - 2016-12-27 23:51 - 000000000 ____D C:\Users\Admin\AppData\Local\Discord
2019-03-23 02:20 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-03-23 02:20 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-03-23 02:20 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-03-23 02:19 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-03-23 02:19 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-03-19 21:22 - 2016-06-18 19:23 - 000000000 ____D C:\Users\Admin\AppData\Local\UnrealEngine
2019-03-19 20:35 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-03-19 20:34 - 2019-02-13 14:07 - 000249152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw152831725e6f2af1.tmp
2019-03-19 20:34 - 2019-01-06 12:16 - 000037320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw50a41cfb95e710c7.tmp
2019-03-19 20:34 - 2018-11-05 10:09 - 000042496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw6638c0e7f9e1ec8a.tmp
2019-03-19 20:34 - 2018-06-03 18:26 - 000476256 ____N (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys.155514688154601
2019-03-19 20:34 - 2018-06-03 18:26 - 000380160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswf4b2a643508df24d.tmp
2019-03-19 20:34 - 2018-06-03 18:26 - 000220632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw09dd0acb71fece08.tmp
2019-03-19 20:34 - 2018-06-03 18:26 - 000205608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw9234e28368db65d9.tmp
2019-03-19 20:34 - 2018-06-03 18:26 - 000169104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswa44f7b7a0d246cc5.tmp
2019-03-19 20:34 - 2018-06-03 18:26 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw1bbabfdb5e33e09a.tmp
2019-03-19 20:34 - 2018-06-03 18:26 - 000088152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswd49601bc5765e268.tmp
2019-03-19 20:33 - 2019-01-17 19:34 - 000254408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw4e0df759023d46b9.tmp
2019-03-19 20:33 - 2019-01-06 12:16 - 000320904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw698993b310030c8f.tmp
2019-03-19 20:33 - 2019-01-06 12:16 - 000196304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswfb22977e1ed9829e.tmp
2019-03-19 20:33 - 2019-01-06 12:16 - 000058168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw98312d9efe23a630.tmp
2019-03-19 20:33 - 2018-06-03 18:26 - 001034640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw9741bac65ebb29c6.tmp
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-01-06 19:22 - 2017-05-26 20:02 - 000009728 _____ () C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-08-26 16:54 - 2018-08-26 16:54 - 000002316 _____ () C:\Users\Admin\AppData\Local\recently-used.xbel
2015-06-14 20:41 - 2017-06-25 18:38 - 000007605 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\dllhost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dllhost.exe => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2018-06-03 19:04
==================== Ende von FRST.txt ============================
|
|
13.04.2019, 13:13
| #15 |
| | Windows 10 - Pc extrem langsam [gelöst] Und hier die Addition: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 17.03.2019
durchgeführt von Admin (13-04-2019 14:05:07)
Gestartet von C:\Users\Admin\Downloads
Windows 10 Pro Version 1803 17134.706 (X64) (2018-06-03 17:50:07)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Admin (S-1-5-21-3980298719-2773488239-3045808690-1000 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-3980298719-2773488239-3045808690-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3980298719-2773488239-3045808690-503 - Limited - Disabled)
Gast (S-1-5-21-3980298719-2773488239-3045808690-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3980298719-2773488239-3045808690-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-PDF Split & Merge Version 2.5.0 (Build 168) (HKLM-x32\...\7-PDF Split & Merge_is1) (Version: 7-PDF Split & Merge - Version 2.5.0 (Build 168) - 7-PDF, Germany - Thorsten Hodes)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.1.201 - Adobe Systems, Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{5A659BE5-849B-484E-A83B-DCB78407F3A4}) (Version: 7.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{F8060941-C0AB-4BCE-88AC-F2FDA2E9F286}) (Version: 7.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5FA8C4BE-8C74-4B9C-9B49-EBF759230189}) (Version: 12.1.0.25 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Big Fish: Game Manager (HKLM-x32\...\BFGC) (Version: 3.3.0.2 - )
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite MFC-290C (HKLM-x32\...\{48D082B9-18F6-4426-AFAC-8B6A3E7021B1}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5931 - CDBurnerXP)
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\CopyTrans Suite) (Version: 4.017 - WindSolutions)
CrystalDiskInfo 8.0.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 8.0.0 - Crystal Dew World)
Curse Client (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dark Parables: Goldlöckchen und der Stern der Wünsche Sammleredition (HKLM-x32\...\BFG-Dark Parables - Goldloeckchen und der Stern der Wuensche Sammleredition) (Version: - )
Dawn of Hope: Skyline Abenteuer Sammleredition (HKLM-x32\...\BFG-Dawn of Hope - Skyline Abenteuer Sammleredition) (Version: - )
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.69.43.024017 - Electronic Arts Inc.)
Discord (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.16 - NVIDIA Corporation) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 19.1 - Thüringer Landesfinanzdirektion)
Epic Games Launcher (HKLM-x32\...\{AF7881ED-41D7-4ECA-8C7C-AE10DFA0E489}) (Version: 1.1.151.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (HKLM-x32\...\Fraps) (Version: - )
Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.0.4.1029 - DVDVideoSoft Ltd.)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Grim Tales: Fäden des Schicksals (HKLM-x32\...\BFG-Grim Tales - Faeden des Schicksals) (Version: - )
Gwent (HKLM-x32\...\1971477531_is1) (Version: 0.9.24.3.432 - GOG.com)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
iCloud (HKLM\...\{05D97028-FD26-4A3D-BADC-D1CA2E9F1214}) (Version: 7.10.0.9 - Apple Inc.)
Immortal Love: Wunder haben einen Preis (HKLM-x32\...\BFG-Immortal Love - Wunder haben einen Preis) (Version: - )
IrfanView 4.50 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.50 - Irfan Skiljan)
iTunes (HKLM\...\{C704C598-39D0-4B12-BBFA-FF6D43C95BFD}) (Version: 12.9.3.3 - Apple Inc.)
Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Last Year: The Nightmare (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\478637764565401630) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech Gaming Software 8.98 (HKLM\...\Logitech Gaming Software) (Version: 8.98.218 - Logitech Inc.)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
Malwarebytes Anti-Exploit version 1.12.1.147 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.12.1.147 - Malwarebytes)
Malwarebytes Anti-Malware Version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6122.5000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.6129.5001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\OneDriveSetup.exe) (Version: 18.151.0729.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Might & Magic Heroes VI (HKLM-x32\...\{745D37C2-26F4-4B65-BA13-F9840EBFA75B}) (Version: 1.8 - Ubisoft)
Might and Magic Heroes VII (HKLM-x32\...\Uplay Install 1176) (Version: - Ubisoft)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 66.0.3 (x64 de) (HKLM\...\Mozilla Firefox 66.0.3 (x64 de)) (Version: 66.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision Controller-Treiber 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 416.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.16 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.15.0.164 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.164 - NVIDIA Corporation)
NVIDIA Grafiktreiber 416.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.16 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.37.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.5 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.21.179 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.118.2.33 - Overwolf Ltd.)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.140.248 - Google, Inc.)
PokerStars.net (HKLM-x32\...\PokerStars.net) (Version: - PokerStars.net)
Queen's Quest III: Das Ende der Dämmerung Sammleredition (HKLM-x32\...\BFG-Queens Quest III - Das Ende der Daemmerung Sammleredition) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.2.0 - Rockstar Games)
Spotify (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\Spotify) (Version: 1.0.45.186.g3b5036d6 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Syncios 6.1.4 (HKLM-x32\...\Syncios) (Version: 6.1.4 - Anvsoft)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Forgotten Fairytales: Reise nach Spectra Sammleredition (HKLM-x32\...\BFG-The Forgotten Fairytales - Reise nach Spectra Sammleredition) (Version: - )
The Walking Dead (HKLM-x32\...\{067A7675-CF5E-456D-AB72-615E3BBB34CE}) (Version: - Telltale Games)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.31.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.31.0.0 - GOG.com)
TP-LINK TL-WN821N Driver (HKLM-x32\...\{26B52E5B-1620-4676-9B46-B6C56B8105CE}) (Version: 1.2.1 - TP-LINK)
Twitch (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Twitch Interactive, Inc.)
Twitch (HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 4.8 - Ubisoft)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.70 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
YTD Video Downloader 5.9.8 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 5.9.8 - GreenTree Applications SRL) <==== ACHTUNG
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3980298719-2773488239-3045808690-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-3980298719-2773488239-3045808690-1000_Classes\CLSID\{67dbd5b3-4935-49a1-b0d7-9ab53310d9f3}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-01-15] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-10-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0AB300DE-58A7-47F8-8074-7559C251D8EC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe (Apple Inc. -> Apple Inc.)
Task: {0E44159A-B6A3-4763-BD24-EFB1A2B9FED7} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F3A31FE-999B-45B6-BCF1-A2E11C848C43} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {107182C3-8147-4025-88D7-670683E20D95} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {1075C6F1-D7E9-4598-8DA3-BA53C12421F2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {1375F71A-1645-4DD7-B030-D53C5BD97B35} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {170B5C22-43B1-41C3-83EC-71CDCBD71AA0} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {19C3820F-2251-42EA-8923-D222D5E75AF7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Keine Datei <==== ACHTUNG
Task: {1AEEFE7D-67BA-40E4-855D-76EFCAB3FA65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {1B3E7F41-4314-4A0F-9012-EF68BDBC7DCA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1B9A6809-903D-4080-8CE5-0AF47B49BE4C} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1EA70B72-BE39-43C0-AED7-8165831ED1E3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {2AAE79E8-D40D-4984-8329-653FF53B2D38} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2ADAC3BB-5C3E-4CDE-880D-288FD6BE7846} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2CBD74C7-022A-42AB-BB79-73F444BC2411} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {34DE784D-8ECA-4B16-8B59-B89FF11D41EE} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {356D5C7D-F6E4-4C30-ACDC-ECF989B6AEBE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {37C60830-CFAD-416A-AB94-39A85FDF020E} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {48A6D12D-CB15-4A78-8ECA-ACC4780AA6E1} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {599F6115-3848-4506-ADFE-755BEAE57B63} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5B74F499-7615-431A-B431-6AFE54B1D07B} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {5C5ED77C-D670-4F50-BEB3-079E73154D6E} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {60278E3A-3B08-46CF-93B8-295D9EBF4B07} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {675FEF00-9230-40D2-B8EB-69A15023206D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6899DB0F-CCE5-4A91-AF96-070A7B91A6FB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {68C5E84E-2672-4E80-83DC-844618DAFE85} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe (Overwolf Ltd -> Overwolf LTD)
Task: {6B845EAF-9AF6-46FC-BD3F-05DB5E51A72C} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {754B69B9-1E68-4B7C-9BFA-48921B292EBB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {7B323C2F-2395-4352-9BD2-DA59A144E8C8} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7D7BB82A-6F33-4B0F-9C10-660176BA03FE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {815F918D-5475-4B87-B373-049CFE77AA42} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {8FD5B74B-04A3-4DE1-963C-9FAEE7E9CF26} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {92046BE7-D25B-4626-811C-1A0361FB1EBB} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {923EE09C-72F5-49E4-926F-AAC343A143A1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {9D0B5CC9-4A1C-44AF-87F8-4C3CBFDAA43F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {A30755A2-9AC0-409F-8B26-511EE4EF2D13} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {A7F934C9-6587-4F8F-857D-87A9A37AF59B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {ADD0F212-78DC-4538-88B3-BDD1B31EDB46} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AF033D66-CAD4-4DCD-A35D-0A2070C4FD80} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B17206E4-B922-4A71-983F-3F1CF98CD95F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B3D05A67-C139-4AFA-A440-3FDDAEF08C19} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {B4D96B81-2207-4323-9D85-2118986DECDC} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {B6A43785-883B-4B87-A697-23A102EDE488} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B6A69130-14BA-4C8B-948E-3310E61FC14D} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {B9979F0E-FB70-4FDA-A0BF-A04C98664A3D} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B9D585E2-7A18-41FC-AC80-6D89FBC73F32} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {C15F91CC-8758-4733-9DF5-5D0CBB4489D7} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C6FC9D0D-A68B-4E32-84C8-1EBBDB06507B} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CA565177-38BD-4580-888F-50C32B16F4BE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D0F4103B-3B6C-4BE1-882E-167B236A62DA} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {D31B1EB3-6F59-4788-8DEB-84C402FC5086} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {D35A134F-04F2-4BAA-ACBB-68C4D1A357D2} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {E2BE6555-DB97-4397-86F8-2CFB6B90DF76} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe (Apple Inc. -> Apple Inc.)
Task: {EB97B95A-7EDC-4552-8910-E9A74DFFC713} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F121BE7E-541E-427E-ABFE-75E989AEBBB6} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {F2C94E47-53E3-4805-8118-33F61802E181} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F3C45966-B426-4CDA-ABB4-6A3E8B5FE800} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {F650C222-2088-4972-B60A-1C93DF3B8084} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F667076C-F20F-44AE-B9CA-55550CB32C6D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {F67357A2-A6BC-4E0A-93CE-28149FBBA692} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {FA000C06-16AC-480D-A1D3-811D72F59054} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FB06EF73-8322-4FA0-AA18-6FF249D1265D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-11-02 18:45 - 2015-10-29 19:10 - 000382312 _____ (Digital Wave Ltd -> Digital Wave Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
2017-08-18 10:41 - 2017-08-18 10:41 - 000077824 _____ () [Datei ist nicht signiert] C:\Program Files\Logitech Gaming Software\LAClient\zlib.dll
2017-08-18 10:41 - 2017-08-18 10:41 - 000355840 _____ (The cURL library, hxxp://curl.haxx.se/) [Datei ist nicht signiert] C:\Program Files\Logitech Gaming Software\LAClient\LIBCURL.dll
2017-08-18 10:41 - 2017-08-18 10:41 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files\Logitech Gaming Software\LAClient\SSLEAY32.dll
2017-08-18 10:41 - 2017-08-18 10:41 - 000144896 _____ () [Datei ist nicht signiert] C:\Program Files\Logitech Gaming Software\LAClient\libssh2.dll
2017-08-18 10:41 - 2017-08-18 10:41 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files\Logitech Gaming Software\LAClient\LIBEAY32.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000958312 _____ (Digital Wave Ltd -> Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\MSVCR120.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000442728 _____ (Digital Wave Ltd -> Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\MSVCP120.dll
2015-11-02 18:45 - 2015-10-29 19:10 - 000196968 _____ (Digital Wave Ltd -> DVDVideoSoft Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\updhelperlib.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000110952 _____ (Digital Wave Ltd -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000253800 _____ (Digital Wave Ltd -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\collector.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 001160552 _____ (Digital Wave Ltd -> The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\LIBEAY32.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000125288 _____ (Digital Wave Ltd -> DVDVideoSoft Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\tier0.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000104296 _____ (Digital Wave Ltd -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000020328 _____ (Digital Wave Ltd -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000044392 _____ (Digital Wave Ltd -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000286056 _____ (Digital Wave Ltd -> The cURL library, hxxp://curl.haxx.se/) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\libcurl.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000282472 _____ (Digital Wave Ltd -> DVDVideoSoft Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\dlmgr.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000295272 _____ (Digital Wave Ltd -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\stat.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000272232 _____ (Digital Wave Ltd -> The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\SSLEAY32.dll
2015-11-02 18:45 - 2015-10-29 21:13 - 000771432 _____ (Digital Wave Ltd -> Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\MSVCR100.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\TEMP:0B9DC6BB [190]
AlternateDataStreams: C:\ProgramData\TEMP:195E8317 [180]
AlternateDataStreams: C:\ProgramData\TEMP:20C00621 [225]
AlternateDataStreams: C:\ProgramData\TEMP:2187A2BB [219]
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F [134]
AlternateDataStreams: C:\ProgramData\TEMP:2F947175 [170]
AlternateDataStreams: C:\ProgramData\TEMP:37AEC263 [240]
AlternateDataStreams: C:\ProgramData\TEMP:44A0FEC3 [468]
AlternateDataStreams: C:\ProgramData\TEMP:46CDAE37 [245]
AlternateDataStreams: C:\ProgramData\TEMP:4C235DA4 [237]
AlternateDataStreams: C:\ProgramData\TEMP:4EE36485 [242]
AlternateDataStreams: C:\ProgramData\TEMP:5167543E [238]
AlternateDataStreams: C:\ProgramData\TEMP:565D4B03 [241]
AlternateDataStreams: C:\ProgramData\TEMP:5C188F78 [220]
AlternateDataStreams: C:\ProgramData\TEMP:5E7551D4 [221]
AlternateDataStreams: C:\ProgramData\TEMP:667D4A95 [166]
AlternateDataStreams: C:\ProgramData\TEMP:7F477B0D [232]
AlternateDataStreams: C:\ProgramData\TEMP:87731E5E [175]
AlternateDataStreams: C:\ProgramData\TEMP:9E3D44B7 [388]
AlternateDataStreams: C:\ProgramData\TEMP:A19DFC74 [189]
AlternateDataStreams: C:\ProgramData\TEMP:A1EB942C [494]
AlternateDataStreams: C:\ProgramData\TEMP:B504E4C2 [169]
AlternateDataStreams: C:\ProgramData\TEMP:B61767F5 [177]
AlternateDataStreams: C:\ProgramData\TEMP:B6E58523 [187]
AlternateDataStreams: C:\ProgramData\TEMP:B74BD6BF [90]
AlternateDataStreams: C:\ProgramData\TEMP:B7D1FD90 [223]
AlternateDataStreams: C:\ProgramData\TEMP:BB6E0C06 [244]
AlternateDataStreams: C:\ProgramData\TEMP:C00C7190 [165]
AlternateDataStreams: C:\ProgramData\TEMP:C1616CD9 [222]
AlternateDataStreams: C:\ProgramData\TEMP:C453123E [246]
AlternateDataStreams: C:\ProgramData\TEMP:C50DBD80 [220]
AlternateDataStreams: C:\ProgramData\TEMP:C8E3A625 [442]
AlternateDataStreams: C:\ProgramData\TEMP:CF82DADF [224]
AlternateDataStreams: C:\ProgramData\TEMP:CFE660B9 [227]
AlternateDataStreams: C:\ProgramData\TEMP:D6A43EB0 [171]
AlternateDataStreams: C:\ProgramData\TEMP:DFB12512 [237]
AlternateDataStreams: C:\ProgramData\TEMP:EF123AF6 [227]
AlternateDataStreams: C:\ProgramData\TEMP:F176B6C6 [173]
AlternateDataStreams: C:\Users\Public\AppData:CSM [482]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\localhost -> localhost
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2019-01-05 11:57 - 000000030 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\system32\wbem;C:\Windows\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\Pictures\Bilder\1280x1024.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Keine Datei)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "LWS"
HKLM\...\StartupApproved\Run32: => "Syncios device service"
HKLM\...\StartupApproved\Run32: => "BrMfcWnd"
HKLM\...\StartupApproved\Run32: => "ControlCenter3"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\StartupFolder: => "CurseClientStartup.ccip"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "iCloudDrive"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "iCloudPhotos"
HKU\S-1-5-21-3980298719-2773488239-3045808690-1000\...\StartupApproved\Run: => "Overwolf"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{91586618-946C-4FB4-91CD-5005643AEF07}C:\program files (x86)\heroes of the storm\versions\base65285\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base65285\heroesofthestorm_x64.exe Keine Datei
FirewallRules: [TCP Query User{D5CE599F-BC72-4139-9B92-8EE7940047AF}C:\program files (x86)\heroes of the storm\versions\base65285\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base65285\heroesofthestorm_x64.exe Keine Datei
FirewallRules: [{FA0E4702-4093-4E15-B270-2626F46D64E7}] => (Allow) C:\Games\Steam\SteamApps\common\The Forest\TheForestVR.exe () [Datei ist nicht signiert]
FirewallRules: [{DAA29CEF-0243-4B9C-A15D-92C32AD4DF69}] => (Allow) C:\Games\Steam\SteamApps\common\The Forest\TheForestVR.exe () [Datei ist nicht signiert]
FirewallRules: [{97CC336C-6B98-408F-90D1-3241C64BB954}] => (Allow) C:\Games\Steam\SteamApps\common\The Forest\TheForest.exe () [Datei ist nicht signiert]
FirewallRules: [{E2E288BC-973B-4883-9CE9-FFDD0D83BA41}] => (Allow) C:\Games\Steam\SteamApps\common\The Forest\TheForest.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{5B6B753B-9851-43FC-BC23-13DF59657DC4}C:\games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{8D0AB38E-A89C-4DD6-8130-453DC5962439}C:\games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{248D0268-6379-41DF-9A1F-D50FBAE1017E}C:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{9BD958E7-D77F-4F5D-80F4-0B90BB678079}C:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{CD1D4941-86C2-4582-8E72-6910520AB4F0}C:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{E274FBF5-D677-40AD-973B-A339F7EDDFC2}C:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{624C8525-1D3E-464F-8F65-85A88E9BB9C3}C:\games\steam\steamapps\common\7 days to die rmod\7daystodie.exe] => (Allow) C:\games\steam\steamapps\common\7 days to die rmod\7daystodie.exe Keine Datei
FirewallRules: [TCP Query User{8664D5EB-CEE1-47EE-8A1A-2F9D79A5AD3E}C:\games\steam\steamapps\common\7 days to die rmod\7daystodie.exe] => (Allow) C:\games\steam\steamapps\common\7 days to die rmod\7daystodie.exe Keine Datei
FirewallRules: [{FC1CA88F-E491-4082-A011-A244340BCB83}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4EBA2AA2-1BE7-4135-9ED7-FB8D445CED42}] => (Allow) C:\Games\Steam\SteamApps\common\FINAL FANTASY IX\FF9_Launcher.exe () [Datei ist nicht signiert]
FirewallRules: [{0AFBA540-3B10-4BF5-A1E6-7BD15C05F813}] => (Allow) C:\Games\Steam\SteamApps\common\FINAL FANTASY IX\FF9_Launcher.exe () [Datei ist nicht signiert]
FirewallRules: [{141590C2-3110-44FD-9306-012C5DB79128}] => (Allow) C:\Games\Steam\SteamApps\common\FINAL FANTASY VII\FF7_Launcher.exe (Square Enix Ltd. -> )
FirewallRules: [{934CB9CE-FF9C-4407-86B3-034868175EDD}] => (Allow) C:\Games\Steam\SteamApps\common\FINAL FANTASY VII\FF7_Launcher.exe (Square Enix Ltd. -> )
FirewallRules: [UDP Query User{FE829D35-C82F-4921-9A82-5916D9C62894}C:\games\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) C:\games\steam\steamapps\common\7 days to die\7daystodie.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{976FB3A8-03BC-48AC-94E4-FB4F2C6F4FD6}C:\games\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) C:\games\steam\steamapps\common\7 days to die\7daystodie.exe () [Datei ist nicht signiert]
FirewallRules: [{1EB35C04-BC98-4557-A713-3525A67FF6CF}] => (Allow) C:\Games\Steam\SteamApps\common\7 Days To Die\7dLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{0299E3D2-12F3-430A-AF82-20CA25A6B9EF}] => (Allow) C:\Games\Steam\SteamApps\common\7 Days To Die\7dLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{7CD05211-4599-40AF-A989-6CB1FBF295EA}] => (Allow) C:\Games\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{BF45EB9C-D3D0-45CD-B8E3-9380EB8C103F}] => (Allow) C:\Games\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{1C098A03-26A5-45C7-BA6E-D44E62936CBB}] => (Allow) C:\Games\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{CC31B6E3-2EA6-4601-BD57-347AC66A3A6D}] => (Allow) C:\Games\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{5155D4E5-454D-4015-B993-606F65F2E8A5}] => (Allow) C:\Games\Steam\SteamApps\common\Crystals of Time\Crystals of Time.exe () [Datei ist nicht signiert]
FirewallRules: [{4F2EE6D9-2457-4800-AA58-00DBF751E097}] => (Allow) C:\Games\Steam\SteamApps\common\Crystals of Time\Crystals of Time.exe () [Datei ist nicht signiert]
FirewallRules: [{D295C900-9F94-4D5C-BE1F-8379766657E6}] => (Allow) LPort=1900
FirewallRules: [{48112717-B1BD-4207-87EF-2AC1540B1B0A}] => (Allow) LPort=2869
FirewallRules: [{FEE46130-1FC0-4235-9C20-0CDBDA4BAD4D}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{8D483CB3-2E14-42B8-ADFF-F1170DC6F1DA}C:\program files (x86)\gog galaxy\games\gwent\gwent.exe] => (Allow) C:\program files (x86)\gog galaxy\games\gwent\gwent.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{B31FE111-8414-4424-BDA6-48A64CD64904}C:\program files (x86)\gog galaxy\games\gwent\gwent.exe] => (Allow) C:\program files (x86)\gog galaxy\games\gwent\gwent.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{AD04857A-5FDB-4DEF-8671-D8DCC97C80B8}C:\users\admin\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\admin\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{6EA372A1-052E-4E88-AE19-219F942CEF38}C:\users\admin\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\admin\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{0449A45F-4E07-40EE-A04C-43ACB40601D4}C:\games\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\games\steam\steamapps\common\h1z1 king of the kill\h1z1.exe Keine Datei
FirewallRules: [TCP Query User{E3CA4442-9822-4696-80EE-DC01FBFCF9EC}C:\games\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\games\steam\steamapps\common\h1z1 king of the kill\h1z1.exe Keine Datei
FirewallRules: [{00FDF1E6-76AA-4724-A42A-6AC3E95C0895}] => (Allow) C:\Games\Steam\SteamApps\common\H1Z1 King of the Kill\LaunchPad.exe Keine Datei
FirewallRules: [{024FE7F4-B110-49B0-9C36-44078106AF47}] => (Allow) C:\Games\Steam\SteamApps\common\H1Z1 King of the Kill\LaunchPad.exe Keine Datei
FirewallRules: [{7B196BEB-4F81-4A74-A604-97E336CB2472}] => (Allow) C:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{256457AB-CE0B-445C-8B8B-39827A55BCCD}] => (Allow) C:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{562DB2B3-2F4C-490E-89B7-C636E35E4D52}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{3E7910F9-7889-4892-A86F-7F3955D1658D}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [TCP Query User{1C761363-3E1D-4E0B-82ED-608013A75D78}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{3C72DBCA-C707-41BB-9DA9-BFEE6C0785AE}] => (Allow) C:\Games\Steam\SteamApps\common\Fallout 4\Fallout4Launcher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{4E55F47E-A945-478A-8982-814323AC762D}] => (Allow) C:\Games\Steam\SteamApps\common\Fallout 4\Fallout4Launcher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{A0441FB0-512F-43F5-8429-7F683074CAD1}] => (Allow) C:\Games\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{32377C80-65D0-4749-A996-43E29E4E9E39}] => (Allow) C:\Games\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{658706B1-5E77-4784-BDBB-E1E75C7DEAFA}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{5CE650F1-83E8-4644-8E8A-56FE5BBC48BA}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{E08A2929-BA62-4E6A-A781-87C24E09BF2A}] => (Allow) C:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EF1F2960-3FCE-475F-B926-7280BE96D0F0}] => (Allow) C:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{CF335F13-7058-4729-8886-899D336D0205}C:\games\heroes of might&magic vi\might & magic heroes vi.exe] => (Allow) C:\games\heroes of might&magic vi\might & magic heroes vi.exe (Limbic Entertainment GmbH -> Black Hole Entertainment)
FirewallRules: [UDP Query User{53DBFE2B-5996-4ACF-AB26-A00AF7BDF7EF}C:\games\heroes of might&magic vi\might & magic heroes vi.exe] => (Allow) C:\games\heroes of might&magic vi\might & magic heroes vi.exe (Limbic Entertainment GmbH -> Black Hole Entertainment)
FirewallRules: [{9C846C10-3A01-4AB8-A8DD-2257E3527AEC}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{ABAD258C-041A-48A6-819C-BF98267AE0B1}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{7016414A-AF80-44B4-8983-5052769EC3A5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B1CA6F07-71E2-42D0-9418-569FA5C3CAEE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{E7395505-38F3-4F95-A834-490481A10ADA}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{A75426AD-0FCD-4A2D-BFA9-6214CF9A1069}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F9FA37E8-3621-461C-909E-3859BB75D189}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.exe Keine Datei
FirewallRules: [{A2A3DE87-21DD-4E02-AD9F-D0C542EA1EC9}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe Keine Datei
FirewallRules: [{C6B395B9-7470-490C-92C8-85CCD3A9B385}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.exe Keine Datei
FirewallRules: [{5456823E-7266-40FC-8988-CBE970066E0B}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe Keine Datei
FirewallRules: [{353DEE2A-3DDF-42EB-98E9-0A8BF4174710}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Tools\Launcher.exe Keine Datei
FirewallRules: [{2B9A08FE-8573-4078-AB8F-3106E29CC397}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe Keine Datei
FirewallRules: [{1D18CF12-94F0-4089-8730-2CCE253A3132}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.exe Keine Datei
FirewallRules: [{4B1FB6A7-B75F-4123-ACF7-432579ED04A9}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe Keine Datei
FirewallRules: [{2DE751CA-F2D1-4371-A5D1-CD7850653B87}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.exe Keine Datei
FirewallRules: [{8ABD0BD0-9291-4DA3-843B-0B6C8A01AFE8}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe Keine Datei
FirewallRules: [{D2128E1F-218B-4669-933C-0A4BD743E8D8}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Tools\Launcher.exe Keine Datei
FirewallRules: [{00A75919-3561-421B-B9B2-88D57941DE82}] => (Allow) C:\Games\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe Keine Datei
FirewallRules: [{7E28241B-9897-465C-96DD-5D47626AFCF7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{99CE67B2-299D-4383-8ED3-E81C424FFAAD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe Keine Datei
FirewallRules: [{96E87DDA-14EA-435D-8490-E381618FCB42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{853B66C9-BECE-4644-8BCD-FA4D1BF3D193}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{25D7E928-2D0E-4AD2-A4E8-B119C0CFF407}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4474F81F-895B-468B-9D6B-38B7F51F4FCF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F5CC905F-94A2-47C7-99E2-DFC590DF4590}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{242D3480-2E50-4611-8377-FBCDF161FE83}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C2EFB4F7-A5C5-47D0-9ECE-3583F257D105}] => (Allow) C:\Games\Ubisoft Game Launcher\games\Might and Magic Heroes VII\Binaries\Win64\MMH7Game-Win64-Shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.)
FirewallRules: [TCP Query User{F0B91633-CF64-4335-8076-1D0A3C31C3F9}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{9E37AF27-DFB0-4E2B-AF58-654A0358F9BC}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{4FA504A8-9F19-487B-9903-54840BF074EA}] => (Allow) C:\Games\Steam\SteamApps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7CED4406-4925-4499-AAFE-7225FB94C513}] => (Allow) C:\Games\Steam\SteamApps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{D745747A-D81B-4D5D-8763-343B0AC5ECB5}C:\games\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) C:\games\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{9ACED6CD-0432-4F69-B203-91E4FDDA998F}C:\games\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) C:\games\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{43D81546-74C9-4539-B147-27729F587138}] => (Allow) C:\Games\Steam\SteamApps\common\The Binding Of Isaac\Isaac.exe (Edmund Mcmillen & Florian Himsl ) [Datei ist nicht signiert]
FirewallRules: [{A3255493-8D63-4FD3-8653-ACC78386C264}] => (Allow) C:\Games\Steam\SteamApps\common\The Binding Of Isaac\Isaac.exe (Edmund Mcmillen & Florian Himsl ) [Datei ist nicht signiert]
FirewallRules: [{826FF667-2940-47A8-9020-CA550630FD96}] => (Allow) C:\Games\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe (Valve Corp. -> Irrational Games)
FirewallRules: [{80BA1865-ED77-41BA-A3B9-0A339D35D224}] => (Allow) C:\Games\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe (Valve Corp. -> Irrational Games)
FirewallRules: [{B01585EB-6762-42C3-A9B7-CD9F16F54C8F}] => (Allow) C:\Program Files (x86)\Anvsoft\Syncios\pdt_syncios.exe (Anvsoft Inc. -> Syncios Data Transfer)
FirewallRules: [{A257D034-51A6-4DFC-9498-36641310CD66}] => (Allow) C:\Games\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe (Double Fine Productions) [Datei ist nicht signiert]
FirewallRules: [{26AB552B-8543-437E-8069-879489736C61}] => (Allow) C:\Games\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe (Double Fine Productions) [Datei ist nicht signiert]
FirewallRules: [{3B16FB3A-391E-4552-B2F7-32CAAA2134DF}] => (Allow) C:\Games\Steam\SteamApps\common\WormsRevolution\WormsRevolution.exe () [Datei ist nicht signiert]
FirewallRules: [{F1671749-D48E-435D-9B99-3AF0CF4B46AD}] => (Allow) C:\Games\Steam\SteamApps\common\WormsRevolution\WormsRevolution.exe () [Datei ist nicht signiert]
FirewallRules: [{6C27287A-7653-4E67-992D-B0DC92C0E6D5}] => (Allow) C:\Games\GTA V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{58717B16-5A58-4F3C-BA6C-988E72C37A07}] => (Allow) C:\Games\GTA V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{91221136-E375-41C3-993C-7EE1EA9BA9F9}] => (Allow) C:\Games\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{8D1EDAD2-F66D-4C72-8F08-37A0893B9938}] => (Allow) C:\Games\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{9D1B5246-E552-4CF1-A29F-68FD575FA80C}] => (Allow) C:\Games\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{3A5FB783-3438-4539-A90C-6934D05B789D}] => (Allow) C:\Games\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{EF0C8522-B0EE-4997-B39B-A22D457F8899}] => (Allow) C:\Games\Steam\SteamApps\common\Shadowrun Returns\Shadowrun.exe () [Datei ist nicht signiert]
FirewallRules: [{B7F1DADB-BBA4-4886-AB02-A55549A50CD9}] => (Allow) C:\Games\Steam\SteamApps\common\Shadowrun Returns\Shadowrun.exe () [Datei ist nicht signiert]
FirewallRules: [{2DF31FFC-C921-418D-92D5-18E647E6597F}] => (Allow) C:\Games\Steam\SteamApps\common\Age2HD\Launcher.exe (TODO: <Company name>) [Datei ist nicht signiert]
FirewallRules: [{727C60AF-A5ED-44A2-A926-4D8A254B5E95}] => (Allow) C:\Games\Steam\SteamApps\common\Age2HD\Launcher.exe (TODO: <Company name>) [Datei ist nicht signiert]
FirewallRules: [{3B403097-72BA-47FD-A84A-DF766DEF25F8}] => (Allow) C:\Games\Steam\SteamApps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe (FUNCOM OSLO AS -> BattlEye Innovations)
FirewallRules: [{C73D6480-044C-4742-85A1-A73EE7CD89B2}] => (Allow) C:\Games\Steam\SteamApps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe (FUNCOM OSLO AS -> BattlEye Innovations)
FirewallRules: [{6DFDAC77-8A9D-4271-B2D6-7AB862050D28}] => (Allow) C:\Games\Steam\SteamApps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe (FUNCOM OSLO AS -> Funcom Oslo AS)
FirewallRules: [{94450024-0574-4010-9D81-5BC5ABBB5A1A}] => (Allow) C:\Games\Steam\SteamApps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe (FUNCOM OSLO AS -> Funcom Oslo AS)
FirewallRules: [{9DDA2956-262B-4D4C-87EE-DFDC1F381227}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4F320E5F-6D9A-425C-A0BE-0ACDEA79B7F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BE344FE6-965E-4491-9B2B-E9D4A492179A}] => (Allow) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6C7A775B-7FA3-4F03-B478-085D550B2314}] => (Allow) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4BF46722-1CBA-4D6F-BFAC-6E604B02FE70}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F1722F8B-24B7-4EEC-9EA6-2CC08956A657}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FBC0754F-99BC-4766-9D95-CBB32BDB39C5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{247CE6C0-9ED8-4F7E-90DA-ADF94CF06024}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F20F98EB-3ADF-4DC3-919C-7477B769B58C}] => (Allow) C:\Games\Steam\SteamApps\common\Ben and Ed\BenAndEd.exe () [Datei ist nicht signiert]
FirewallRules: [{5801DA57-E489-4D05-9622-032FB17E93FB}] => (Allow) C:\Games\Steam\SteamApps\common\Ben and Ed\BenAndEd.exe () [Datei ist nicht signiert]
FirewallRules: [{C8C8C016-C5BE-462A-A7D5-FFC0E8521DAB}] => (Allow) C:\Games\Steam\SteamApps\common\Ben and Ed - Blood Party\BaEBloodParty.exe () [Datei ist nicht signiert]
FirewallRules: [{8EB3CB15-8F8A-4D68-ABC8-97A9608D967D}] => (Allow) C:\Games\Steam\SteamApps\common\Ben and Ed - Blood Party\BaEBloodParty.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{B2878FE4-F92B-4D53-9873-3BC612C43B8F}C:\games\steam\steamapps\common\ben and ed\benanded\binaries\win32\benanded.exe] => (Allow) C:\games\steam\steamapps\common\ben and ed\benanded\binaries\win32\benanded.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{E44D739E-0F10-4165-992D-B7ABC501D362}C:\games\steam\steamapps\common\ben and ed\benanded\binaries\win32\benanded.exe] => (Allow) C:\games\steam\steamapps\common\ben and ed\benanded\binaries\win32\benanded.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{7C2EEF8A-CEC0-4ABD-9AF6-70DD55D93D35}] => (Allow) C:\Games\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe () [Datei ist nicht signiert]
FirewallRules: [{197F105F-01F1-422B-AE84-945BA2352D99}] => (Allow) C:\Games\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{BB918DA0-889E-4882-A98C-115483FB85F8}C:\games\steam\steamapps\common\ben and ed - blood party\baebloodparty\binaries\win32\baebloodparty-win32-debuggame.exe] => (Allow) C:\games\steam\steamapps\common\ben and ed - blood party\baebloodparty\binaries\win32\baebloodparty-win32-debuggame.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{DAEBCE4F-9EBD-43C0-BB7A-510CDD303D59}C:\games\steam\steamapps\common\ben and ed - blood party\baebloodparty\binaries\win32\baebloodparty-win32-debuggame.exe] => (Allow) C:\games\steam\steamapps\common\ben and ed - blood party\baebloodparty\binaries\win32\baebloodparty-win32-debuggame.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{D51E499F-7E03-4353-84E2-65E06280822A}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C5456322-DAF9-4276-871F-4B835C5F305E}] => (Allow) C:\Games\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Datei ist nicht signiert]
FirewallRules: [{6E5FA043-7E28-46AF-ABD9-D80C4E6B5156}] => (Allow) C:\Games\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Datei ist nicht signiert]
FirewallRules: [{5361E50A-5590-4E57-A3DA-682B366F3303}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
==================== Wiederherstellungspunkte =========================
13-04-2019 13:29:01 Removed Adobe Acrobat Reader DC - Deutsch.
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (04/13/2019 01:48:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15500
Error: (04/13/2019 01:48:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15500
Error: (04/13/2019 01:48:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (04/13/2019 01:28:17 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: SHUYIN)
Description: httphttp-2147467263
Error: (04/13/2019 12:58:05 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (04/13/2019 12:41:36 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (04/13/2019 12:38:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: PickerHost.Exe, Version: 10.0.17134.1, Zeitstempel: 0x2fa59209
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.17134.556, Zeitstempel: 0x74bed8b0
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000f479b
ID des fehlerhaften Prozesses: 0xe48
Startzeit der fehlerhaften Anwendung: 0x01d4f1e505db1f48
Pfad der fehlerhaften Anwendung: C:\Windows\System32\PickerHost.Exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: 15dff58d-df3b-4e7f-9964-b816a65dc112
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (04/13/2019 12:33:04 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: SHUYIN)
Description: httphttp-2147467263
Systemfehler:
=============
Error: (04/13/2019 01:32:34 PM) (Source: DCOM) (EventID: 10005) (User: SHUYIN)
Description: Fehler "2" in DCOM, als der Dienst "AvastSecureBrowserElevationService" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{620A093F-79D3-4CAB-8CAD-EB1A39A8C0A2}
Error: (04/13/2019 01:32:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Avast Secure Browser Elevation Service" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (04/13/2019 01:05:21 PM) (Source: DCOM) (EventID: 10016) (User: SHUYIN)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "SHUYIN\Admin" (SID: S-1-5-21-3980298719-2773488239-3045808690-1000) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
und der APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
im Anwendungscontainer "Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy" (SID: S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (04/13/2019 12:35:51 PM) (Source: DCOM) (EventID: 10016) (User: SHUYIN)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "SHUYIN\Admin" (SID: S-1-5-21-3980298719-2773488239-3045808690-1000) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (04/13/2019 12:35:51 PM) (Source: DCOM) (EventID: 10016) (User: SHUYIN)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "SHUYIN\Admin" (SID: S-1-5-21-3980298719-2773488239-3045808690-1000) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (04/13/2019 12:35:51 PM) (Source: DCOM) (EventID: 10016) (User: SHUYIN)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "SHUYIN\Admin" (SID: S-1-5-21-3980298719-2773488239-3045808690-1000) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (04/13/2019 12:33:02 PM) (Source: DCOM) (EventID: 10016) (User: SHUYIN)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "SHUYIN\Admin" (SID: S-1-5-21-3980298719-2773488239-3045808690-1000) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (04/13/2019 12:32:34 PM) (Source: DCOM) (EventID: 10005) (User: SHUYIN)
Description: Fehler "2" in DCOM, als der Dienst "AvastSecureBrowserElevationService" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{620A093F-79D3-4CAB-8CAD-EB1A39A8C0A2}
CodeIntegrity:
===================================
Date: 2019-04-13 13:37:23.699
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-13 13:37:00.240
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-13 10:38:53.809
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-13 10:38:25.383
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-11 22:22:38.471
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-11 20:16:04.020
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-11 20:14:54.502
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-08 14:30:21.532
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: AMD FX(tm)-6300 Six-Core Processor
Prozentuale Nutzung des RAM: 42%
Installierter physikalischer RAM: 8189.55 MB
Verfügbarer physikalischer RAM: 4735.86 MB
Summe virtueller Speicher: 16381.55 MB
Verfügbarer virtueller Speicher: 12290.56 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:930.97 GB) (Free:25.17 GB) NTFS
\\?\Volume{d1100f04-b5b1-11e3-869c-806e6f6e6963}\ (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{2cc7c6e0-0000-0000-0000-a0c4e8000000}\ () (Fixed) (Total:0.44 GB) (Free:0.04 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 2CC7C6E0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
==================== Ende von Addition.txt ============================
|
|
| Themen zu Windows 10 - Pc extrem langsam |
| code, computer, error, explorer, firefox, geforce, hängen, internet, internet explorer, langsam, link, logitech, nicht mehr, pc extrem langsam, pixel, programm, programme, rechner, seite, software, starten, suche, system, windows, windows 10, öffnet |
Linear-Darstellung
