| |
| |||||||
Log-Analyse und Auswertung: Gelbes "i"-Icon" mitten auf dem DesktopWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
07.12.2015, 17:44
| #1 |
 |  Gelbes "i"-Icon" mitten auf dem Desktop Hallo zusammen, habe folgendes Problem, schon bei Windows 8.1 hatte ich auf einmal mitten auf dem Desktop ein gelbes Icon mit einen "i", was sich aber nicht anklicken ließ (einfach nur ein Bild"). Auch wurden zum Teil die Fraben beim Desktop in ein Grüngelb verändert. Weiß jemand, wie sich das beseitigen lässt? Hatte schon Norton und Malwarebytes ohne Erfolg laufen lassen. Vielen Dank für die Hilfe schon jetzt einmal... Code:
ATTFilter FRST Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (AMD) C:\Windows\System32\atiesrxx.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Atheros Commnucations) C:\Windows\System32\AdminService.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanNetService.exe (Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.5.5.15\ns.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (pdfforge GmbH) C:\Program Files (x86)\PDF Architect 3\creator-ws.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (AMD) C:\Windows\System32\atieclxx.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.5.5.15\ns.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe () C:\Windows\SysWOW64\UMonit64.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanGUI.exe (EIZO Corporation) C:\Program Files (x86)\EIZO\ScreenManager Pro for LCD (DDCCI)\LcdctrlDdcci.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Dropbox, Inc.) C:\Users\Olli\AppData\Roaming\Dropbox\bin\Dropbox.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.5.5.15\conathst.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Wargaming.net) C:\Games\World_of_Tanks\WorldOfTanks.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [UMonit] => C:\WINDOWS\SysWOW64\UMonit64.exe [53832 2015-07-09] () HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-08-13] (Apple Inc.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-21] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\wlangui.exe [1904640 2009-03-20] (AVM Berlin) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-05-15] (Apple Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-2064884263-2734367825-3749686348-1001\...\Run: [Dropbox Update] => C:\Users\Olli\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-22] (Dropbox, Inc.) HKU\S-1-5-21-2064884263-2734367825-3749686348-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.) HKU\S-1-5-21-2064884263-2734367825-3749686348-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2015-04-26] (Apple Inc.) HKU\S-1-5-21-2064884263-2734367825-3749686348-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2015-04-26] (Apple Inc.) ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine64\22.5.5.15\buShell.dll [2015-11-05] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine64\22.5.5.15\buShell.dll [2015-11-05] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine64\22.5.5.15\buShell.dll [2015-11-05] (Symantec Corporation) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olli\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olli\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olli\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olli\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olli\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olli\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olli\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ScreenManager Pro for LCD (DDCCI) Ver.2.4.0.lnk [2014-01-19] ShortcutTarget: ScreenManager Pro for LCD (DDCCI) Ver.2.4.0.lnk -> C:\Windows\Installer\{DAB265AD-27B2-4651-B8D8-F4F3A8ECC705}\LcdctrlDdcci.exe1_A2457035AC9A449AAFF91D310EF3707A.exe (Macrovision Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WISO Mein Steuer-Sparbuch heute.lnk [2014-01-08] ShortcutTarget: WISO Mein Steuer-Sparbuch heute.lnk -> C:\Program Files (x86)\WISO\Steuersoftware 2014\mshaktuell.exe () Startup: C:\Users\Olli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-11-13] ShortcutTarget: Dropbox.lnk -> C:\Users\Olli\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Winsock: Catalog9-x64 01 C:\Windows\system32\LavasoftTcpService64.dll [422400 2015-07-23] (Lavasoft Limited) Winsock: Catalog9-x64 02 C:\Windows\system32\LavasoftTcpService64.dll [422400 2015-07-23] (Lavasoft Limited) Winsock: Catalog9-x64 03 C:\Windows\system32\LavasoftTcpService64.dll [422400 2015-07-23] (Lavasoft Limited) Winsock: Catalog9-x64 04 C:\Windows\system32\LavasoftTcpService64.dll [422400 2015-07-23] (Lavasoft Limited) Winsock: Catalog9-x64 05 C:\Windows\system32\LavasoftTcpService64.dll [422400 2015-07-23] (Lavasoft Limited) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{4829b226-f5aa-4e6e-8bf4-d07a8575fa1d}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{6A41BC24-9121-4FE3-8C72-32D18F496606}: [DhcpNameServer] 192.168.178.1 Internet Explorer: ================== HKU\S-1-5-21-2064884263-2734367825-3749686348-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ SearchScopes: HKLM-x32 -> DefaultScope Wert fehlt SearchScopes: HKU\S-1-5-21-2064884263-2734367825-3749686348-1001 -> DefaultScope {B21B4164-A234-4450-8F50-3D8D20B7B7D7} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-10-13] (Microsoft Corporation) BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine64\22.5.5.15\coIEPlg.dll [2015-11-05] (Symantec Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation) BHO-x32: PDF Architect 3 Helper -> {06E08260-0695-4EC1-A74B-1310D8899D93} -> C:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll [2015-04-24] (pdfforge GmbH) BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.5.5.15\coIEPlg.dll [2015-11-05] (Symantec Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-08-20] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-20] (Oracle Corporation) Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.5.5.15\coIEPlg.dll [2015-11-05] (Symantec Corporation) Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.5.5.15\coIEPlg.dll [2015-11-05] (Symantec Corporation) Toolbar: HKLM-x32 - PDF Architect 3 Toolbar - {2DFF3579-5AA7-45B9-9328-1D38EA230861} - C:\Program Files (x86)\PDF Architect 3\creator-ie-plugin.dll [2015-04-24] (pdfforge GmbH) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Olli\AppData\Roaming\Mozilla\Firefox\Profiles\i1rfvxwa.default FF NewTab: www.google.de FF DefaultSearchEngine: Google Default FF SelectedSearchEngine: Bing FF Homepage: about:home FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-11] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-28] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-28] (VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll [2014-04-15] (Adobe Systems, Inc.) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] () FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-20] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-20] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-11-15] (Microsoft Corporation) FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-04-10] (Nero AG) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.) FF Plugin-x32: PDF Architect 3 -> C:\Program Files (x86)\PDF Architect 3\np-previewer.dll [2015-04-24] (pdfforge GmbH) FF SearchPlugin: C:\Users\Olli\AppData\Roaming\Mozilla\Firefox\Profiles\i1rfvxwa.default\searchplugins\google-default.xml [2015-07-28] FF SearchPlugin: C:\Users\Olli\AppData\Roaming\Mozilla\Firefox\Profiles\i1rfvxwa.default\searchplugins\norton-safe-search.xml [2015-11-18] FF Extension: PDF Architect 3 Creator - C:\Program Files (x86)\PDF Architect 3\resources\pdfarchitect3firefoxextension [2015-08-11] [ist nicht signiert] FF Extension: NoScript - C:\Users\Olli\AppData\Roaming\Mozilla\Firefox\Profiles\i1rfvxwa.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-12-01] FF Extension: Kein Name - C:\Users\Olli\AppData\Roaming\Mozilla\Firefox\Profiles\i1rfvxwa.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2015-12-04] [ist nicht signiert] FF Extension: iCloud Bookmarks - C:\Users\Olli\AppData\Roaming\Mozilla\Firefox\Profiles\i1rfvxwa.default\Extensions\firefoxdav@icloud.com [2015-11-29] FF Extension: YouTube Unblocker - C:\Users\Olli\AppData\Roaming\Mozilla\Firefox\Profiles\i1rfvxwa.default\Extensions\youtubeunblocker@unblocker.yt [2015-12-03] FF Extension: BugMeNot Plugin - C:\Users\Olli\AppData\Roaming\Mozilla\Firefox\Profiles\i1rfvxwa.default\Extensions\{987311C6-B504-4aa2-90BF-60CC49808D42}.xpi [2015-05-29] FF Extension: Video DownloadHelper - C:\Users\Olli\AppData\Roaming\Mozilla\Firefox\Profiles\i1rfvxwa.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-10-31] FF Extension: Tab Plugin - C:\Users\Olli\AppData\Roaming\Mozilla\Firefox\Profiles\i1rfvxwa.default\Extensions\{d81af7c1-6441-496a-9c0a-13dd5539ce7e}.xpi [2015-08-26] [ist nicht signiert] FF Extension: Download Helper Free - C:\Users\Olli\AppData\Roaming\Mozilla\Firefox\Profiles\i1rfvxwa.default\Extensions\{ee9dcf2a-0c31-4de7-910d-0d5f77aabb47}.xpi [2015-12-06] [ist nicht signiert] FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.1.0.9\coFFAddon FF Extension: Norton Identity Safe - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.1.0.9\coFFAddon [2015-12-02] [ist nicht signiert] FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_3_conv@pdfarchitect.org] - C:\Program Files (x86)\PDF Architect 3\resources\pdfarchitect3firefoxextension FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.1.0.9\coFFAddon Chrome: ======= CHR Profile: C:\Users\Olli\AppData\Local\Google\Chrome\User Data\default CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.5.5.15\Exts\Chrome.crx [2015-11-28] CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.5.5.15\Exts\Chrome.crx [2015-11-28] CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.) R2 AtherosSvc; C:\Windows\system32\AdminService.exe [208384 2012-08-29] (Atheros Commnucations) [Datei ist nicht signiert] R2 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [368640 2009-03-20] (AVM Berlin) [Datei ist nicht signiert] R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2797752 2015-10-13] (Microsoft Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 NS; C:\Program Files (x86)\Norton Security\Engine\22.5.5.15\NS.exe [282016 2015-11-20] (Symantec Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1997168 2015-06-24] (Electronic Arts) S3 PDF Architect 3; C:\Program Files (x86)\PDF Architect 3\ws.exe [2244312 2015-04-24] (pdfforge GmbH) S3 PDF Architect 3 CrashHandler; C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe [901336 2015-04-24] (pdfforge GmbH) R2 PDF Architect 3 Creator; C:\Program Files (x86)\PDF Architect 3\creator-ws.exe [740568 2015-04-24] (pdfforge GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [102912 2015-07-15] (Advanced Micro Devices) S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2009-03-20] (AVM Berlin) R1 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.1.0.9\Definitions\BASHDefs\20151113.001\BHDrvx64.sys [1665608 2015-10-08] (Symantec Corporation) R1 ccSet_NS; C:\Windows\system32\drivers\NSx64\1605050.00F\ccSetx64.sys [173808 2015-07-11] (Symantec Corporation) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-11-18] (Symantec Corporation) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [157520 2015-11-18] (Symantec Corporation) R3 fwlanusbn; C:\Windows\system32\DRIVERS\fwlanusbn.sys [552704 2009-03-20] (AVM GmbH) R3 GeneStor; C:\Windows\system32\DRIVERS\GeneStor.sys [115704 2015-07-09] (GenesysLogic) R1 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.1.0.9\Definitions\IPSDefs\20151204.001\IDSvia64.sys [767224 2015-10-20] (Symantec Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-07] (Malwarebytes) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation) R3 NAVENG; C:\Program Files (x86)\Norton Security\NortonData\22.1.0.9\Definitions\VirusDefs\20151206.024\ENG64.SYS [138488 2015-10-27] (Symantec Corporation) R3 NAVEX15; C:\Program Files (x86)\Norton Security\NortonData\22.1.0.9\Definitions\VirusDefs\20151206.024\EX64.SYS [2148080 2015-10-27] (Symantec Corporation) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek ) R3 SRTSP; C:\Windows\System32\Drivers\NSx64\1605050.00F\SRTSP64.SYS [928496 2015-11-12] (Symantec Corporation) R1 SRTSPX; C:\Windows\system32\drivers\NSx64\1605050.00F\SRTSPX64.SYS [50936 2015-07-11] (Symantec Corporation) R0 SymEFASI; C:\Windows\System32\drivers\NSx64\1605050.00F\SYMEFASI64.SYS [1621232 2015-11-12] (Symantec Corporation) S0 SymELAM; C:\Windows\System32\drivers\NSx64\1605050.00F\SymELAM.sys [24192 2015-07-11] (Symantec Corporation) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [111344 2015-07-27] (Symantec Corporation) R1 SymIRON; C:\Windows\system32\drivers\NSx64\1605050.00F\Ironx64.SYS [297720 2015-07-11] (Symantec Corporation) R1 SymNetS; C:\Windows\System32\Drivers\NSx64\1605050.00F\SYMNETS.SYS [577768 2015-11-12] (Symantec Corporation) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-12-07 12:52 - 2015-12-07 12:52 - 00021759 _____ C:\Users\Olli\Downloads\FRST.txt 2015-12-07 12:52 - 2015-12-07 12:52 - 00000000 ____D C:\FRST 2015-12-07 12:51 - 2015-12-07 12:51 - 02369024 _____ (Farbar) C:\Users\Olli\Downloads\FRST64.exe 2015-12-07 11:01 - 2015-12-07 11:01 - 00000000 ____H C:\ProgramData\cm-lock 2015-12-06 13:31 - 2015-12-07 11:16 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-12-06 13:30 - 2015-12-06 13:30 - 00001175 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-12-06 13:30 - 2015-12-06 13:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-12-06 13:30 - 2015-12-06 13:30 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-12-06 13:30 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-12-06 13:30 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2015-12-06 13:30 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2015-12-06 13:29 - 2015-12-06 13:30 - 22908888 _____ (Malwarebytes ) C:\Users\Olli\Downloads\mbam-setup-2.2.0.1024.exe 2015-12-06 13:06 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-12-06 13:06 - 2015-11-22 11:47 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2015-12-06 13:06 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2015-12-06 13:06 - 2015-11-22 11:41 - 01284960 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2015-12-06 13:06 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2015-12-06 13:06 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll 2015-12-06 13:06 - 2015-11-22 11:34 - 00975200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2015-12-06 13:06 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll 2015-12-06 13:06 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys 2015-12-06 13:06 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll 2015-12-06 13:06 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll 2015-12-06 13:06 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2015-12-06 13:06 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2015-12-06 13:06 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll 2015-12-06 13:06 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll 2015-12-06 13:06 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2015-12-06 13:06 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2015-12-06 13:06 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2015-12-06 13:06 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2015-12-06 13:06 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll 2015-12-06 13:06 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll 2015-12-06 13:06 - 2015-11-22 10:57 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2015-12-06 13:06 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll 2015-12-06 13:06 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll 2015-12-06 13:06 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll 2015-12-06 13:06 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll 2015-12-06 13:06 - 2015-11-22 10:56 - 22394880 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2015-12-06 13:06 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll 2015-12-06 13:06 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll 2015-12-06 13:06 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll 2015-12-06 13:06 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll 2015-12-06 13:06 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll 2015-12-06 13:06 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll 2015-12-06 13:06 - 2015-11-22 10:55 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll 2015-12-06 13:06 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll 2015-12-06 13:06 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys 2015-12-06 13:06 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll 2015-12-06 13:06 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll 2015-12-06 13:06 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll 2015-12-06 13:06 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2015-12-06 13:06 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll 2015-12-06 13:06 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll 2015-12-06 13:06 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll 2015-12-06 13:06 - 2015-11-22 10:52 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-12-06 13:06 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll 2015-12-06 13:06 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll 2015-12-06 13:06 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2015-12-06 13:06 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll 2015-12-06 13:06 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe 2015-12-06 13:06 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll 2015-12-06 13:06 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll 2015-12-06 13:06 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll 2015-12-06 13:06 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll 2015-12-06 13:06 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll 2015-12-06 13:06 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2015-12-06 13:06 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll 2015-12-06 13:06 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll 2015-12-06 13:06 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll 2015-12-06 13:06 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll 2015-12-06 13:06 - 2015-11-22 10:47 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll 2015-12-06 13:06 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll 2015-12-06 13:06 - 2015-11-22 10:46 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2015-12-06 13:06 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2015-12-06 13:06 - 2015-11-22 10:45 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2015-12-06 13:06 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2015-12-06 13:06 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll 2015-12-06 13:06 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2015-12-06 13:06 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll 2015-12-06 13:06 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll 2015-12-06 13:06 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll 2015-12-06 13:06 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll 2015-12-06 13:06 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll 2015-12-06 13:06 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll 2015-12-06 13:06 - 2015-11-22 10:44 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2015-12-06 13:06 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll 2015-12-06 13:06 - 2015-11-22 10:43 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-12-06 13:06 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll 2015-12-06 13:06 - 2015-11-22 10:43 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2015-12-06 13:06 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2015-12-06 13:06 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll 2015-12-06 13:06 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll 2015-12-06 13:06 - 2015-11-22 10:42 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-12-06 13:06 - 2015-11-22 10:42 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2015-12-06 13:06 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll 2015-12-06 13:06 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll 2015-12-06 13:06 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll 2015-12-06 13:06 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll 2015-12-06 13:06 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll 2015-12-06 13:06 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2015-12-06 13:06 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll 2015-12-06 13:06 - 2015-11-22 10:41 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2015-12-06 13:06 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2015-12-06 13:06 - 2015-11-22 10:40 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2015-12-06 13:06 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2015-12-06 13:06 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll 2015-12-06 13:06 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll 2015-12-06 13:06 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2015-12-06 13:06 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll 2015-12-06 13:06 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2015-12-06 13:06 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2015-12-06 13:06 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2015-12-06 13:06 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2015-12-06 13:06 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2015-12-06 13:06 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2015-12-06 13:06 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll 2015-12-06 13:06 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll 2015-12-06 13:06 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll 2015-12-06 13:06 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2015-12-06 13:06 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2015-12-06 13:06 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll 2015-12-06 13:06 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll 2015-12-06 13:06 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll 2015-12-06 13:06 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2015-12-06 13:06 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-12-06 13:06 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2015-12-06 13:06 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll 2015-12-06 13:06 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2015-12-06 13:06 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2015-12-06 13:06 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll 2015-12-06 13:06 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll 2015-12-06 13:06 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2015-12-06 13:06 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll 2015-12-06 13:06 - 2015-11-22 10:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2015-12-06 13:06 - 2015-11-22 10:33 - 13380608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-12-06 13:06 - 2015-11-22 10:33 - 02587136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-12-06 13:06 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll 2015-12-06 13:06 - 2015-11-22 10:32 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2015-12-06 13:06 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll 2015-12-06 13:06 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2015-12-06 13:06 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2015-12-06 13:06 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll 2015-12-06 13:06 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2015-12-06 13:06 - 2015-11-22 10:30 - 19340800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-12-06 13:06 - 2015-11-22 10:30 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2015-12-06 13:06 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2015-12-06 13:06 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-12-06 13:06 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll 2015-12-06 13:06 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2015-12-06 13:06 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2015-12-06 13:06 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2015-12-06 13:06 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll 2015-12-06 13:06 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2015-12-06 13:06 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2015-12-06 13:06 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll 2015-12-06 13:06 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2015-12-06 13:06 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2015-12-06 13:06 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll 2015-12-06 13:06 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2015-12-06 13:06 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll 2015-12-06 13:06 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll 2015-12-06 13:06 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2015-12-06 13:06 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-12-06 13:06 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll 2015-12-06 13:06 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll 2015-12-06 13:06 - 2015-11-22 10:25 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2015-12-06 13:06 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-12-06 13:06 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll 2015-12-06 13:06 - 2015-11-22 10:24 - 12124672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-12-06 13:06 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-12-06 13:06 - 2015-11-22 10:24 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll 2015-12-06 13:06 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll 2015-12-06 13:06 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll 2015-12-06 13:06 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll 2015-12-06 13:06 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2015-12-06 13:06 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2015-12-06 13:06 - 2015-11-22 10:19 - 02064384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-12-06 13:06 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-12-06 13:06 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll 2015-12-06 13:06 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll 2015-12-06 13:06 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2015-12-06 13:06 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-12-06 13:06 - 2015-11-22 10:16 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll 2015-12-06 13:06 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll 2015-12-04 09:36 - 2015-12-04 09:36 - 04377145 _____ C:\Users\Olli\Downloads\Unbenannte_Nachricht.zip 2015-12-04 09:27 - 2015-12-04 09:36 - 00000000 ____D C:\Users\Olli\Documents\ebay 2015-12-02 03:39 - 2015-12-07 11:29 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Security 2015-12-02 03:33 - 2015-12-02 03:33 - 00003386 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration 2015-12-01 08:48 - 2015-11-21 07:21 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2015-12-01 08:48 - 2015-11-21 07:02 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2015-12-01 08:48 - 2015-11-21 06:44 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll 2015-12-01 08:48 - 2015-11-21 06:29 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll 2015-12-01 08:48 - 2015-11-21 06:07 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll 2015-11-29 14:05 - 2015-11-29 14:05 - 00065296 _____ C:\Users\Olli\Documents\schroeder_3.pdf 2015-11-29 14:05 - 2015-11-29 14:05 - 00065296 _____ C:\Users\Olli\Documents\Scan_20151129 (4).pdf 2015-11-29 14:04 - 2015-11-29 14:04 - 00032483 _____ C:\Users\Olli\Documents\schroeder_2.pdf 2015-11-29 14:04 - 2015-11-29 14:04 - 00032483 _____ C:\Users\Olli\Documents\Scan_20151129 (3).pdf 2015-11-29 14:03 - 2015-11-29 14:03 - 00039627 _____ C:\Users\Olli\Documents\schroeder_1.pdf 2015-11-29 14:03 - 2015-11-29 14:03 - 00039627 _____ C:\Users\Olli\Documents\Scan_20151129 (2).pdf 2015-11-29 14:01 - 2015-11-29 14:01 - 00048665 _____ C:\Users\Olli\Documents\VG_Kosten.pdf 2015-11-29 14:00 - 2015-11-29 14:00 - 00048665 _____ C:\Users\Olli\Documents\Scan_20151129.pdf 2015-11-29 08:17 - 2015-12-07 11:03 - 00000000 ___RD C:\Users\Olli\iCloudDrive 2015-11-29 08:17 - 2015-11-29 08:17 - 00000000 ____D C:\Users\Olli\AppData\Local\Apple Inc 2015-11-29 08:16 - 2015-12-01 08:42 - 00003496 _____ C:\WINDOWS\System32\Tasks\Apple Diagnostics 2015-11-27 12:23 - 2015-11-27 12:23 - 00030246 _____ C:\Users\Olli\Documents\Scan_Wnf.pdf 2015-11-27 12:22 - 2015-11-27 12:22 - 00030246 _____ C:\Users\Olli\Documents\Scan_20151127.pdf 2015-11-23 10:48 - 2015-11-23 10:48 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2015-11-23 10:31 - 2015-11-23 10:31 - 00000000 ____D C:\Users\Olli\AppData\Local\PeerDistRepub 2015-11-22 11:27 - 2015-11-22 11:27 - 00000000 ____D C:\Users\Olli\AppData\Local\MicrosoftEdge 2015-11-22 09:15 - 2015-11-22 09:16 - 00002355 _____ C:\Users\Olli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-11-22 09:15 - 2015-11-22 09:16 - 00000000 ___RD C:\Users\Olli\OneDrive 2015-11-22 09:14 - 2015-11-22 09:14 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2015-11-22 09:13 - 2015-11-22 09:13 - 00000000 ____D C:\Users\Olli\AppData\Local\Publishers 2015-11-22 09:12 - 2015-11-22 09:12 - 00000000 ____D C:\Users\Olli\AppData\Local\ActiveSync 2015-11-22 09:11 - 2015-11-22 09:11 - 00000000 ____D C:\Users\Olli\AppData\Local\Comms 2015-11-22 09:10 - 2015-11-22 09:10 - 00000000 ____D C:\Users\Olli\AppData\Local\TileDataLayer 2015-11-22 09:09 - 2015-11-22 09:09 - 00000020 ___SH C:\Users\Olli\ntuser.ini 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default\Vorlagen 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default\Startmenü 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2015-11-22 08:21 - 2015-11-22 08:21 - 00000000 ____D C:\ProgramData\USOShared 2015-11-22 08:19 - 2015-11-22 08:19 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat 2015-11-22 08:18 - 2015-12-07 11:01 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-11-22 08:13 - 2015-12-07 11:08 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-11-22 08:04 - 2015-11-22 08:04 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-11-22 08:04 - 2015-11-22 08:04 - 00000000 ____D C:\Users\Default\AppData\Roaming\ATI 2015-11-22 08:04 - 2015-11-22 08:04 - 00000000 ____D C:\Users\Default\AppData\Local\ATI 2015-11-22 08:04 - 2015-11-22 08:04 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ATI 2015-11-22 08:04 - 2015-11-22 08:04 - 00000000 ____D C:\Users\Default User\AppData\Local\ATI 2015-11-22 07:59 - 2015-11-22 07:59 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate 2015-11-22 07:58 - 2015-12-02 03:32 - 00000000 ____D C:\Users\Olli 2015-11-22 07:58 - 2015-11-22 07:58 - 00000000 _SHDL C:\Users\Olli\Vorlagen 2015-11-22 07:58 - 2015-11-22 07:58 - 00000000 _SHDL C:\Users\Olli\Startmenü 2015-11-22 07:58 - 2015-11-22 07:58 - 00000000 _SHDL C:\Users\Olli\Netzwerkumgebung 2015-11-22 07:58 - 2015-11-22 07:58 - 00000000 _SHDL C:\Users\Olli\Lokale Einstellungen 2015-11-22 07:58 - 2015-11-22 07:58 - 00000000 _SHDL C:\Users\Olli\Eigene Dateien 2015-11-22 07:58 - 2015-11-22 07:58 - 00000000 _SHDL C:\Users\Olli\Druckumgebung 2015-11-22 07:58 - 2015-11-22 07:58 - 00000000 _SHDL C:\Users\Olli\Documents\Eigene Videos 2015-11-22 07:58 - 2015-11-22 07:58 - 00000000 _SHDL C:\Users\Olli\Documents\Eigene Musik 2015-11-22 07:58 - 2015-11-22 07:58 - 00000000 _SHDL C:\Users\Olli\Documents\Eigene Bilder 2015-11-22 07:58 - 2015-11-22 07:58 - 00000000 _SHDL C:\Users\Olli\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-11-22 07:58 - 2015-11-22 07:58 - 00000000 _SHDL C:\Users\Olli\AppData\Local\Verlauf 2015-11-22 07:58 - 2015-11-22 07:58 - 00000000 _SHDL C:\Users\Olli\AppData\Local\Anwendungsdaten 2015-11-22 07:58 - 2015-11-22 07:58 - 00000000 _SHDL C:\Users\Olli\Anwendungsdaten 2015-11-22 07:55 - 2015-11-22 08:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2015-11-22 07:55 - 2015-11-22 07:55 - 00000000 ____D C:\Program Files\ATI Technologies 2015-11-22 07:54 - 2015-11-22 08:01 - 00000000 ____D C:\WINDOWS\SysWOW64\sda 2015-11-22 07:54 - 2015-11-22 08:00 - 00000000 ____D C:\ProgramData\Package Cache 2015-11-22 07:54 - 2015-11-22 07:55 - 00000000 ____D C:\Program Files (x86)\ATI Technologies 2015-11-22 07:54 - 2015-11-22 07:54 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies 2015-11-22 07:54 - 2015-11-22 07:54 - 00000000 ____D C:\Program Files\Common Files\Atheros 2015-11-22 07:54 - 2015-11-22 07:54 - 00000000 ____D C:\Program Files (x86)\Genesyslogic 2015-11-22 07:54 - 2015-11-22 07:54 - 00000000 _____ C:\WINDOWS\ativpsrm.bin 2015-11-22 07:53 - 2015-11-22 08:00 - 00000000 ____D C:\Program Files\AMD 2015-11-22 07:53 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2015-11-22 07:51 - 2015-11-22 07:51 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2015-11-22 07:50 - 2015-11-22 08:07 - 00244680 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-11-22 07:49 - 2015-11-22 12:00 - 00000000 ___DC C:\WINDOWS\Panther 2015-11-22 07:46 - 2015-11-22 07:46 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 03670832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2015-11-22 07:46 - 2015-11-22 07:46 - 02918808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2015-11-22 07:46 - 2015-11-22 07:46 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2015-11-22 07:46 - 2015-11-22 07:46 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2015-11-22 07:46 - 2015-11-22 07:46 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2015-11-22 07:46 - 2015-11-22 07:46 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys 2015-11-22 07:46 - 2015-11-22 07:46 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-11-22 07:46 - 2015-11-22 07:46 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys 2015-11-22 07:46 - 2015-11-22 07:46 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe 2015-11-22 07:46 - 2015-11-22 07:46 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2015-11-22 07:46 - 2015-11-22 07:46 - 00000000 ____D C:\Windows.old 2015-11-22 07:44 - 2015-11-22 07:44 - 00008192 _____ C:\WINDOWS\system32\config\userdiff 2015-11-22 07:42 - 2015-11-22 07:42 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2015-11-22 07:42 - 2015-11-22 07:42 - 00000000 ____D C:\Program Files\Reference Assemblies 2015-11-22 07:42 - 2015-11-22 07:42 - 00000000 ____D C:\Program Files\MSBuild 2015-11-22 07:42 - 2015-11-22 07:42 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2015-11-22 07:42 - 2015-11-22 07:42 - 00000000 ____D C:\Program Files (x86)\MSBuild 2015-11-22 07:42 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2015-11-22 07:42 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-11-22 07:42 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2015-11-22 07:42 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2015-11-22 07:42 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2015-11-22 07:42 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2015-11-22 07:27 - 2015-11-22 08:20 - 00009528 _____ C:\WINDOWS\diagwrn.xml 2015-11-22 07:27 - 2015-11-22 08:20 - 00009528 _____ C:\WINDOWS\diagerr.xml 2015-11-16 14:08 - 2015-11-16 14:08 - 00000517 _____ C:\Users\Olli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FalloutLauncher.lnk 2015-11-14 18:30 - 2015-11-14 18:30 - 00178800 _____ (Sony DADC Austria AG.) C:\WINDOWS\SysWOW64\CmdLineExt_x64.dll 2015-11-14 18:30 - 2015-11-14 18:30 - 00000000 ____D C:\Users\Olli\Documents\My Games 2015-11-14 18:30 - 2015-11-14 18:30 - 00000000 ____D C:\Users\Olli\AppData\Local\Fallout3 2015-11-14 18:20 - 2015-11-14 18:20 - 00000000 ____D C:\Program Files (x86)\Bethesda Softworks 2015-11-14 18:03 - 2015-11-22 08:02 - 00000000 ____D C:\WINDOWS\SysWOW64\xlive 2015-11-13 10:04 - 2015-11-22 08:04 - 00000000 ____D C:\Users\Olli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-12-07 12:52 - 2015-10-30 07:28 - 00000000 ____D C:\Windows 2015-12-07 11:26 - 2015-08-11 12:37 - 00000000 ____D C:\Program Files (x86)\PDF Architect 3 2015-12-07 11:26 - 2015-06-03 08:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-12-07 11:22 - 2013-11-22 10:50 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-12-07 11:15 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache 2015-12-07 11:08 - 2015-10-30 19:35 - 00775524 _____ C:\WINDOWS\system32\perfh007.dat 2015-12-07 11:08 - 2015-10-30 19:35 - 00155338 _____ C:\WINDOWS\system32\perfc007.dat 2015-12-07 11:08 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF 2015-12-07 11:04 - 2014-06-16 10:49 - 00000000 ___RD C:\Users\Olli\Dropbox 2015-12-07 11:04 - 2014-06-16 10:46 - 00000000 ____D C:\Users\Olli\AppData\Roaming\Dropbox 2015-12-07 11:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\TAPI 2015-12-07 11:00 - 2015-10-30 07:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI 2015-12-07 10:59 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2015-12-06 14:08 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-12-06 13:57 - 2015-06-22 11:46 - 00001246 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2064884263-2734367825-3749686348-1001UA.job 2015-12-06 12:46 - 2014-12-27 17:46 - 00000000 ____D C:\Program Files (x86)\Steam 2015-12-06 12:46 - 2014-02-26 09:13 - 00000000 ____D C:\Users\Olli\AppData\Local\CrashDumps 2015-12-06 11:31 - 2013-11-15 09:39 - 00004164 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{38DC09B8-B1AF-4E73-8090-2527DDB7D131} 2015-12-05 12:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-12-04 19:57 - 2015-06-22 11:46 - 00001194 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2064884263-2734367825-3749686348-1001Core.job 2015-12-04 11:29 - 2014-01-13 10:42 - 00000000 ____D C:\Users\Olli\AppData\Roaming\vlc 2015-12-04 11:22 - 2014-04-06 14:36 - 00000000 ____D C:\Users\Olli\dwhelper 2015-12-04 08:05 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps 2015-12-02 03:34 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM 2015-12-02 03:33 - 2015-05-25 11:35 - 00002381 _____ C:\Users\Public\Desktop\Norton Security.LNK 2015-12-02 03:33 - 2015-05-25 11:31 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security 2015-12-02 03:33 - 2015-05-25 11:31 - 00000000 ____D C:\WINDOWS\system32\Drivers\NSx64 2015-11-30 10:00 - 2013-11-16 16:40 - 00000000 ____D C:\Users\Olli\AppData\Roaming\Apple Computer 2015-11-29 08:17 - 2013-11-16 16:39 - 00000000 ____D C:\Users\Olli\AppData\Local\Apple 2015-11-29 08:16 - 2013-11-16 16:40 - 00000000 ____D C:\Users\Olli\AppData\Local\Apple Computer 2015-11-27 12:07 - 2014-03-01 12:11 - 00000000 ___RD C:\Users\Olli\Documents\Scanned Documents 2015-11-27 08:33 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2015-11-27 08:32 - 2013-11-15 10:25 - 00000000 ____D C:\Program Files\Microsoft Office 15 2015-11-23 08:36 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat 2015-11-22 19:12 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF 2015-11-22 09:30 - 2013-11-15 09:35 - 00000000 ____D C:\Users\Olli\AppData\Local\Packages 2015-11-22 09:29 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow 2015-11-22 09:11 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog 2015-11-22 09:11 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog 2015-11-22 09:11 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView 2015-11-22 09:11 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2015-11-22 09:10 - 2013-11-20 11:40 - 00000000 __RHD C:\Users\Public\AccountPictures 2015-11-22 08:21 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2015-11-22 08:21 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate 2015-11-22 08:21 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT 2015-11-22 08:19 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration 2015-11-22 08:18 - 2015-06-22 11:46 - 00003694 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2064884263-2734367825-3749686348-1001UA 2015-11-22 08:18 - 2015-06-22 11:46 - 00003422 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2064884263-2734367825-3749686348-1001Core 2015-11-22 08:18 - 2015-04-22 20:34 - 00002052 _____ C:\WINDOWS\System32\Tasks\{1316A33A-0917-4EF1-8048-BCC5D925C46C} 2015-11-22 08:18 - 2014-12-24 12:11 - 00002764 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2015-11-22 08:18 - 2014-10-17 18:35 - 00002378 _____ C:\WINDOWS\System32\Tasks\dd 2015-11-22 08:18 - 2013-11-22 10:50 - 00002952 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2015-11-22 08:18 - 2013-11-15 09:40 - 00002812 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2064884263-2734367825-3749686348-1001 2015-11-22 08:16 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries 2015-11-22 08:04 - 2015-09-17 07:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warships 2015-11-22 08:04 - 2015-09-16 15:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2015-11-22 08:04 - 2015-08-20 12:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2015-11-22 08:04 - 2015-08-11 12:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 3 2015-11-22 08:04 - 2015-08-11 12:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2015-11-22 08:04 - 2015-08-08 09:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDex 2015-11-22 08:04 - 2015-07-23 12:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft 2015-11-22 08:04 - 2015-05-12 16:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud 2015-11-22 08:04 - 2015-01-13 13:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WISO Steuer-Sparbuch 2015 2015-11-22 08:04 - 2014-12-29 12:58 - 00000000 ____D C:\Users\Olli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2015-11-22 08:04 - 2014-12-27 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2015-11-22 08:04 - 2014-11-25 17:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-11-22 08:04 - 2014-11-05 11:02 - 00000000 ____D C:\Users\Olli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks 2015-11-22 08:04 - 2014-10-01 15:04 - 00000000 ____D C:\Users\Olli\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack Client 2015-11-22 08:04 - 2014-09-02 07:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2015-11-22 08:04 - 2014-08-08 18:21 - 00000000 ____D C:\Users\Olli\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack 2015-11-22 08:04 - 2014-07-25 11:10 - 00000000 ____D C:\Users\Olli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameShadow 2015-11-22 08:04 - 2014-06-17 12:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-11-22 08:04 - 2014-01-13 10:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2015-11-22 08:04 - 2014-01-08 12:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WISO Steuer-Sparbuch 2014 2015-11-22 08:04 - 2013-12-20 21:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3 2015-11-22 08:04 - 2013-12-20 16:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2015-11-22 08:04 - 2013-11-30 15:43 - 00000000 ____D C:\Users\Olli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinUAE 2015-11-22 08:04 - 2013-11-21 09:18 - 00000000 ____D C:\Users\Olli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\C. H. Beck 2015-11-22 08:04 - 2013-11-15 10:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2015-11-22 08:04 - 2013-11-15 09:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FRITZ!WLAN 2015-11-22 08:04 - 2013-08-22 14:36 - 00000000 ____D C:\Users\Default.migrated 2015-11-22 08:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2015-11-22 08:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool 2015-11-22 08:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe 2015-11-22 08:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod 2015-11-22 08:01 - 2014-05-28 15:39 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe 2015-11-22 08:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared 2015-11-22 08:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared 2015-11-22 08:00 - 2015-10-30 08:24 - 00000000 ___HD C:\WINDOWS\ELAMBKUP 2015-11-22 08:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2015-11-22 08:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\InputMethod 2015-11-22 08:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Cursors 2015-11-22 08:00 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2015-11-22 08:00 - 2014-01-19 23:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EIZO 2015-11-22 08:00 - 2013-12-08 16:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games 2015-11-22 08:00 - 2013-11-16 17:21 - 00000000 ____D C:\WINDOWS\system32\appmgmt 2015-11-22 08:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer 2015-11-22 08:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS 2015-11-22 07:57 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2015-11-22 07:54 - 2013-11-15 18:56 - 00000000 ____D C:\AMD 2015-11-22 07:50 - 2015-10-30 19:58 - 00000000 ____D C:\WINDOWS\ServiceProfiles 2015-11-22 07:49 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template 2015-11-22 07:46 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-11-22 07:46 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning 2015-11-22 07:46 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism 2015-11-22 07:46 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism 2015-11-22 07:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI 2015-11-22 07:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI 2015-11-22 07:42 - 2015-10-30 08:17 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe 2015-11-22 07:42 - 2015-10-30 08:17 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe 2015-11-22 07:42 - 2015-10-30 08:17 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe 2015-11-22 07:42 - 2015-10-30 08:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll 2015-11-22 07:42 - 2015-10-30 08:17 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll 2015-11-22 07:27 - 2015-10-30 20:28 - 00000000 ___HD C:\$WINDOWS.~BT 2015-11-20 10:26 - 2015-10-12 13:15 - 00000000 ____D C:\Users\Olli\Documents\38b 2015-11-20 10:24 - 2015-10-10 10:49 - 00000000 ____D C:\Users\Olli\Documents\38a 2015-11-20 10:23 - 2015-10-14 09:51 - 00000000 ____D C:\Users\Olli\Documents\39a 2015-11-20 09:25 - 2013-11-21 09:20 - 00000000 ____D C:\Users\Olli\AppData\Local\xMedia 2015-11-15 04:53 - 2013-11-17 09:37 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-11-15 04:43 - 2013-11-17 09:37 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-11-14 18:20 - 2014-01-08 12:08 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-11-14 18:06 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData 2015-11-11 20:22 - 2015-06-10 07:22 - 05286088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe 2015-11-09 09:00 - 2013-11-21 17:42 - 00000000 ____D C:\Users\Olli\Documents\FH ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2014-01-19 22:55 - 2014-01-19 22:55 - 0000017 _____ () C:\Users\Olli\AppData\Local\resmon.resmoncfg 2015-12-07 11:01 - 2015-12-07 11:01 - 0000000 ____H () C:\ProgramData\cm-lock Einige Dateien in TEMP: ==================== C:\Users\Olli\AppData\Local\Temp\drm_dyndata_7380006.dll C:\Users\Olli\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpknkdkd.dll C:\Users\Olli\AppData\Local\Temp\kernel32.dll C:\Users\Olli\AppData\Local\Temp\vlc-2.1.5-win64.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-12-02 10:21 ==================== Ende von FRST.txt ============================ |
|
07.12.2015, 19:07
| #2 |
| /// the machine /// TB-Ausbilder    | Gelbes "i"-Icon" mitten auf dem Desktop So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Addition.txt fehlt noch.
__________________ |
Linear-Darstellung
