| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: PUA:WIN32/Creprote lässt sich nicht enfernenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
30.07.2020, 22:32
| #1 |
 |  PUA:WIN32/Creprote lässt sich nicht enfernen Hallo zusammen - Meine Internetverbindung war in den letzten beiden Wochen massiv langsam oder unterbrochen; auch der Rechner selbst war manchmal etwas holprig, wenn auch nicht arg. Aber beim Win10 Viren & Bedrohungsschutz habe ich einen Scan durchgeführt, wo verschiedene Funde da waren  Ich habe die empfohlenen Maßnahmen von Windows durchgeführt (entfernen), aber PUA:WIN32/Creprote bleibt weiterhin da. Vorweg: habe im Forum gestöbert und gelesen, dass Chrome Mist ist. Werde den gleich deinstallieren, und Firefox verwenden ab jetzt. Außerdem habe ich bedauerlicherweise ein 5 jahre altes gecracktes Game über den FRST Scan gefunden, was ich nicht benutze! Mea Culpa! Kaufe alles brav auf Steam und lösche das sehr gern, weiß aber nicht wie ich das save tue am besten (es ist nicht installiert). Ich danke euch! Logs kommen: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 29-07-2020
durchgeführt von XXXX(Administrator) auf XXXX-PC (30-07-2020 23:07:47)
Gestartet von C:\Users\XXXX\Desktop
Geladene Profile: XXXX
Platform: Windows 10 Pro Version 2004 19041.388 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Program Files (x86)\Lioncast LM30 Gaming Mouse\LCMon.exe
() [Datei ist nicht signiert] C:\Program Files (x86)\NETGEAR\A6200\WifiService.exe
(4G Systems GmbH & Co. KG -> ) C:\Program Files (x86)\XSManager\WTGService.exe
(4G Systems GmbH & Co. KG -> 4G Systems GmbH & Co. KG) C:\Windows\service4g.exe
(4G Systems GmbH & Co. KG -> 4G Systems GmbH & Co. KG) C:\Windows\starter4g.exe
(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\Adobe Installer.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe <4>
(Adobe Inc. -> Adobe Systems Inc.) E:\Adobe Documents\Acrobat DC\Acrobat\acrotray.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(Adobe Inc. -> Adobe Systems Incorporated) E:\Adobe Documents\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(ants Inc. -> ants Inc.) C:\Program Files (x86)\GIZMO2\GIZMO.exe
(ants Inc. -> ants Inc.) C:\Users\XXXX\AppData\Local\GIZMO2\Data\deck\basic\basic.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe
(cv cryptovision GmbH) [Datei ist nicht signiert] E:\Program Files (x86)\cv cryptovision\cv act sc interface\RegisterTool.exe
(Discord Inc. -> Discord Inc.) C:\Users\XXXX\AppData\Local\Discord\app-0.0.306\Discord.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <28>
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) Corporation) [Datei ist nicht signiert] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) Smart Connect software -> ) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Intel(R) Smart Connect software -> Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(Intel(R) Software Development Products -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
(Microsoft Corporation -> ) C:\Windows\System32\Kinect\KinectMonitor.exe
(Microsoft Corporation -> ) C:\Windows\System32\Kinect\KinectService.exe
(Microsoft Corporation -> ) C:\Windows\System32\Kinect\KStudioHostService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe
Code:
ATTFilter (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20032.12611.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InputMethod\CHS\ChsIME.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mspaint.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) E:\Program Files (x86)\Mozilla Firefox\firefox.exe <7>
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Node.js Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Slack Technologies, Inc. -> Slack Technologies Inc.) C:\Users\XXXX\AppData\Local\slack\app-4.7.0\slack.exe <6>
(Tencent Technology(Shenzhen) Company Limited -> 深圳市腾讯计算机系统有限公司) C:\Users\XXXX\AppData\Roaming\Tencent\QQMicroGameBox\1.2.6.2\QQMicroGameBoxTray.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Windows\System32\Pen_Tablet.exe <2>
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Windows\System32\WTablet\Pen_TabletUser.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-03-22] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13427784 2013-03-18] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942936 2018-11-02] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-03-12] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [starter4g] => C:\Windows\starter4g.exe [160424 2010-04-30] (4G Systems GmbH & Co. KG -> 4G Systems GmbH & Co. KG)
HKLM-x32\...\Run: [LCgmmouseRun] => C:\Program Files (x86)\Lioncast LM30 Gaming Mouse\LCmon.exe [3171840 2015-05-25] () [Datei ist nicht signiert]
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2091064 2020-07-17] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-12-19] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => E:\Adobe Documents\Acrobat DC\Acrobat\Acrotray.exe [5641776 2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
HKLM-x32\...\Run: [GIZMO2] => C:\Program Files (x86)\GIZMO2\GIZMO.exe [137048 2011-01-21] (ants Inc. -> ants Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-06-06] (Adobe Inc. -> )
HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\Run: [ctfmon] => C:\Windows\system32\ctfmon.exe [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\Run: [QQMicroGameBoxTray] => C:\Users\XXXX\AppData\Roaming\Tencent\QQMicroGameBox\Launch.exe [190032 2020-07-02] (Tencent Technology(Shenzhen) Company Limited -> 深圳市腾讯计算机系统有限公司)
HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\Run: [Adobe Acrobat Synchronizer] => E:\Adobe Documents\Acrobat DC\Acrobat\AdobeCollabSync.exe [5417008 2020-05-04] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [677512 2020-07-23] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\Run: [com.squirrel.slack.slack] => C:\Users\XXXX\AppData\Local\slack\slack.exe [306672 2020-07-14] (Slack Technologies, Inc. -> Slack Technologies Inc.)
HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\Policies\Explorer: [NoSecurityTab] 1
HKU\S-1-5-21-2601677052-3802215475-160921258-1000\Software\Policies\...\system: [disablecmd] 0
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65488 2019-12-03] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-30] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2020-06-07]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\cv act sc interface RegisterTool (1).lnk [2014-06-23]
ShortcutTarget: cv act sc interface RegisterTool (1).lnk -> E:\Program Files (x86)\cv cryptovision\cv act sc interface\RegisterTool.exe (cv cryptovision GmbH) [Datei ist nicht signiert]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iSCTsysTray.lnk [2014-02-25]
ShortcutTarget: iSCTsysTray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel(R) Smart Connect software -> Intel Corporation)
GroupPolicy: Beschränkung ? <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {039ECD81-D938-47B4-A715-6E058C1A3488} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {0E61B214-E0C3-498C-90C7-4BCFC481634E} - \{819010D2-A0A3-49B0-AD47-F6FA41C287BE} -> Keine Datei <==== ACHTUNG
Task: {0E8CE2C4-195C-4710-B194-1E47050D1E27} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {0EE0FDF9-B8EC-42D4-934B-194629235E95} - \{7716F4DC-9C3B-48F6-BD2D-D246152D50D5} -> Keine Datei <==== ACHTUNG
Task: {16A56419-36FE-46DF-8E40-A3FC4D94CA4C} - System32\Tasks\Mozilla\Firefox Default Browser Agent A170175AFC21990C => E:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [124112 2020-07-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {1B95FF43-38E6-40AB-9D14-7DCB17F69C47} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1DBB2013-933E-45F0-9B1C-73AF15EC2BB2} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {1E37E6A8-05BA-41E7-ACF1-6F13C1E819BB} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {218A4B86-9EC6-4BD1-BFFA-6142BFF5A85B} - System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineGU => C:\Windows\SysWOW64\Microsoft\Protect\S-1-95-93\RB_1.3.38.25.exe <==== ACHTUNG
Task: {2BD8F070-2A32-43CE-BD85-F8E90E8CBA39} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2CEBAA79-8485-4B3B-95FA-B659FDB7B5FC} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {2E4351C9-377F-44B0-B875-70E3240BB284} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {310FBB75-3BE9-4361-BF6A-1D0ED8D3CEDC} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {3242145C-4CAA-4AD0-8A59-9BE8E85B5D28} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {33A2D765-4912-4B9A-8A60-59BE4A684C4B} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1313160 2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {35AD4241-1229-4B47-9513-F2992AB6C796} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {368B08B0-4931-4214-9CCA-C31B67CA8BF9} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {37A9F98B-4BAB-4483-8B18-8FE21D26AE66} - System32\Tasks\{47DD83C3-7EE2-4614-806C-9F28087D2870} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxps://www.skype.com/go/downloading?source=lightinstaller&ver=7.33.0.105&LastError=12040
Task: {39DCBECC-559C-4BBA-BF15-786D2E6AA941} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3B76BB59-0BE3-488A-BCE4-131DDE100F91} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {3D89E0FB-8157-4F70-82AC-3036F230FCD4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-07-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3EED8D45-5AEF-48C6-831E-8E05E5E36005} - System32\Tasks\Microsoft\Office\IMESharePointDictionary => c:\Program Files (x86)\Common Files\Microsoft Shared\IME16\IMESharePointDictionary.exe [201040 2002-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {3FCD1689-C888-4C9E-92AE-FF38E0B76E38} - \{FB56A103-64B6-478E-A049-9B2D3062D7F5} -> Keine Datei <==== ACHTUNG
Task: {405424AF-83EB-418F-884A-9251129FC37E} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {41B81FD7-8214-40D9-A183-98324F92F092} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {41BC7A07-F879-4A0C-A554-06DD1775CC90} - System32\Tasks\G2MUploadTask-S-1-5-21-2601677052-3802215475-160921258-1000 => C:\Users\XXXX\AppData\Local\GoToMeeting\18425\g2mupload.exe [31320 2020-07-30] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {460E03A3-0312-4CF8-83D5-BDB6C5FAFD7C} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
Task: {47077B63-D13A-4F41-8C4C-EC5C7AB32E60} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4B085A3A-33F2-4998-A3D4-042C5AB920F2} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4BB2AC37-14B2-4258-8C3B-E824A7345892} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4C5E3C12-F72F-40B8-9483-DEE2455349DB} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4D52E475-C2D2-49A7-8244-B047655FEE7D} - \{5CD14BEA-4EA5-4E55-BEB2-096A9CEE323F} -> Keine Datei <==== ACHTUNG
Task: {56FA2BE1-4FEF-4636-B4BF-D4D79FA81915} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4571056 2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B1ED0C6-3803-48AF-95B7-360C7E14CE9B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5CEE1B03-EF95-4837-81BC-1C93C5D47F07} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5D7518A3-4228-44DB-9471-3274FBE4D07C} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {607642AD-80DD-47AF-8F7A-AEABDBA7D2E0} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {628CC381-4C45-4EBA-B882-D62C61D40391} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [123752 2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {65AA386B-DF99-448C-B92A-2BFCA43ED740} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-07-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {677E2587-9CEA-4266-A75F-C512E78115BB} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6A218976-BADF-41B1-B607-6EAAFC6F59AA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {6BBA7EAA-0594-4CE9-B6FA-B884E4D43A92} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {722E9D1C-8012-42B7-927B-55BEC50EBB8B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {73C12B64-C3AA-431D-ABE9-4EF03857E109} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {73D349AC-6491-4C38-8824-BE3078F9227D} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {74F7ACD0-FA0E-44AF-A889-276072BBC855} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {75391F13-FC27-46BA-B145-2EC12278A94E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23815032 2020-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {76C3091D-8FE0-408B-B382-893818AF82B0} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
Task: {7C60E855-BF8E-403C-AF27-F52A9E6EB28E} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7D13FEF5-DBD2-4D79-9734-093163C4931F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23815032 2020-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {7EAE67EB-8F81-4071-ADD7-9DD8967A44FE} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {898EC623-C298-4104-BBEA-9E032CFEC0ED} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8E126DD9-3CD4-42BC-9D6D-C188C6B9A8F5} - \{44055574-0B85-44F3-A1C4-682E2FDE5C62} -> Keine Datei <==== ACHTUNG
Task: {9B87108C-7F86-4C88-A236-49D8DDEB6A5B} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9D6DA2BC-89E5-42AB-B047-CE0368A76955} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9D86EFAD-6408-42DB-9C16-738DAA4D127B} - \{A13CFA64-A305-4CF8-B147-201BD908448B} -> Keine Datei <==== ACHTUNG
Task: {A9942E3B-A671-4F80-9B35-1CBCDF710E22} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4571056 2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA870AC1-6AE8-40C3-8A6C-B7BD3699A2CD} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {AAF49806-56AE-4EEE-8FF3-FABA24C5BA89} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AD090BB5-FB30-4020-9214-E0411BA0D55B} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B2BD752D-BA47-4860-835B-5F92340108AA} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B31857D6-A81B-4D2A-94CC-E4489ED3136A} - System32\Tasks\AdobeAAMUpdater-1.0-XXXX-PC-XXXX=> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {BE0E3003-791E-4AEE-8414-A681F40CB476} - \{751E6175-316C-4642-809F-78BBE16BC1BB} -> Keine Datei <==== ACHTUNG
Task: {C0792C67-9C10-4530-9778-7E9D2F25400C} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {C3C601FF-5172-4CEA-8C82-F6C7B6B8FE3D} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {C9339C9D-846D-43A7-B957-3D8E6275848E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [123752 2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {D1381610-BD0F-4849-A529-B0B3DECD142C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-07-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D4CEFCDC-BA61-46CF-B09F-70C1610F41EC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D53B911E-16E9-4FB6-A852-F9F7D9061FA6} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-office.dogan@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {D86097A1-BEC5-4435-B775-3C1664F6B55F} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D991A0EE-E690-4CFB-937C-EFE69F5475EE} - System32\Tasks\G2MUpdateTask-S-1-5-21-2601677052-3802215475-160921258-1000 => C:\Users\XXXX\AppData\Local\GoToMeeting\18425\g2mupdate.exe [31320 2020-07-30] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {DDBC4148-291F-4637-A8C9-2AC78F191579} - \{4ABDB9BE-1FF9-4E66-945F-902C72DA8C8F} -> Keine Datei <==== ACHTUNG
Task: {DEB6B19A-37D8-40C9-A00A-C6F124692FC5} - \{F0BA206F-7AF8-4FDB-B502-BE05D000D02D} -> Keine Datei <==== ACHTUNG
Task: {E01E7AA4-F6F0-43B9-9C73-258B96A2E328} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: {E1135D6E-AFF9-4E4B-B850-BF7A632D8FF5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {F6379081-512D-4EE8-BB0D-A2ED7CB25B94} - \{EEECA145-83F4-4879-86D0-176A6725C669} -> Keine Datei <==== ACHTUNG
Task: {FD5FA2A4-FE12-4075-B15C-C140815E24C7} - \{2C3E5067-F04D-40F9-8187-D7C85417554E} -> Keine Datei <==== ACHTUNG
Task: {FE045410-560A-4739-971F-B43950A79524} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-07-25] (Microsoft Windows Publisher -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2601677052-3802215475-160921258-1000.job => C:\Users\XXXX\AppData\Local\GoToMeeting\18425\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2601677052-3802215475-160921258-1000.job => C:\Users\XXXX\AppData\Local\GoToMeeting\18425\g2mupload.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{140BEABE-B131-48D8-A795-5BE12294B5ED}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{9541EBCD-4C46-48C8-AC3B-BF3B74ACB32D}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{deb5eb19-2b96-41ff-8b2a-45608708c4a0}: [NameServer] 1.1.1.1,208.67.220.220
Tcpip\..\Interfaces\{deb5eb19-2b96-41ff-8b2a-45608708c4a0}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2601677052-3802215475-160921258-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2601677052-3802215475-160921258-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hao123.com/?tn=96957359_hao_pg
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2601677052-3802215475-160921258-1000 -> DefaultScope {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-424ecd8d496a7cf8&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2601677052-3802215475-160921258-1000 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-424ecd8d496a7cf8&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2601677052-3802215475-160921258-1000 -> {3C3277C8-7F89-4F3F-AED7-71D9698B615D} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-2601677052-3802215475-160921258-1000 -> {3D8B4390-0AF1-440A-9B59-8F69A66B8CCB} URL = hxxp://www.google.com.hk/search?hl=zh-CN&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2601677052-3802215475-160921258-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-2601677052-3802215475-160921258-1000 -> {DBF90901-3B89-433A-BF74-7D34AEB1CB85} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.48\BHO\ie_to_edge_bho_64.dll [2020-07-28] (Microsoft Corporation -> Microsoft Corporation)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.48\BHO\ie_to_edge_bho.dll [2020-07-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-01-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc -> Google Inc.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-01-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Kein Name - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - Keine Datei
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc -> Google Inc.)
Toolbar: HKLM - Kein Name - {b60873b9-51aa-4566-b2fc-c16de2ec8bff} - Keine Datei
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
DPF: HKLM-x32 {AA07EBD2-EBDD-4BD6-9F8F-114BD513492C} hxxp://dist.cdnetworks.co.jp/cdndist/neffy/NeffyLauncher_v1013.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-07] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge Profile: C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default [2020-07-26]
Edge HomePage: Default -> hxxp://www.google.com
Edge Extension: (F.B.(FluffBusting)Purity) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbadpifemeclpdmgelgehgclmeohdoge [2020-07-26]
Edge Extension: (Add to Wishlistr) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bhdhompadhkjjcalkhplcfdbjegnkegh [2020-06-26]
Edge Extension: (Skype-Anrufe) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2020-06-26]
Edge Extension: (Mogicons) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bpgpffljkgjmijjdmjbdppndoojdgboe [2020-06-26]
Edge Extension: (Grammarly for Microsoft Edge) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cnlefmmeadmemmdciolhbnfeacpdfbkd [2020-06-26]
Edge Extension: (Image Downloader) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cnpniohnfphhjihaiiggeabnkjhpaldj [2020-06-26]
Edge Extension: (Icon Pack for Facebook) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dgjnigeodbhfkikngfpbpaponldpnajj [2020-06-26]
Edge Extension: (Zoom Redirector) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dkhjempaiackknhjkkaidppoepkdamen [2020-06-26]
Edge Extension: (Ghostery – Datenschutzorientierter Werbeblocker) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2020-06-26]
Edge Extension: (GoFullPage - Full Page Screen Capture) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2020-07-22]
Edge Extension: (Care your Eyes) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fidmpnedniahpnkeomejhnepmbdamlhl [2020-06-26]
Edge Extension: (Facebook™ Chat Privacy) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gfpgaanechfneiboempkfjghninbibjn [2020-06-26]
Edge Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2020-07-22]
Edge Extension: („Merken“-Button von Pinterest) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jfcjijcigimhjjdimpghneggnegiphhh [2020-06-26]
Edge Extension: (Video DownloadHelper) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmkaglaafmhbcpleggkmaliipiilhldn [2020-06-26]
Edge Extension: (Tag Assistant (by Google)) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kejbdjndbnbjgmefkgdddjlbokphdefk [2020-06-26]
Edge Extension: (Noisli) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\klejemegaoblahjdpcajmpcnjjmkmkkf [2020-06-26]
Edge Extension: (mobile browser emulator) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lbofcampnkjmiomohpbaihdcbjhbfepf [2020-06-26]
Edge Extension: (F.B. Purity For Facebook) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ncdlagniojmheiklojdcpdaeepochckl [2020-06-26]
Edge Extension: (AdBlock*– der beste Ad-Blocker) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2020-07-22]
Edge Extension: (VK audio mp3 + video by MyUpdate.ru) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ofhhndfphhclgkigefjgbmghohfiomni [2020-06-26]
Edge Extension: (Spottster) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oojdbjfeamokogkeipeejegidjceiaio [2020-06-26]
Edge Extension: (AdBlocker Ultimate) - C:\Users\XXXX\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pciakllldcajllepkbbihkmfkikheffb [2020-07-22]
FireFox:
========
FF DefaultProfile: 6ghfa3rf.default-1436973638517
FF ProfilePath: C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\6ghfa3rf.default-1436973638517 [2020-07-30]
FF Extension: (Facebook Container) - C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\6ghfa3rf.default-1436973638517\Extensions\@contain-facebook.xpi [2020-04-17]
FF Extension: (Imperia OneClickEdit) - C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\6ghfa3rf.default-1436973638517\Extensions\oce@imperia.de.xpi [2016-08-10] []
FF Extension: (Panda Safe Web) - C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\6ghfa3rf.default-1436973638517\Extensions\{b60873b9-51aa-4566-b2fc-c16de2ec8bff}.xpi [2018-05-13]
FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\6ghfa3rf.default-1436973638517\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-07-30]
FF SearchPlugin: C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\6ghfa3rf.default-1436973638517\searchplugins\search provided by bing.xml [2019-02-25]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - E:\Adobe Documents\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - E:\Adobe Documents\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-05-02]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - E:\Adobe Documents\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-07-17] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32.dll [2020-04-01] (Adobe Systems Incorporated -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-01-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-01-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corporation -> Microsoft Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [Keine Datei]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [Keine Datei]
FF Plugin-x32: Adobe Acrobat -> E:\Adobe Documents\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-07-17] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-2601677052-3802215475-160921258-1000: @1.qq.com/npqqwebgame -> C:\Users\XXXX\AppData\Roaming\Tencent\WebGamePlugin\1.0.5.2\npqqwebgame.dll [2016-12-29] (Tencent Technology(Shenzhen) Company Limited -> )
FF Plugin HKU\S-1-5-21-2601677052-3802215475-160921258-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\XXXX\AppData\Roaming\Zoom\bin_00\npzoomplugin.dll [2020-05-18] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default [2020-07-30]
CHR Notifications: Default -> hxxps://app.kosmi.io; hxxps://calendar.google.com; hxxps://mail.google.com; hxxps://meet.google.com; hxxps://www.duolingo.com; hxxps://www.weibo.com
CHR HomePage: Default -> hxxp://www.google.com
CHR Session Restore: Default -> ist aktiviert.
CHR Extension: (Präsentationen) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Docs) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-07-30]
CHR Extension: (Add to Wishlistr) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhdhompadhkjjcalkhplcfdbjegnkegh [2017-12-10]
CHR Extension: (YouTube) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google-Suche) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (GoFullPage - Full Page Screen Capture) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2020-07-21]
CHR Extension: (Tabellen) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Zoom Redirector) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmaeeiocbalinknpdkjjfogehkdcbkcd [2020-04-02]
CHR Extension: (Facebook™ Chat Privacy) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfpgaanechfneiboempkfjghninbibjn [2017-08-15]
CHR Extension: („Merken“-Button von Pinterest) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2020-07-24]
CHR Extension: (Grammarly for Chrome) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-07-30]
CHR Extension: (TwitchAlerts Stream Labels) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgmggmdngboajiakmbpdknfpdelbjbcg [2016-12-08]
CHR Extension: (F.B. Purity For Facebook) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdlagniojmheiklojdcpdaeepochckl [2016-07-16]
CHR Extension: (F.B.(FluffBusting)Purity) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmkinhboiljjkhaknpaeaicmdjhagpep [2020-07-26]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-30]
CHR Extension: (AdBlocker Ultimate) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2020-07-15]
CHR Extension: (Google Mail) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-21]
CHR Profile: C:\Users\XXXX\AppData\Local\Google\Chrome\User Data\System Profile [2020-06-27]
CHR HKLM\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [844856 2020-06-20] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc. -> Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1447944 2016-12-12] (BattlEye Innovations e.K. -> )
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-09-02] (BitRaider LLC -> BitRaider, LLC)
R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-10-19] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10574712 2020-07-02] (Microsoft Corporation -> Microsoft Corporation)
R2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [11839392 2020-02-19] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-06-14] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Datei ist nicht signiert]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [48832 2013-01-28] (Intel Corporation - Business Client Platform Division -> Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [182248 2013-03-14] (Intel(R) Smart Connect software -> )
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
R2 KinectMonitor; C:\WINDOWS\system32\Kinect\KinectMonitor.exe [29568 2019-05-16] (Microsoft Corporation -> )
S3 NGS; C:\ProgramData\Nexon\NGS\NGService.exe [2998488 2020-06-06] (NEXON Korea Corporation. -> NEXON Korea Corporation)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3521168 2015-07-22] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2466608 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3344176 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4956856 2020-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\NisSrv.exe [2169568 2020-07-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MsMpEng.exe [128376 2020-07-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WNDA6200; C:\Program Files (x86)\NETGEAR\A6200\WifiService.exe [45056 2014-03-14] () [Datei ist nicht signiert]
R2 WTGService; C:\Program Files (x86)\XSManager\WTGService.exe [329872 2013-01-30] (4G Systems GmbH & Co. KG -> )
R2 XS Stick Service; C:\Windows\service4g.exe [145064 2010-04-30] (4G Systems GmbH & Co. KG -> 4G Systems GmbH & Co. KG)
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AsrAppCharger; C:\WINDOWS\System32\DRIVERS\AsrAppCharger.sys [17192 2011-05-10] (ASROCK Incorporation -> Windows (R) Win 7 DDK provider)
S3 AsrDrv101; C:\Windows\SysWOW64\Drivers\AsrDrv101.sys [22280 2014-02-28] (ASROCK Incorporation -> ASRock Incorporation)
R0 AsrRamDisk; C:\WINDOWS\System32\drivers\AsrRamDisk.sys [34640 2012-08-09] (ASROCK Incorporation -> ASRock Inc.)
R3 BCMH43XX; C:\WINDOWS\system32\DRIVERS\bcmwlhigh63a.sys [2463920 2014-04-10] (Broadcom Corporation -> Broadcom Corporation)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2019-01-13] (BitRaider -> BitRaider)
R1 cFosSpeed; C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys [1632128 2011-07-04] (cFos Software GmbH -> cFos Software GmbH)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 FNETURPX; C:\WINDOWS\System32\drivers\FNETURPX.SYS [16648 2014-02-25] (FNet Co., Ltd. -> FNet Co., Ltd.)
S3 KinectSensor; C:\WINDOWS\system32\DRIVERS\KinectSensor.sys [98232 2019-06-10] (Microsoft Corporation -> )
R1 MpKslDrv; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{03A7E824-A468-401D-97FF-73A6288E7E46}\MpKslDrv.sys [73952 2020-07-30] (Microsoft Windows -> Microsoft Corporation)
R1 NPF; C:\WINDOWS\System32\drivers\npf.sys [35344 2010-06-26] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 TesMon; C:\Windows\system32\TesMon.sys [60472 2016-12-30] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S3 TesSafe; C:\Windows\system32\TesSafe.sys [1020968 2016-12-30] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
R1 ui11drdr; C:\WINDOWS\System32\DRIVERS\ui11drdr.sys [201072 2012-09-24] (1&1 Internet AG -> 1&1 Internet AG)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [78216 2020-07-25] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [430320 2020-07-25] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [98520 2020-07-25] (Microsoft Windows -> Microsoft Corporation)
R3 WPRO_41_2001; C:\WINDOWS\System32\drivers\WPRO_41_2001.sys [34752 2020-07-20] (Intel(R) Smart Connect software -> )
R3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [26200 2015-05-25] (Splitmedialabs Limited -> SplitmediaLabs Limited)
S3 BCM42RLY; system32\drivers\BCM42RLY.sys [X]
U3 idsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-07-30 23:07 - 2020-07-30 23:08 - 000058194 _____ C:\Users\XXXX\Desktop\FRST.txt
2020-07-30 23:01 - 2020-07-30 23:01 - 002296832 _____ (Farbar) C:\Users\XXXX\Desktop\FRST64.exe
2020-07-29 13:48 - 2020-07-29 19:09 - 000000000 ____D C:\Users\XXXX\Desktop\Hell Yeah Jul-Aug
2020-07-29 11:11 - 2020-07-29 16:05 - 000000763 _____ C:\Users\XXXX\Desktop\july-august-todo.txt
2020-07-27 12:30 - 2020-07-27 12:30 - 001772993 _____ C:\Users\XXXX\Downloads\Bildschirmvideo aufnehmen 2020-07-27 um 10.22.16.mov
2020-07-27 12:30 - 2020-07-27 12:30 - 001266430 _____ C:\Users\XXXX\Downloads\Bildschirmvideo aufnehmen 2020-07-27 um 10.22.45.mov
2020-07-27 12:29 - 2020-07-27 18:34 - 000000139 _____ C:\Users\XXXX\Desktop\to-do.txt
2020-07-27 11:52 - 2020-07-27 11:52 - 003664239 _____ C:\Users\XXXX\Downloads\Bildschirmvideo aufnehmen 2020-07-27 um 10.21.44.mov
2020-07-26 14:44 - 2020-07-26 14:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-07-24 17:29 - 2020-07-24 19:33 - 000000254 _____ C:\Users\XXXX\Desktop\task.txt
2020-07-24 14:46 - 2020-07-24 17:09 - 000000000 ____D C:\Users\XXXX\Desktop\Neuer Ordner
2020-07-24 11:25 - 2020-07-24 11:25 - 000112571 _____ C:\Users\XXXX\Desktop\shortcut_boldx_marketing.pdf
2020-07-22 19:34 - 2020-07-22 19:34 - 000001125 _____ C:\Users\XXXX\Desktop\Overwatch.lnk
2020-07-22 17:00 - 2020-07-22 17:00 - 013043100 _____ C:\Users\XXXX\Downloads\Sequenz 01_1 (1).mp4
2020-07-22 15:55 - 2020-07-22 15:55 - 013053211 _____ C:\Users\XXXX\Downloads\Fira.mp4
2020-07-22 15:48 - 2020-07-22 15:48 - 013043100 _____ C:\Users\XXXX\Downloads\Sequenz 01_1.mp4
2020-07-22 11:39 - 2020-07-22 11:39 - 001486876 _____ C:\Users\XXXX\Downloads\Sequenz 03.mp4
2020-07-22 10:58 - 2020-07-22 10:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon
2020-07-22 10:56 - 2020-07-22 10:58 - 000000000 ____D C:\Program Files\Maxon Cinema 4D R22
2020-07-20 20:23 - 2020-07-20 20:23 - 000094656 _____ (CACE Technologies) C:\WINDOWS\system32\WPRO_41_2001woem.tmp
2020-07-20 20:23 - 2020-07-20 20:23 - 000000004 ____H C:\ProgramData\cm-lock
2020-07-20 20:22 - 2020-07-20 20:22 - 000001426 _____ C:\WINDOWS\system32\default_error_stack-000003-000000.txt
2020-07-20 20:06 - 2020-07-08 05:45 - 000039824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-07-20 20:06 - 2020-07-07 18:31 - 001780952 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-07-20 20:06 - 2020-07-07 18:31 - 001780952 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-07-20 20:06 - 2020-07-07 18:31 - 001371352 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-07-20 20:06 - 2020-07-07 18:31 - 001371352 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-07-20 20:06 - 2020-07-07 18:31 - 001086680 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-07-20 20:06 - 2020-07-07 18:31 - 001086680 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-07-20 20:06 - 2020-07-07 18:31 - 000946392 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-07-20 20:06 - 2020-07-07 18:31 - 000946392 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-07-20 20:06 - 2020-07-07 18:30 - 000456600 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-07-20 20:06 - 2020-07-07 18:30 - 000349936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-07-20 20:06 - 2020-07-07 18:29 - 002076560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-07-20 20:06 - 2020-07-07 18:29 - 001569680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-07-20 20:06 - 2020-07-07 18:29 - 001486744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-07-20 20:06 - 2020-07-07 18:29 - 001146264 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-07-20 20:06 - 2020-07-07 18:29 - 000816368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-07-20 20:06 - 2020-07-07 18:29 - 000812432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-07-20 20:06 - 2020-07-07 18:29 - 000674032 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-07-20 20:06 - 2020-07-07 18:29 - 000670616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-07-20 20:06 - 2020-07-07 18:29 - 000655592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-07-20 20:06 - 2020-07-07 18:29 - 000555928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-07-20 20:06 - 2020-07-07 18:29 - 000541936 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-07-20 20:06 - 2020-07-07 18:28 - 006652816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-07-20 20:06 - 2020-07-07 18:28 - 005883280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-07-20 20:06 - 2020-07-07 18:28 - 003901672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-07-20 20:06 - 2020-07-07 18:28 - 001722088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445167.dll
2020-07-20 20:06 - 2020-07-07 18:28 - 001482976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445167.dll
2020-07-20 20:06 - 2020-07-07 18:26 - 004716168 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-07-20 19:56 - 2020-03-04 14:54 - 001804784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2020-07-20 19:56 - 2020-03-04 14:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2020-07-17 23:19 - 2020-07-17 23:19 - 006570133 _____ C:\Users\XXXX\Downloads\1595020520389.mp4
2020-07-17 23:08 - 2020-07-17 23:08 - 006891003 _____ C:\Users\XXXX\Downloads\1595019885954.mp4
2020-07-17 16:02 - 2020-07-17 16:02 - 007075314 _____ C:\Users\XXXX\Downloads\1594994061288.mp4
2020-07-17 12:08 - 2020-07-17 12:08 - 026271744 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 024264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 023433216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 019868672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 018766336 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 018068992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 014754816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 010922808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 008892600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 007593544 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 007593472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 007534160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 007070208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 006920192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 006404608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 006356008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 006029312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 005964496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 005821952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 005337504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 004783328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 004734976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 004629328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 003925856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 003906048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 003812304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 003778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 003547280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 002918216 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 002744320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-07-17 12:08 - 2020-07-17 12:08 - 002568192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 002520048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 002177528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 002104320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 002026496 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001956016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001952392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001710080 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001668904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001654824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001641472 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001640888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001606656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001557824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 001550336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001509736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001474048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001449280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001448448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001374720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001352232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001303040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001301592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001286560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001255744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 001253888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001246720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001239552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001218560 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001126472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001090560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001071224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001041408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001022976 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001014872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001008184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000991744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000966872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000957952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000945664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000933176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000903168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000889384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000881112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000876544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000868352 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000856328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000843264 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000831016 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000824328 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000814592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000804352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000801560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000798720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000779360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000774456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000758784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000748360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000721024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000720896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000696240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000673976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntimewindows.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000634680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000633856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntime.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000623960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000623392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000606880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000595512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000590848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000523720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000487552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000482616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000475704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000466928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000455168 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000453952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000443704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000423224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000420936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000413208 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000409552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000407504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000395600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreShellAPI.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000343992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AarSvc.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-07-17 12:08 - 2020-07-17 12:08 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000313152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000311920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnclient.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000280064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000276480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000253016 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2020-07-17 12:08 - 2020-07-17 12:08 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-07-17 12:08 - 2020-07-17 12:08 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000227640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-07-17 12:08 - 2020-07-17 12:08 - 000217912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Devices.Sensors.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000195128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-07-17 12:08 - 2020-07-17 12:08 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000180024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-07-17 12:08 - 2020-07-17 12:08 - 000179000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2020-07-17 12:08 - 2020-07-17 12:08 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000171024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000163208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coreglobconfig.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000151864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000111616 _____ C:\WINDOWS\system32\RDVGHelper.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000095032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-07-17 12:08 - 2020-07-17 12:08 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000092952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000086784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.internal.shellcommon.AccountsControlExperience.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemUWPLauncher.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000061752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagnosticdataquery.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000052664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000040248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000024288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerEnc.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000021304 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000020632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerEnc.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDJPN.DLL
2020-07-17 12:08 - 2020-07-17 12:08 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2020-07-17 12:08 - 2020-07-17 12:08 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteFXvGPUDisablement.exe
2020-07-17 12:08 - 2020-07-17 12:08 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000009269 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-07-17 12:08 - 2020-07-17 12:08 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106n.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd101.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106n.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd101.DLL
2020-07-17 12:08 - 2020-07-17 12:08 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-07-17 12:08 - 2020-07-17 12:08 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 017540608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 010336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 009034752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 007992824 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 007964416 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 006709248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 006175232 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 006060544 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 005766168 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 004485216 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-07-17 12:07 - 2020-07-17 12:07 - 003860480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 003818496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 003810816 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-07-17 12:07 - 2020-07-17 12:07 - 003779896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-07-17 12:07 - 2020-07-17 12:07 - 003752448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 003749376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 002963456 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-07-17 12:07 - 2020-07-17 12:07 - 002631168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 002585912 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 002566144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 002466864 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 002399744 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 002338304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 002311680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 002305024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 002286128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 002245632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 002131024 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 002077696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 002040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001978656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001876480 _____ (Microsoft Corporation)
Geändert von monchou (30.07.2020 um 22:38 Uhr) |
|
30.07.2020, 22:33
| #2 |
| | PUA:WIN32/Creprote lässt sich nicht enfernenCode:
ATTFilter C:\WINDOWS\system32\wevtsvc.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001858560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001784488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001766912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001762632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001712128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001705472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001701368 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001556480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001507328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-07-17 12:07 - 2020-07-17 12:07 - 001495552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001491968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001422336 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-07-17 12:07 - 2020-07-17 12:07 - 001403904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001378568 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001359872 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsf3gip.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001305600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001222656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001207296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001195520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001182008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001145344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001114112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001082168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001069056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001058816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001048480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001043456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 001006592 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000994248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000968192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000937464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000914200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000902976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-07-17 12:07 - 2020-07-17 12:07 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000879104 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000858624 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000804864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000799552 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2020-07-17 12:07 - 2020-07-17 12:07 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000753152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000704496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000678200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-07-17 12:07 - 2020-07-17 12:07 - 000676088 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000644096 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-07-17 12:07 - 2020-07-17 12:07 - 000596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000565760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000565760 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000560400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000555744 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000539960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000539256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2020-07-17 12:07 - 2020-07-17 12:07 - 000531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000522040 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000506672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-07-17 12:07 - 2020-07-17 12:07 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellAPI.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000454968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-07-17 12:07 - 2020-07-17 12:07 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000423424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000423224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000389952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000380632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-17 12:07 - 2020-07-17 12:07 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnclient.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000319808 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Devices.Sensors.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-07-17 12:07 - 2020-07-17 12:07 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000260288 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000249656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleBand.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000215896 _____ (Microsoft Corporation) C:\WINDOWS\system32\coreglobconfig.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000215864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-07-17 12:07 - 2020-07-17 12:07 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys
2020-07-17 12:07 - 2020-07-17 12:07 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000148280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-07-17 12:07 - 2020-07-17 12:07 - 000132728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-17 12:07 - 2020-07-17 12:07 - 000113112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2020-07-17 12:07 - 2020-07-17 12:07 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-17 12:07 - 2020-07-17 12:07 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.AccountsControlExperience.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-17 12:07 - 2020-07-17 12:07 - 000076992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000071792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000070968 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-17 12:07 - 2020-07-17 12:07 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-07-17 12:03 - 2020-06-30 05:04 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-07-17 12:03 - 2020-06-30 04:58 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-07-14 18:04 - 2020-07-14 18:06 - 000000000 ____D C:\Program Files (x86)\NETGEAR
2020-07-14 16:11 - 2020-07-14 16:11 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_bcmwlhigh63a_01011.Wdf
2020-07-14 16:10 - 2014-04-10 03:49 - 002463920 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\BCMWLHIGH63a.SYS
2020-07-14 16:10 - 2014-04-10 02:35 - 004395008 _____ (Broadcom Corporation) C:\WINDOWS\system32\bcmihvsrv64.dll
2020-07-14 16:10 - 2014-04-10 02:35 - 003659264 _____ (Broadcom Corporation) C:\WINDOWS\system32\bcmihvui64.dll
2020-07-14 15:24 - 2020-07-14 15:24 - 000000000 ____D C:\Users\Public\Documents\Downloaded Installers
2020-07-12 19:07 - 2020-07-12 19:07 - 000000000 ____D C:\Users\XXXX\AppData\LocalLow\Square Enix
2020-07-09 01:51 - 2020-07-09 01:51 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\ACAMPREF
2020-07-09 01:50 - 2020-07-09 01:51 - 000000000 ____D C:\Users\XXXX\Documents\Myriad Documents
2020-07-09 01:50 - 2020-07-09 01:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFtoMusic
2020-07-09 01:27 - 2020-07-09 01:27 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\capella-software
2020-07-09 01:26 - 2020-07-09 01:26 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\capella-software
2020-07-09 00:24 - 2020-07-09 00:24 - 000000000 ____D C:\Users\XXXX\AppData\Local\cache
2020-07-09 00:08 - 2020-07-16 16:27 - 000000000 ____D C:\Users\XXXX\AppData\Local\AnthemScore
2020-07-09 00:08 - 2020-07-09 00:08 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnthemScore
2020-06-30 22:00 - 2020-06-30 22:00 - 000001426 _____ C:\WINDOWS\system32\default_error_stack-000002-000000.txt
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-07-30 23:08 - 2017-03-25 23:22 - 000000000 ____D C:\FRST
2020-07-30 23:07 - 2020-03-16 10:57 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\Slack
2020-07-30 23:07 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-07-30 22:53 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-07-30 22:43 - 2016-05-17 22:43 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\discord
2020-07-30 22:39 - 2020-06-12 23:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-07-30 22:26 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-30 22:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-07-30 21:22 - 2020-06-13 00:19 - 000003842 _____ C:\WINDOWS\system32\Tasks\G2MUploadTask-S-1-5-21-2601677052-3802215475-160921258-1000
2020-07-30 21:22 - 2020-06-13 00:19 - 000003746 _____ C:\WINDOWS\system32\Tasks\G2MUpdateTask-S-1-5-21-2601677052-3802215475-160921258-1000
2020-07-30 21:22 - 2020-03-26 12:24 - 000000676 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2601677052-3802215475-160921258-1000.job
2020-07-30 21:22 - 2020-03-26 12:24 - 000000580 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2601677052-3802215475-160921258-1000.job
2020-07-30 21:22 - 2020-03-26 12:24 - 000000000 ____D C:\Users\XXXX\AppData\Local\GoToMeeting
2020-07-30 21:07 - 2016-12-01 00:55 - 000000000 ____D C:\Users\XXXX\AppData\LocalLow\Mozilla
2020-07-30 21:05 - 2019-10-03 22:03 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-07-30 21:02 - 2015-11-10 00:00 - 000000000 ____D C:\ProgramData\NVIDIA
2020-07-30 21:00 - 2015-03-28 17:13 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-30 20:59 - 2015-09-03 15:50 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\WTablet
2020-07-29 21:56 - 2015-09-30 17:18 - 000000000 ____D C:\Users\XXXX\AppData\Local\Spotify
2020-07-29 21:46 - 2015-09-30 17:18 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\Spotify
2020-07-29 21:28 - 2020-06-16 01:25 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-07-29 20:10 - 2016-10-26 05:44 - 000000000 ____D C:\Users\XXXX\AppData\Local\Battle.net
2020-07-28 21:09 - 2020-01-24 10:29 - 000001359 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2020.lnk
2020-07-28 21:09 - 2014-02-28 21:54 - 000000000 ____D C:\Program Files\Common Files\Adobe
2020-07-28 21:04 - 2018-07-05 09:21 - 000001364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2020-07-28 21:04 - 2014-02-28 21:55 - 000000000 ____D C:\Program Files\Adobe
2020-07-28 21:04 - 2014-02-25 16:31 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-07-25 20:58 - 2018-08-14 17:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-07-25 00:56 - 2014-09-25 23:35 - 000000000 ____D C:\Users\XXXX\AppData\Local\Last.fm
2020-07-24 17:50 - 2014-03-29 01:04 - 000000000 ____D C:\Users\XXXX\AppData\Local\CrashDumps
2020-07-24 17:09 - 2014-03-01 18:43 - 000001456 _____ C:\Users\XXXX\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2020-07-24 10:51 - 2020-06-12 23:49 - 000002429 _____ C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-07-24 10:51 - 2016-08-18 01:17 - 000000000 ___RD C:\Users\XXXX\OneDrive
2020-07-22 14:15 - 2015-10-01 23:14 - 000000000 ____D C:\Users\XXXX\Documents\Adobe
2020-07-22 11:17 - 2020-01-24 10:56 - 000000846 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2020.lnk
2020-07-22 11:12 - 2020-02-23 22:44 - 000000806 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition 2020.lnk
2020-07-22 11:08 - 2020-02-23 22:50 - 000000778 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Animate 2020.lnk
2020-07-22 11:05 - 2014-02-25 16:31 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\Adobe
2020-07-22 11:01 - 2020-01-24 10:50 - 000000770 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge 2020.lnk
2020-07-22 10:55 - 2020-04-14 20:43 - 000000950 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects 2020.lnk
2020-07-22 10:55 - 2018-09-11 20:05 - 000000000 ____D C:\Users\Public\Documents\Adobe
2020-07-22 10:49 - 2020-01-24 10:47 - 000000838 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2020.lnk
2020-07-22 10:42 - 2020-06-16 10:42 - 000000796 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2020-07-21 16:43 - 2019-12-24 22:27 - 000000000 ____D C:\Users\XXXX\Documents\The Witcher 3
2020-07-21 10:33 - 2014-03-17 00:28 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-07-21 10:31 - 2014-02-26 01:36 - 000000000 ____D C:\Users\XXXX\AppData\Local\NVIDIA
2020-07-20 20:27 - 2020-06-13 00:15 - 002996450 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-20 20:27 - 2020-06-13 00:11 - 000478034 _____ C:\WINDOWS\system32\perfh011.dat
2020-07-20 20:27 - 2020-06-13 00:11 - 000132912 _____ C:\WINDOWS\system32\perfc011.dat
2020-07-20 20:27 - 2020-06-13 00:09 - 000417074 _____ C:\WINDOWS\system32\prfh0804.dat
2020-07-20 20:27 - 2020-06-13 00:09 - 000132782 _____ C:\WINDOWS\system32\prfc0804.dat
2020-07-20 20:27 - 2019-12-07 16:51 - 000785726 _____ C:\WINDOWS\system32\perfh007.dat
2020-07-20 20:27 - 2019-12-07 16:51 - 000167840 _____ C:\WINDOWS\system32\perfc007.dat
2020-07-20 20:23 - 2020-06-13 00:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-07-20 20:23 - 2020-06-12 23:45 - 008607864 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-20 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-07-20 20:23 - 2014-02-25 16:39 - 000034752 _____ C:\WINDOWS\system32\Drivers\WPRO_41_2001.sys
2020-07-20 20:22 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-07-20 20:22 - 2014-02-25 16:24 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-07-20 20:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-07-20 20:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-07-20 20:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-07-20 20:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-07-20 20:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-07-20 20:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-07-20 20:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-07-20 20:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-07-20 20:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-07-20 20:21 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-20 19:56 - 2020-06-13 00:19 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-20 19:56 - 2020-06-13 00:19 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-20 19:56 - 2020-06-13 00:19 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-20 19:56 - 2020-06-13 00:19 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-20 19:56 - 2020-06-13 00:19 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-20 19:56 - 2020-06-13 00:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-20 19:56 - 2020-06-13 00:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-20 19:56 - 2020-06-13 00:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-20 19:56 - 2020-06-13 00:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-20 19:56 - 2020-06-13 00:19 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-20 19:56 - 2014-02-26 00:13 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-07-20 19:56 - 2014-02-26 00:13 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-07-20 19:56 - 2014-02-26 00:11 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-07-20 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-07-19 01:17 - 2019-11-02 22:02 - 000000000 ____D C:\Users\XXXX\AppData\Local\D3DSCache
2020-07-19 00:26 - 2015-06-15 03:59 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-07-17 21:57 - 2018-08-14 15:28 - 000000000 ____D C:\Users\XXXX\AppData\Local\Packages
2020-07-17 12:10 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-07-16 19:01 - 2014-03-19 00:21 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\Audacity
2020-07-14 18:14 - 2014-02-26 03:00 - 120636720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-07-14 00:00 - 2020-03-16 10:57 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc
2020-07-14 00:00 - 2020-03-16 10:57 - 000000000 ____D C:\Users\XXXX\AppData\Local\slack
2020-07-14 00:00 - 2016-05-17 22:43 - 000000000 ____D C:\Users\XXXX\AppData\Local\SquirrelTemp
2020-07-11 03:39 - 2017-03-29 19:50 - 000000000 ____D C:\Users\XXXX\AppData\Local\ElevatedDiagnostics
2020-07-10 14:02 - 2020-04-24 07:53 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\Signal
2020-07-10 13:07 - 2020-06-13 00:19 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-07-10 13:07 - 2018-03-21 21:49 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-07-09 10:30 - 2018-05-08 23:07 - 000001712 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2020-07-08 23:48 - 2017-11-12 23:14 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\Processing
2020-07-08 11:02 - 2020-06-16 01:25 - 000003698 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-08 11:02 - 2020-06-16 01:25 - 000003574 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-08 05:45 - 2020-03-23 23:25 - 001682368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-07-08 05:45 - 2020-03-23 23:25 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-07-07 18:28 - 2020-03-23 23:25 - 002367720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-07-07 18:27 - 2020-03-23 23:25 - 005399808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-07-06 01:26 - 2020-03-23 23:25 - 000058532 _____ C:\WINDOWS\system32\nvinfo.pb
2020-07-05 21:43 - 2014-03-20 00:09 - 000000000 ____D C:\Users\XXXX\AppData\Roaming\FileZilla
2020-07-05 21:12 - 2018-07-28 00:20 - 000991032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-07-05 21:12 - 2018-07-28 00:20 - 000084456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-07-05 21:12 - 2015-11-21 00:20 - 001760232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-07-05 21:12 - 2015-11-10 00:00 - 005492712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-07-05 21:12 - 2015-11-10 00:00 - 002633528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-07-05 21:12 - 2015-11-10 00:00 - 000195560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-07-05 21:12 - 2015-11-10 00:00 - 000121144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-07-03 18:12 - 2015-11-10 00:00 - 009216447 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-07-02 01:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2015-11-05 22:35 - 2016-12-30 22:24 - 000000271 _____ () C:\ProgramData\DP0004.dat
2014-09-22 21:06 - 2016-01-02 01:53 - 000000132 _____ () C:\Users\XXXX\AppData\Roaming\Adobe GIF-Format CC - Voreinstellungen
2014-08-06 12:44 - 2015-02-03 01:43 - 000000132 _____ () C:\Users\XXXX\AppData\Roaming\Adobe PNG-Format CC - Voreinstellungen
2016-11-10 02:14 - 2019-10-17 18:49 - 000000033 _____ () C:\Users\XXXX\AppData\Roaming\AdobeWLCMCache.dat
2018-06-21 18:05 - 2018-06-21 18:05 - 000001181 _____ () C:\Users\XXXX\AppData\Roaming\trace_FilterInstaller.1.txt
2018-06-21 18:05 - 2020-06-20 22:43 - 000000905 _____ () C:\Users\XXXX\AppData\Roaming\trace_FilterInstaller.txt
2018-06-21 18:05 - 2020-06-20 22:43 - 000000000 _____ () C:\Users\XXXX\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2016-12-27 19:50 - 2016-12-27 19:51 - 045331960 _____ (Tencent Inc.) C:\Users\XXXX\AppData\Roaming\TXQBINSTX2.EXE
2015-09-10 18:47 - 2015-09-10 18:47 - 000000005 _____ () C:\Users\XXXX\AppData\Roaming\version.ini
2019-03-08 02:48 - 2019-03-08 02:48 - 000000046 _____ () C:\Users\XXXX\AppData\Roaming\WB.CFG
2014-03-01 18:43 - 2020-07-24 17:09 - 000001456 _____ () C:\Users\XXXX\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2017-02-01 20:11 - 2018-08-13 00:35 - 000001456 _____ () C:\Users\XXXX\AppData\Local\Adobe Save for Web 13.0 Prefs
2018-09-28 11:41 - 2018-09-28 11:41 - 000000000 _____ () C:\Users\XXXX\AppData\Local\oobelibMkey.log
2014-02-26 21:22 - 2015-08-19 03:05 - 000007605 _____ () C:\Users\XXXX\AppData\Local\resmon.resmoncfg
2014-02-25 16:30 - 2014-02-25 16:30 - 000000003 _____ () C:\Users\XXXX\AppData\Local\user_data.ini
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 29-07-2020
durchgeführt von XXXX(30-07-2020 23:09:34)
Gestartet von C:\Users\XXXX\Desktop
Windows 10 Pro Version 2004 19041.388 (X64) (2020-06-12 22:19:19)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2601677052-3802215475-160921258-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2601677052-3802215475-160921258-503 - Limited - Disabled)
Gast (S-1-5-21-2601677052-3802215475-160921258-501 - Limited - Disabled) => C:\Users\Gast
HomeGroupUser$ (S-1-5-21-2601677052-3802215475-160921258-1002 - Limited - Enabled)
Karl (S-1-5-21-2601677052-3802215475-160921258-1004 - Limited - Enabled) => C:\Users\Karl
XXXX(S-1-5-21-2601677052-3802215475-160921258-1000 - Administrator - Enabled) => C:\Users\XXXX
WDAGUtilityAccount (S-1-5-21-2601677052-3802215475-160921258-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
ÃÀͼ¿´¿´ 2.2.7 (HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\ÃÀͼ¿´¿´) (Version: 2.2.7 - Meitu, Inc.)
Ableton Live 10 Suite (HKLM\...\{3FFC20F6-7961-4365-8ADF-F2097EAF0F25}) (Version: 10.0.0.0 - Ableton)
Acrobat.com (HKLM-x32\...\{77DCDCE3-2DED-62F3-8154-05E745472D07}) (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Adobe After Effects 2020 (HKLM-x32\...\AEFT_17_1_2) (Version: 17.1.2 - Adobe Inc.)
Adobe Animate 2020 (HKLM-x32\...\FLPR_20_5_1) (Version: 20.5.1 - Adobe Inc.)
Adobe Audition 2020 (HKLM-x32\...\AUDT_13_0_8) (Version: 13.0.8 - Adobe Inc.)
Adobe Bridge 2020 (HKLM-x32\...\KBRG_10_1_1) (Version: 10.1.1 - Adobe Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.2.1.441 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.3.181.14 - Adobe Systems Incorporated)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_2_2) (Version: 24.2.2 - Adobe Inc.)
Adobe InDesign 2020 (HKLM-x32\...\IDSN_15_1_1) (Version: 15.1.1 - Adobe Inc.)
Adobe Lightroom (HKLM-x32\...\LRCC_3_3) (Version: 3.3 - Adobe Inc.)
Adobe Media Encoder 2020 (HKLM-x32\...\AME_14_3_1) (Version: 14.3.1 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2_1) (Version: 21.2.1.265 - Adobe Inc.)
Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_3_1) (Version: 14.3.1 - Adobe Inc.)
Adobe® Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 3.4.2 - Adobe Systems, Incorporated)
Amazon Cloud Player (HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\Amazon Amazon Cloud Player) (Version: 2.3.0.422 - Amazon Services LLC)
AnthemScore (HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\{6e92a9cd-1999-4b0a-9c52-effec6ff6f74}) (Version: 1.0.3 - Lunaverus)
Apple Application Support (32-Bit) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
ASRock App Charger v1.0.5 (HKLM\...\ASRock App Charger_is1) (Version: - ASRock Inc.)
ASRock SmartConnect v1.0.6 (HKLM\...\ASRock SmartConnect_is1) (Version: - ASRock Inc.)
ASRock XFast RAM v2.0.28 (HKLM\...\ASRock XFast RAM_is1) (Version: - ASRock Inc.)
A-Tuning v1.0.17 (HKLM-x32\...\A-Tuning_is1) (Version: 1.0.17 - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BingProvidedSearch (HKLM-x32\...\{C7412F81-97C1-FE01-2641-8E81F6C15D01}) (Version: - )
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
calibre (HKLM-x32\...\{ED468F84-6B55-4FFD-A0C2-3C2064696A88}) (Version: 3.40.1 - Kovid Goyal)
capella scan&play (HKLM-x32\...\{0D076770-A051-4252-9646-F156B42D5EF8}) (Version: 8.0.25 - capella-software AG)
CodeMeter Runtime Kit v7.00a (HKLM\...\{83CEE959-2044-4F9F-9983-F942594D56D0}) (Version: 7.00.3925.501 - WIBU-SYSTEMS AG)
cv act sc/interface - Admin Edition (64-Bit) (HKLM\...\{05A84E0B-67C4-4ACA-8CAD-F62673D4C194}) (Version: 6.0.15 - cv cryptovision GmbH)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Discord (HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\Discord) (Version: 0.0.306 - Discord Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FileZilla Client 3.48.1 (HKLM-x32\...\FileZilla Client) (Version: 3.48.1 - Tim Kosse)
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GIZMO (HKLM-x32\...\{D0529F5A-C45C-40C0-8457-6A5AF24ABC6E}) (Version: 3.21.4000 - ants Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.105 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GoTo Opener (HKLM-x32\...\{C0F33C38-345C-4C02-B161-11389350C2A5}) (Version: 1.0.533 - LogMeIn, Inc.)
GoToMeeting 10.12.0.18425 (HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\GoToMeeting) (Version: 10.12.0.18425 - LogMeIn, Inc.)
inSSIDer Home (HKLM-x32\...\{9E54E4AE-B67A-4925-8E92-0E1F9817FD73}) (Version: 3.1.2.1 - MetaGeek, LLC)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Computing Improvement Program (HKLM\...\{D98C2DF9-C731-4322-A5F0-D897300216EE}) (Version: 2.4.05718 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) Network Connections 18.2.63.0 (HKLM\...\PROSetDX) (Version: 18.2.63.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.5.0.1066 - Intel Corporation)
Intel(R) Small Business Advantage (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 2.0.30.6644 - Intel(R) Corporation)
Intel(R) Smart Connect Technology 4.1 x64 (HKLM\...\{1EF24D7D-7B14-4EBA-A686-9E91C9C6763D}) (Version: 4.1.40.2143 - Intel)
Intel(R) Update Manager (HKLM-x32\...\{608E1B9B-A2E8-4A1F-8BAB-874EB0DD25E3}) (Version: 1.0.0.36888 - Intel Corporation) Hidden
Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.0.0.100 - Intel Corporation)
Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Kinect for Windows Drivers v2.0_1409 (DAILY) (HKLM\...\{7C9F054E-F742-4DAD-B7E0-9A280F1F0ACB}) (Version: 2.0.1410.19000 - Microsoft Corporation) Hidden
Kinect for Windows Runtime v2.0_1409 (HKLM-x32\...\{f10b50cf-8d87-45c6-bae1-6a29bc3f9280}) (Version: 2.0.1410.19000 - Microsoft Corporation)
Kinect for Windows Runtime v2.2_1905 (HKLM\...\{4A7A9C23-7F44-41D2-9574-E6A6AAD4296B}) (Version: 2.2.1905.16000 - Microsoft Corporation)
Kinect for Windows SDK v2.0 (HKLM\...\{77FBF502-4136-4BC8-B754-6A01C02598C9}) (Version: 2.0.1410.19000 - Microsoft Corporation) Hidden
Kinect for Windows SDK v2.0_1409 (HKLM-x32\...\{2f7f3dc4-de9a-4605-821f-b686f26392d8}) (Version: 2.0.1410.19000 - Microsoft Corporation)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Last.fm Scrobbler 2.1.37 (HKLM-x32\...\LastFM_is1) (Version: - Last.fm)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Lioncast LM30 Gaming Mouse Version 1.1 (HKLM-x32\...\{BF8BC0AC-979B-4085-8F94-7933AF19CBD2}_is1) (Version: 1.1 - LIONCAST)
Logitech Capture (HKLM\...\Capture) (Version: 1.0.553 - Logitech)
Maxon Cinema 4D 22 (HKLM\...\Maxon Cinema 4D S22) (Version: S22 - Maxon)
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.13001.20384 - Microsoft Corporation)
Microsoft 365 Apps for enterprise - ja-jp (HKLM\...\O365ProPlusRetail - ja-jp) (Version: 16.0.13001.20384 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.48 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\OneDriveSetup.exe) (Version: 20.114.0607.0002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{887868A2-D6DE-3255-AA92-AA0B5A59B874}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{3c3aafc8-d898-43ec-998f-965ffdae065a}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{e6e75766-da0f-4ba2-9788-6ea593ce702d}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2017 (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.12.111.1002 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 78.0.2 (x64 de) (HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\Mozilla Firefox 78.0.2 (x64 de)) (Version: 78.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version: - NCSOFT)
NETGEAR A6200 Genie (HKLM-x32\...\{638CBDD4-5014-44D1-930A-1E5AC6083542}) (Version: 1.0.0.0 - NETGEAR)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Grafiktreiber 451.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.67 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.34 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13001.20144 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13001.20144 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13001.20266 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.13001.20144 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0411-0000-0000000FF1CE}) (Version: 16.0.13001.20384 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.56.33908 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwatch Test (HKLM-x32\...\Overwatch Test) (Version: - Blizzard Entertainment)
PatchCleaner (HKLM-x32\...\{727DA176-50BB-452C-8DB5-96EE0A573ED4}) (Version: 1.4.20 - HomeDev)
PDFtoMusic (HKLM\...\PDFtoMusic) (Version: 1.7.1d - Myriad SARL)
QQ游戏大厅微端 (HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\QQ游戏大厅微端) (Version: 1.2.6.2 - Tencent)
QQ遊戲 (HKLM-x32\...\QQ遊戲) (Version: 5.11.48586.0 - 騰訊公司)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6865 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
RUBICon (HKLM-x32\...\{438134D3-0BD4-4C52-8575-5B2B63AD01C2}) (Version: 2.0.25 - RUB)
Signal 1.33.4 (HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 1.33.4 - Open Whisper Systems)
simplewall (HKLM\...\simplewall) (Version: 3.1.2 - Henry++)
Slack (HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\slack) (Version: 4.7.0 - Slack Technologies Inc.)
Spotify (HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\Spotify) (Version: 1.1.38.558.g4b100958 - Spotify AB)
Stifttablett (HKLM-x32\...\Pen Tablet Driver) (Version: - Wacom Technology Corp.)
Switch Audio-Converter (HKLM-x32\...\Switch) (Version: 6.06 - NCH Software)
Tone Generator Tongenerator-Software (HKLM-x32\...\ToneGen) (Version: 3.05 - NCH Software)
TouchChip USB Driver 2.20 (HKLM\...\{1EE6993C-5BBD-4AD8-B98B-EF4573DED395}) (Version: 2.20.0.0196 - AuthenTec Inc.) Hidden
TouchDesigner 2020.23680 (HKLM\...\TouchDesigner.2020.23680_is1) (Version: 2020.23680 - Derivative Inc.)
Tunatic (HKLM-x32\...\Tunatic) (Version: - )
TwitchAlerts (HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\fb3f6ca9b67f53a3) (Version: 1.0.0.8 - TwitchAlerts)
UE4 Prerequisites (x64) (HKLM-x32\...\{9514471f-b41e-41f7-af03-7da1d05b279e}) (Version: 1.0.8.0 - Epic Games, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
VC_CRT_x64 (HKLM\...\{54F2237F-018C-483B-8884-9FC0D88840C3}) (Version: 1.02.0000 - Intel Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
vs_filehandler_amd64 (HKLM-x32\...\{DDEF2BD0-F728-4D04-A085-B5ACC9ADC311}) (Version: 15.0.26711 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{2512A3CE-E1E4-46D5-8B40-28DA3AE2261E}) (Version: 15.0.26711 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{384F31FB-B99D-48A7-9D72-E1FEBEC2201A}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{66555B06-A474-4F98-A9D4-D753E5EBABE8}) (Version: 15.0.26906 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{0D3A6730-43CE-4AF6-BDF7-4D0660296C60}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
WavePad Audio-Editor (HKLM-x32\...\WavePad) (Version: 8.08 - NCH Software)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
XFast LAN v6.61 (HKLM\...\XFast LAN) (Version: 6.61 - cFos Software GmbH, Bonn)
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.31 - ASRock Inc.)
XSplit Broadcaster (HKLM-x32\...\{96BC4ADF-C63F-4076-919D-259EA1D3C531}) (Version: 2.9.1701.1636 - SplitmediaLabs)
Zoom (HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
美图秀秀 4.0.1 (HKLM-x32\...\美图秀秀) (Version: - 美图网)
Packages:
=========
3D Scan -> C:\Program Files\WindowsApps\Microsoft.3DScan_2.0.47.0_x64__8wekyb3d8bbwe [2020-06-04] (Microsoft Corporation)
Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2018-10-18] (Adobe Systems Incorporated)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-07-10] (Adobe Systems Incorporated)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-05-10] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.7162.0_x64__8wekyb3d8bbwe [2020-07-22] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_20.10713.5345.0_x64__8wekyb3d8bbwe [2020-07-30] (Microsoft Corporation)
MPEG-2-Videoerweiterung -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation)
MSN Wetter -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
WinZip Universal -> C:\Program Files\WindowsApps\WinZipComputing.WinZipUniversal_1.5.13516.0_x64__3ykzqggjzj4z0 [2019-06-01] (WinZip Computing)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\ChromeHTML: -> <==== ACHTUNG
CustomCLSID: HKU\S-1-5-21-2601677052-3802215475-160921258-1000_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-2448D266A5DB} -> [Creative Cloud Files] => E:\Adobe Documents\Creative Cloud Files [2018-09-25 03:45]
CustomCLSID: HKU\S-1-5-21-2601677052-3802215475-160921258-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [!{6A86DAFA-242F-4E90-A4AD-D01E6B56E6EA}] -> {6A86DAFA-242F-4E90-A4AD-D01E6B56E6EA} => -> Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers: [QBOverlayIcon] -> {96959DE7-C855-42BD-8382-2AAABF2A8F52} => -> Keine Datei
ContextMenuHandlers1: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Keine Datei
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => E:\Adobe Documents\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2019-12-03] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Keine Datei
ContextMenuHandlers1: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> Keine Datei
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => -> Keine Datei
ContextMenuHandlers1: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Keine Datei
ContextMenuHandlers2: [1&1 Office-Drive] -> {9CA7CA19-4DC6-408f-8198-33DF449C9CE8} => -> Keine Datei
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ContextMenuHandlers3: [1&1 Office-Drive] -> {9CA7CA19-4DC6-408f-8198-33DF449C9CE8} => -> Keine Datei
ContextMenuHandlers4: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Keine Datei
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> Keine Datei
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Keine Datei
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-07-05] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => E:\Adobe Documents\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2019-12-03] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> Keine Datei
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => -> Keine Datei
ContextMenuHandlers6: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Keine Datei
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\XXXX\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\980b6e4d5257aa74\mobile browser emulator.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=lbofcampnkjmiomohpbaihdcbjhbfepf
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2011-01-20 20:14 - 2011-01-20 20:14 - 000871424 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\GIZMO2\js32.dll
2016-09-17 20:02 - 2011-01-27 00:53 - 000028160 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Lioncast LM30 Gaming Mouse\uiHook.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 000010240 _____ () [Datei ist nicht signiert] E:\Adobe Documents\Acrobat DC\Acrobat\locale\de_de\acrotray.deu
2019-12-03 00:29 - 2019-12-03 00:29 - 000021504 _____ (Adobe Systems Inc.) [Datei ist nicht signiert] E:\Adobe Documents\Acrobat DC\Acrobat\locale\de_de\Acrobat Elements\ContextMenuShim64.deu
2020-07-14 18:06 - 2013-04-03 10:58 - 000233472 _____ (Broadcom Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\NETGEAR\A6200\wps_api.dll
2013-03-22 09:38 - 2013-03-22 09:38 - 000286720 _____ (Intel Corporation) [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2013-03-22 09:38 - 2013-03-22 09:38 - 000531456 _____ (Intel Corporation) [Datei ist nicht signiert] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2020-06-12 23:53 - 2020-06-12 23:53 - 001093120 _____ (Microsoft Corporation) [Datei ist nicht signiert] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2020-06-12 23:53 - 2020-06-12 23:53 - 000065536 _____ (Microsoft Corporation) [Datei ist nicht signiert] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\MFC80DEU.DLL
2020-03-10 10:31 - 2020-03-10 10:31 - 001631744 _____ (Robert Simpson, et al.) [Datei ist nicht signiert] C:\Program Files\Intel\SUR\QUEENCREEK\x64\SQLite.Interop.dll
2020-03-10 10:31 - 2020-03-10 10:31 - 001918464 _____ (SQLite Development Team) [Datei ist nicht signiert] C:\Program Files\Intel\SUR\QUEENCREEK\sqlite3.DLL
2020-03-10 10:31 - 2020-03-10 10:31 - 001918464 _____ (SQLite Development Team) [Datei ist nicht signiert] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
2020-02-19 07:00 - 2020-02-19 07:00 - 000218624 _____ (WIBU-SYSTEMS AG) [Datei ist nicht signiert] C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.lDe
2020-02-19 07:00 - 2020-02-19 07:00 - 000050176 _____ (WIBU-SYSTEMS AG) [Datei ist nicht signiert] C:\WINDOWS\SYSTEM32\WIBUCM64.lDe
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Public\AppData:CSM [474]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ==========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\sharepoint.com -> hxxps://rubde-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2601677052-3802215475-160921258-1000\...\sony.com -> sony.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2015-03-26 02:26 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64\compiler;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\system32\wbem;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Intel\iCLS Client;C:\Program Files\Intel\iCLS Client;C:\Windows\System32\WindowsPowerShell\v1.0;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;E:\Program Files (x86)\Smart Projects\IsoBuster;E:\Program Files\OpenVPN\bin;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Calibre2\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\ffmpeg\win64-static\bin\;C:\Program Files (x86)\QuickTime\QTSystem\
HKU\S-1-5-21-2601677052-3802215475-160921258-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\XXXX\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\Download (3).jpg
DNS Servers: 1.1.1.1 - 208.67.220.220
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Keine Datei)
ist aktiviert.
Network Binding:
=============
WLAN: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
LAN-Verbindung: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Amazon Cloud Player => "C:\Users\XXXX\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe"
MSCONFIG\startupreg: EADM => "C:\Games\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: GIZMO2 => "C:\Program Files (x86)\GIZMO2\GIZMO.exe" -BootProcess
MSCONFIG\startupreg: LWS => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
MSCONFIG\startupreg: XFast LAN => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe
MSCONFIG\startupreg: XFastUSB => "C:\Program Files (x86)\XFastUSB\XFastUsb.exe"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{51702D13-2B5B-4180-94FF-F7B36E59CB84}E:\program files (x86)\splitmedialabs\xsplit broadcaster\xsplit.core.exe] => (Allow) E:\program files (x86)\splitmedialabs\xsplit broadcaster\xsplit.core.exe (SplitmediaLabs Limited -> SplitMediaLabs)
FirewallRules: [TCP Query User{5DC0B780-3A18-44B2-BAEF-71D0ECF886C0}E:\program files (x86)\splitmedialabs\xsplit broadcaster\xsplit.core.exe] => (Allow) E:\program files (x86)\splitmedialabs\xsplit broadcaster\xsplit.core.exe (SplitmediaLabs Limited -> SplitMediaLabs)
FirewallRules: [{FD9CF417-49C2-4FB5-881F-DB8F315834AF}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{473DA330-2E7E-4D34-BBE0-380A324B1D10}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{D5CFFF98-B09B-454D-951F-61199778E53B}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{9B626757-DF1F-4B28-AB46-4C2BD3DCD567}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [UDP Query User{99236ACA-3A3D-4809-9164-65B0E0A99E18}C:\program files\derivative\touchdesigner\bin\touchdesigner.exe] => (Allow) C:\program files\derivative\touchdesigner\bin\touchdesigner.exe (Derivative) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{3044B070-A457-4EAD-8436-A45698113262}C:\program files\derivative\touchdesigner\bin\touchdesigner.exe] => (Allow) C:\program files\derivative\touchdesigner\bin\touchdesigner.exe (Derivative) [Datei ist nicht signiert]
FirewallRules: [{9B1308D7-9133-4C91-82BD-9B5F1D182095}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
FirewallRules: [UDP Query User{6DDC5B9D-FA2D-4370-A438-FFC1E8C70FB0}E:\games\steam\steamapps\common\kartrider drift closed beta\kartrider\binaries\win64\kartrider-win64-shipping.exe] => (Allow) E:\games\steam\steamapps\common\kartrider drift closed beta\kartrider\binaries\win64\kartrider-win64-shipping.exe (NEXON Korea Corporation. -> NEXON)
FirewallRules: [TCP Query User{34BCEF30-85F4-43A4-BD8E-7FCCED8C42F9}E:\games\steam\steamapps\common\kartrider drift closed beta\kartrider\binaries\win64\kartrider-win64-shipping.exe] => (Allow) E:\games\steam\steamapps\common\kartrider drift closed beta\kartrider\binaries\win64\kartrider-win64-shipping.exe (NEXON Korea Corporation. -> NEXON)
FirewallRules: [{64E50917-53F2-4646-B9BF-01B30A4D5F7B}] => (Allow) E:\Games\Steam\steamapps\common\KartRider Drift Closed Beta\KartRider.exe (NEXON Korea Corporation. -> Epic Games, Inc.)
FirewallRules: [{61DAD93A-E1C9-4725-9FCC-66EEBF8872DE}] => (Allow) E:\Games\Steam\steamapps\common\KartRider Drift Closed Beta\KartRider.exe (NEXON Korea Corporation. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{473987DA-2EF8-4146-82C6-18368CD06C61}E:\games\overwatch\_ptr_\overwatch.exe] => (Allow) E:\games\overwatch\_ptr_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{0EC7A774-FC09-44F1-B8AF-BDC7AB4DD0C3}E:\games\overwatch\_ptr_\overwatch.exe] => (Allow) E:\games\overwatch\_ptr_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{EBFF4442-D2F7-4221-B767-57E3427976DA}] => (Allow) E:\Games\Steam\steamapps\common\Disco Elysium\disco.exe () [Datei ist nicht signiert]
FirewallRules: [{F28DA15B-7B4E-4C1A-A0C6-F4C1A166DB73}] => (Allow) E:\Games\Steam\steamapps\common\Disco Elysium\disco.exe () [Datei ist nicht signiert]
FirewallRules: [{83D87BD3-CC19-4ABD-B73E-AFF426E24C00}] => (Allow) E:\Games\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Datei ist nicht signiert]
FirewallRules: [{A2E63513-D2F5-487E-B706-50233670105A}] => (Allow) E:\Games\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Datei ist nicht signiert]
FirewallRules: [{BADC5EE0-0D18-416B-9011-03C617856A5E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BFCAFA1A-93A4-4E32-BA03-584F8B913D32}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C42A363A-B564-4D7E-B9C1-9E7BD2F669F4}] => (Allow) E:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{921ECC56-2309-41C9-A446-99895E226534}] => (Allow) E:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{78211F23-6BA8-4F1F-AB38-08D5BF2B24E6}] => (Allow) E:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{83E6E0AE-BBAC-43E1-895E-45CA8432E1C2}] => (Allow) E:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [UDP Query User{3095BCE6-0E22-469D-813D-D4C9755A3970}C:\users\XXXX\appdata\roaming\tencent\qqgametempest\hall.50779\qqgame.exe] => (Allow) C:\users\XXXX\appdata\roaming\tencent\qqgametempest\hall.50779\qqgame.exe (Tencent Technology(Shenzhen) Company Limited -> 深圳市腾讯计算机系统有限公司)
FirewallRules: [TCP Query User{B2A34C99-DFF2-42AD-B122-7111782BC637}C:\users\XXXX\appdata\roaming\tencent\qqgametempest\hall.50779\qqgame.exe] => (Allow) C:\users\XXXX\appdata\roaming\tencent\qqgametempest\hall.50779\qqgame.exe (Tencent Technology(Shenzhen) Company Limited -> 深圳市腾讯计算机系统有限公司)
FirewallRules: [{85595BDC-2E91-4830-94BE-BAE70C2E39CD}] => (Allow) C:\Users\XXXX\AppData\Roaming\Tencent\QQGameTempest\Hall.48586\video\QQGameNet.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent Technology(Shenzhen) Company Limited)
FirewallRules: [{74EAEFEA-68ED-47BB-8EC6-BDECEB0BC043}] => (Allow) C:\Users\XXXX\AppData\Roaming\Tencent\QQGameTempest\Hall.48586\video\QQGameNet.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent Technology(Shenzhen) Company Limited)
FirewallRules: [{8E71F0D3-2EB0-4891-A39F-2465F64C999D}] => (Allow) C:\Users\XXXX\AppData\Roaming\Tencent\QQGameTempest\Hall.48586\CheckRepair.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{40BFBCF9-4D38-446D-BA83-B3A8523E6FC8}] => (Allow) C:\Users\XXXX\AppData\Roaming\Tencent\QQGameTempest\Hall.48586\CheckRepair.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{38CD2F3F-C567-422F-95FD-769965396B69}] => (Allow) C:\Users\XXXX\AppData\Roaming\Tencent\QQMicroGameBox\Launch.exe (Tencent Technology(Shenzhen) Company Limited -> 深圳市腾讯计算机系统有限公司)
FirewallRules: [{D4CADA86-D92F-48E8-892B-4654D16C9DF7}] => (Allow) C:\Users\XXXX\AppData\Roaming\Tencent\QQMicroGameBox\Launch.exe (Tencent Technology(Shenzhen) Company Limited -> 深圳市腾讯计算机系统有限公司)
FirewallRules: [{453B6717-9EEB-43B2-B613-F104E8C3D6C5}] => (Allow) C:\Users\XXXX\AppData\Roaming\Tencent\QQGameTempest\MiniGames\video\QQGameNet.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent Technology(Shenzhen) Company Limited)
FirewallRules: [{B3D065D6-0BF3-4ACE-B543-DDBAB9143B51}] => (Allow) C:\Users\XXXX\AppData\Roaming\Tencent\QQGameTempest\MiniGames\video\QQGameNet.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent Technology(Shenzhen) Company Limited)
FirewallRules: [{499A8191-3228-4F61-ABFF-6CEBD3D7FCE7}] => (Allow) C:\Users\XXXX\AppData\Roaming\Tencent\QQGameTempest\Hall.48586\QQGameUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> 深圳市腾讯计算机系统有限公司)
FirewallRules: [{766A3819-5FA9-4DFB-A0A6-C4D33A47EDB2}] => (Allow) C:\Users\XXXX\AppData\Roaming\Tencent\QQGameTempest\Hall.48586\QQGameUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> 深圳市腾讯计算机系统有限公司)
FirewallRules: [{6293F3FD-98D9-42D6-BFDE-203C0D993520}] => (Allow) C:\Users\XXXX\AppData\Roaming\Tencent\QQGameTempest\Hall.48586\QQGame.exe (Tencent Technology(Shenzhen) Company Limited -> 深圳市腾讯计算机系统有限公司)
FirewallRules: [{3EFD2202-F199-4092-9485-9930C380FFF8}] => (Allow) C:\Users\XXXX\AppData\Roaming\Tencent\QQGameTempest\Hall.48586\QQGame.exe (Tencent Technology(Shenzhen) Company Limited -> 深圳市腾讯计算机系统有限公司)
FirewallRules: [UDP Query User{DDBC35ED-DC83-456C-B247-064097FA1F13}E:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{80CABA7F-2898-4A1E-AB1D-9CBC081BBF13}E:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{FD5FD12D-9BDC-4268-8356-6FA2D9BAB609}E:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{847103B6-1436-4469-B197-A93F31373632}E:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{564DFA82-5561-45EF-BD0F-44746AF0E17C}E:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{33E8AAF3-0F9C-4A36-A918-2A2D8359EC50}E:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{0FBCF312-074F-494E-A13B-773DBC706995}] => (Allow) E:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{59329783-B730-466F-B803-1C6FF85006EA}] => (Allow) E:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{144B42AD-511A-493A-B681-CF4054148EB1}C:\users\XXXX\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\XXXX\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{8F4C12D6-2998-418C-B2A1-54CE412F6557}C:\users\XXXX\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\XXXX\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{CF8DD967-EFA6-40EC-AC0F-D0657C0839EB}E:\program files (x86)\winamp\winamp.exe] => (Allow) E:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{F4791B80-1C05-4008-BB3C-B20FCC67EB85}E:\program files (x86)\winamp\winamp.exe] => (Allow) E:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [UDP Query User{33A177C6-7465-4922-B0D5-38EFBEFAEFC4}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{D49F59A2-4DE7-4F15-A9A1-8F36A96E2E80}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{FD5E0F71-A9D5-463A-820C-37B24A859BD6}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{B7388B95-E761-4229-AFDD-FB2ED81ACB3C}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4CDE95BC-152A-41B0-A13B-F3A286B575F5}] => (Allow) E:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{8668B0E8-5834-4A2D-86CF-54757DF6F5AD}] => (Allow) E:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{F047CB03-9994-4BB4-9E9B-CDFD77577245}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{42D8C311-4D4C-44BA-ACEB-90FDE7750A79}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{69F07144-9AA5-47A3-8547-065707B636A9}C:\users\XXXX\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\XXXX\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{E6F5045B-558D-41D7-82AA-C7CD680D1148}C:\users\XXXX\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\XXXX\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{07BF1FA4-79F8-4C0C-80E1-77BB821C77C0}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe (Valve -> )
FirewallRules: [{A3B425A5-BFCB-4E7A-8BEF-AB4FD4FBBB2E}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe (Valve -> )
FirewallRules: [{F7CFEE9B-49F3-4AFD-B0FC-2669CA29ED52}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F12749B1-86B0-4DB9-B3AA-580201F9A977}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{59332D14-5769-4D27-B8D4-B710CCCE5EE5}E:\program files (x86)\winamp\winamp.exe] => (Allow) E:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [UDP Query User{A6FEBEF6-E1AB-4A79-87AD-8E287CFA7322}E:\program files (x86)\winamp\winamp.exe] => (Allow) E:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{C1484783-8A19-4D26-ABA7-79058DD8BA20}E:\games\overwatch\_retail_\overwatch.exe] => (Allow) E:\games\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{426CB1C5-7B06-4FDC-8502-BB160434E075}E:\games\overwatch\_retail_\overwatch.exe] => (Allow) E:\games\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{0B8590BC-1078-4D4C-B175-2779B5A9D60F}E:\games\overwatch\_retail_\overwatch.exe] => (Allow) E:\games\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{0F500EF1-B1F1-4CC6-BD10-F5DA48E8B45F}E:\games\overwatch\_retail_\overwatch.exe] => (Allow) E:\games\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{D4E93200-8739-4D8E-8595-21ED245CC171}C:\users\XXXX\appdata\roaming\tencent\qqgametempest\hall.50779\qqgame.exe] => (Allow) C:\users\XXXX\appdata\roaming\tencent\qqgametempest\hall.50779\qqgame.exe (Tencent Technology(Shenzhen) Company Limited -> 深圳市腾讯计算机系统有限公司)
FirewallRules: [UDP Query User{239988DF-6FB2-41C7-B121-476356DF1421}C:\users\XXXX\appdata\roaming\tencent\qqgametempest\hall.50779\qqgame.exe] => (Allow) C:\users\XXXX\appdata\roaming\tencent\qqgametempest\hall.50779\qqgame.exe (Tencent Technology(Shenzhen) Company Limited -> 深圳市腾讯计算机系统有限公司)
FirewallRules: [{AFFD60ED-0BC1-461F-BD10-F084E17D394C}] => (Allow) E:\Games\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment) [Datei ist nicht signiert]
FirewallRules: [{0B13BA2B-F394-4DF0-BAB7-8848EC5E3687}] => (Allow) E:\Games\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{C7355C1C-DB8C-457B-965F-99F9D41CAF9B}E:\foto im exp\new piksas\processing-3.5.4-windows64\processing-3.5.4\java\bin\java.exe] => (Block) E:\foto im exp\new piksas\processing-3.5.4-windows64\processing-3.5.4\java\bin\java.exe
FirewallRules: [UDP Query User{039B9353-33E1-48F2-9FAA-00AC1985DCAF}E:\foto im exp\new piksas\processing-3.5.4-windows64\processing-3.5.4\java\bin\java.exe] => (Block) E:\foto im exp\new piksas\processing-3.5.4-windows64\processing-3.5.4\java\bin\java.exe
FirewallRules: [{3B40421A-058B-429C-8E04-044E9426E665}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8B2B233B-989E-44A6-9F4E-A579B165BD74}] => (Allow) E:\Games\Steam\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe () [Datei ist nicht signiert]
FirewallRules: [{1864AB3A-CB69-4619-ADBB-B4E056D3AA3E}] => (Allow) E:\Games\Steam\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe () [Datei ist nicht signiert]
FirewallRules: [{8BB65F9D-27E3-4D1B-9F0E-AACEC090CD45}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F360E7EA-2F60-4730-A882-BDD345712FB3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B9FE4AEF-95DC-438B-A8A4-F1CBE80F3021}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1B60F24C-0F8B-4DB7-B65A-6B035D292780}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{06A413CC-5072-4299-99BE-30B123C458BD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D76C60A0-E7EB-41EE-BE80-9C54AA11C240}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B5CBD567-3D77-4760-AC02-BF8320C0830E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{71EE3B96-F3EC-4DD7-91B5-3A21BEA423DF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4580F9BD-10F8-496A-BD93-4BA033F7D1E1}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe (Valve -> )
FirewallRules: [{95FBFC21-5FFB-42BC-B086-C75C2C190F50}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe (Valve -> )
FirewallRules: [{7D3C86CB-7319-412F-AA85-E1EA00CA3180}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server
StandardProfile\AuthorizedApplications: [E:\Program Files (x86)\Meitu\KanKan\KanKan.exe] => Enabled:KanKan
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert (Total:117.62 GB) (Free:14.81 GB) (13%)
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (07/30/2020 10:57:37 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (07/30/2020 09:00:19 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Google\Chrome\Temp\scoped_dir2184_936875387\chrome.exe".
Die abhängige Assemblierung "84.0.4147.89,language="*",type="win32",version="84.0.4147.89"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (07/30/2020 09:00:19 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Google\Chrome\Temp\scoped_dir2184_936875387\chrome.exe".
Die abhängige Assemblierung "84.0.4147.89,language="*",type="win32",version="84.0.4147.89"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (07/30/2020 08:59:47 PM) (Source: TabletServicePen) (EventID: 0) (User: )
Description: Unhandled error opening USB device
Error: (07/30/2020 08:59:47 PM) (Source: TabletServicePen) (EventID: 0) (User: )
Description: Unhandled error opening USB device
Error: (07/30/2020 08:59:47 PM) (Source: TabletServicePen) (EventID: 0) (User: )
Description: Unhandled error opening USB device
Error: (07/30/2020 08:59:46 PM) (Source: TabletServicePen) (EventID: 0) (User: )
Description: Unhandled error opening USB device
Error: (07/30/2020 12:37:54 AM) (Source: TabletServicePen) (EventID: 0) (User: )
Description: Unhandled error opening USB device
Systemfehler:
=============
Error: (07/30/2020 08:59:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BCM42RLY" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/30/2020 08:59:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BCM42RLY" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/29/2020 08:42:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BCM42RLY" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/29/2020 08:42:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BCM42RLY" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/29/2020 08:41:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BCM42RLY" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/29/2020 08:41:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BCM42RLY" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/29/2020 10:20:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BCM42RLY" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/29/2020 10:20:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BCM42RLY" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Windows Defender:
===================================
Date: 2020-07-30 21:07:50.2090000Z
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {D190BDAF-F8CE-43AF-9308-4E7EEB413E66}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Vollständige Überprüfung
Benutzer: XXXX-PC\XXXX
Date: 2020-07-30 21:07:50.2030000Z
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/Alibox&threatid=229435&enterprise=0
Name: PUA:Win32/Alibox
ID: 229435
Schweregrad: Niedrig
Kategorie: Potenziell unerwünschte Software
Pfad: file:_E:\Games II\TOZ\Tales of Zestiria\????.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Benutzer
Benutzer: XXXX-PC\XXXX
Prozessname: Unknown
Sicherheitsversion: AV: 1.321.113.0, AS: 1.321.113.0, NIS: 1.321.113.0
Modulversion: AM: 1.1.17300.4, NIS: 1.1.17300.4
Date: 2020-07-30 21:07:50.1990000Z
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.A!ml&threatid=2147735504&enterprise=0
Name: Trojan:Win32/Wacatac.A!ml
ID: 2147735504
Schweregrad: Schwerwiegend
Kategorie: Trojaner
Pfad: containerfile:_E:\Games II\Submerge\rld-submerge.iso; file:_E:\Games II\Submerge\Crack\Engine\Binaries\ThirdParty\Steamworks\Steamv131\Win64\steam_api64.dll; file:_E:\Games II\Submerge\rld-submerge.iso->\Crack\Engine\Binaries\ThirdParty\Steamworks\Steamv131\Win64\steam_api64.dll; file:_E:\Games\Submerge\Crack\Engine\Binaries\ThirdParty\Steamworks\Steamv131\Win64\steam_api64.dll
Erkennungsursprung: Lokaler Computer
Erkennungstype: FastPath
Erkennungsquelle: Benutzer
Benutzer: XXXX-PC\XXXX
Prozessname: Unknown
Sicherheitsversion: AV: 1.321.113.0, AS: 1.321.113.0, NIS: 1.321.113.0
Modulversion: AM: 1.1.17300.4, NIS: 1.1.17300.4
Date: 2020-07-30 21:07:50.1900000Z
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/AskToolbar&threatid=227072&enterprise=0
Name: PUA:Win32/AskToolbar
ID: 227072
Schweregrad: Niedrig
Kategorie: Potenziell unerwünschte Software
Pfad: containerfile:_C:\Users\XXXX\AppData\LocalLow\Oracle\Java\jre1.8.0_71\java_sp.dll; file:_C:\Users\XXXX\AppData\LocalLow\Oracle\Java\jre1.8.0_71\java_sp.dll->[RSRCEmb]#1
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Benutzer
Benutzer: XXXX-PC\XXXX
Prozessname: Unknown
Sicherheitsversion: AV: 1.321.113.0, AS: 1.321.113.0, NIS: 1.321.113.0
Modulversion: AM: 1.1.17300.4, NIS: 1.1.17300.4
Date: 2020-07-30 21:07:50.1720000Z
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:JS/Firesheep&threatid=2147639709&enterprise=0
Name: HackTool:JS/Firesheep
ID: 2147639709
Schweregrad: Hoch
Kategorie: Tool
Pfad: file:_E:\Music F\Songs\read me\codebutler-firesheep-2edb5b8\xpi\modules\Firesheep.js
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Benutzer
Benutzer: XXXX-PC\XXXX
Prozessname: Unknown
Sicherheitsversion: AV: 1.321.113.0, AS: 1.321.113.0, NIS: 1.321.113.0
Modulversion: AM: 1.1.17300.4, NIS: 1.1.17300.4
CodeIntegrity:
===================================
Date: 2020-06-15 01:28:16.5830000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
Date: 2020-06-15 01:28:16.5600000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2020-06-15 01:28:16.5370000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
Date: 2020-06-15 01:28:16.4750000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
Date: 2020-06-15 01:28:16.4680000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2020-06-15 01:28:16.4590000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
Date: 2020-06-15 01:28:15.7000000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
Date: 2020-06-15 01:28:15.5990000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. P1.20 05/03/2013
Hauptplatine: ASRock B85M Pro4
Prozessor: Intel(R) Core(TM) i5-4430 CPU @ 3.00GHz
Prozentuale Nutzung des RAM: 48%
Installierter physikalischer RAM: 16301.31 MB
Verfügbarer physikalischer RAM: 8329.58 MB
Summe virtueller Speicher: 21724.28 MB
Verfügbarer virtueller Speicher: 10477.92 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:117.62 GB) (Free:14.81 GB) NTFS
Drive e: () (Fixed) (Total:931.51 GB) (Free:176.71 GB) NTFS
\\?\Volume{103f3743-9e1f-11e3-8432-806e6f6e6963}\ (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{29c690d5-0000-0000-0000-406e1d000000}\ () (Fixed) (Total:0.64 GB) (Free:0.08 GB) NTFS
\\?\Volume{29c690d5-0000-0000-0000-70971d000000}\ () (Fixed) (Total:0.87 GB) (Free:0.34 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 29C690AD)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 29C690D5)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=117.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=658 MB) - (Type=27)
Partition 4: (Not Active) - (Size=896 MB) - (Type=27)
==================== Ende von Addition.txt =======================
Geändert von monchou (30.07.2020 um 22:41 Uhr) |
|
30.07.2020, 23:03
| #3 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | PUA:WIN32/Creprote lässt sich nicht enfernenZitat:
__________________ |
|
30.07.2020, 23:22
| #4 |
| | PUA:WIN32/Creprote lässt sich nicht enfernen N'abend, cosinus! Danke für die Frage - beantworten kann ich das leider nicht. Wenn ich einen neuen Scan mache kommt das: https://i.imgur.com/qckyiPk.png Dachte dass nach den kürzlichen Befunden vielleicht irgendeine Aktion nötig ist. |
|
30.07.2020, 23:29
| #5 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUA:WIN32/Creprote lässt sich nicht enfernen Wenn du nicht zeigst was wo gefunden wurde, kann sich niemand dazu äußern.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
30.07.2020, 23:36
| #6 |
| | PUA:WIN32/Creprote lässt sich nicht enfernen Wie kann ich das denn zeigen? Es wird mir wie im verlinkten Screenshot angezeigt von Windows. im Windows Virus scan, dass er besagtes pua findet. Wenn Ich die empfohlene Handlung (entfernen) durchführte, ist es beim nächsten scan wieder da. |
|
30.07.2020, 23:50
| #7 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUA:WIN32/Creprote lässt sich nicht enfernen Wir müssen wissen was WO GENAU gefunden wurde.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
30.07.2020, 23:56
| #8 |
| | PUA:WIN32/Creprote lässt sich nicht enfernen Wenn ich obiges Fenster ausklappe im Windows-Sicherheitsfenster, steht: Code:
ATTFilter Aktuelle Bedrohungen
PUA:Win32/Creprote
Warnstufe: Niedrig
Datum:25.07.2020 00:39
Kategorie: Potenziell unerwünschte Software
Details: Das Verhalten dieses Programms ist potenziell unerwünscht.
Betroffene Elemente:
file: E:\ALBION\Sugoi\Neuer Ordner (2)\76798-UniversalThemePatcher_1.5\UniversalThemePatcher_20090409\UniversalThemePatcher-x64.exe
file: E:\ALBION\Sugoi\Neuer Ordner (2)\76798-UniversalThemePatcher_1.5\UniversalThemePatcher_20090409\UniversalThemePatcher-x86.exe
Es begegnet mir nirgendswo anders auf dem PC, als im Virus & Bedrohungsschutz Scan von Windows. |
|
31.07.2020, 00:11
| #9 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUA:WIN32/Creprote lässt sich nicht enfernen Laufwerk E ist bei dir was?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
31.07.2020, 00:14
| #10 | |
| | PUA:WIN32/Creprote lässt sich nicht enfernenZitat:
C hingegen ist eine SSD Festplatte, auf der ich hauptsächlich Windows habe und Programme, die "schneller" laufen sollen. |
|
31.07.2020, 00:16
| #11 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUA:WIN32/Creprote lässt sich nicht enfernen Dann hast du den Müll selbst zu veranworten: E:\ALBION\Sugoi\Neuer Ordner (2)\76798-UniversalThemePatcher_1.5\UniversalThemePatcher_20090409\UniversalThemePatcher-x64.exe Also lösch es. Mit deinem System ist noch alles ok. Aber pass auf!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
31.07.2020, 00:20
| #12 |
| | PUA:WIN32/Creprote lässt sich nicht enfernen Edit: habe es gerade versucht zu löschen, in dem Dateipfad existiert das aber nicht mehr. Aber gut zu wissen, dass mit dem System soweit noch alles ok ist. Danke fürs Durchschauen! Geändert von monchou (31.07.2020 um 00:28 Uhr) |
|
31.07.2020, 00:28
| #13 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUA:WIN32/Creprote lässt sich nicht enfernen Natülich wenn überhaupt kannst das nur du beantworten was das sein soll.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu PUA:WIN32/Creprote lässt sich nicht enfernen |
| altes, beste, besten, deinstallieren, durchgeführt, enfernen, entfernen, firefox, forum, hallo zusammen, installiert, internetverbindung, jahre, langsam, node.js, nvcontainer.exe, rechner, scan, steam, verbindung, verschiedene, viren, win, windows, windowsapps, woche, wochen, zusammen |
Linear-Darstellung
