|
Plagegeister aller Art und deren Bekämpfung: Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 BitWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
25.02.2016, 20:02 | #1 |
| Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit Hallo, zuerst ein Lob über die Art, wie Ihr hier: http://www.trojaner-board.de/175888-...me-64-bit.html ein ähnliches Problem gelöst habt - ich bin echt begeistert! Nach einem totalen Ausfall meines Windows 7 Laptops musste ich mir einen neuen (Windows !0) kaufen und deshalb alles neu einrichten. Eine Sache war mir besonders wichtig, die ATMEGA/ATTiny-Programmierung mit meinem AVRisp mk2 Programmer, die unter Windows 7 (32 Bit) gut funktionierte. Das Ding ging nicht unter Windows 10 und ich habe verzweifelt nach einem Treiber gesucht. Einen Hinweis gab es und der war der Ausgangspunkt für das jetzige Problem. Ich habe zwar sofort gemerkt, dass da ganz was anderes installiert wurde und sofort alles gestoppt. Trotzdem habe ich jetzt ständig unter Firefox unerwünschte Werbung (Gewinn-Mitteilungen, Videos, Partnersuche, Spielaufforderungen). Das alles fast bei jedem Eintrag in die Google-Suche. Für mich ist unklar, wie das trotz Kaspersky Internet Security passieren konnte. Auch die Suche nach dem (wahrscheinlichen) Trojaner mit Kaspersky ergab "keine Gefährdungen" oder andere Hinweise. Unter "Microsoft Edge" tritt das Problem scheinbar nicht auf. Ich möchte aber gern Firefox weiter benutzen aus Gewohnheit und weil ich das Programm auch für andere Zwecke als zum Suchen nutze (Simple Mail usw.). Meine Frage - könnt Ihr mir helfen und was soll ich machen? Vielen Dank für Eure Hilfe im Voraus und viele Grüße |
26.02.2016, 09:57 | #2 |
/// Malwareteam | Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 BitMein Name ist Rafael und ich werde dir bei der Bereinigung helfen. Damit ich dir optimal helfen kann, halte dich bitte an folgende Regeln:
Schritt 1 Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
26.02.2016, 10:24 | #3 |
| Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit Hallo Rafael,
__________________vielen Dank für die schnelle Reaktion! Hier der erste Teil - ich muss die Dateien, glaube ich, in vier Teilen senden. Hoffentlich mache ich alles richtig??? Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:21-02-2016 01 durchgeführt von Gunther (Administrator) auf DESKTOP-L5KOO87 (26-02-2016 10:01:47) Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen Geladene Profile: Gunther (Verfügbare Profile: Gunther) Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe (ASUS) C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGiftBoxDesktop.exe (Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe (Zhuhai Kingsoft Office Software Co.,Ltd) C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe (WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe (Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe () C:\Windows\System32\igfxTray.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe (AVAST Software) C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe (ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSPanel.exe () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2016.27.2.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe (Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6568.46121.0_x64__8wekyb3d8bbwe\HxCalendarAppImm.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6568.46121.0_x64__8wekyb3d8bbwe\HxTsr.exe () C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe (Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe (Microsoft Corporation) C:\Windows\System32\wuapihost.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation) HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe [63272 2015-05-31] () HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595504 2016-01-29] (Oracle Corporation) HKU\S-1-5-21-2421830386-3516612503-909366600-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-18] (Electronic Arts) ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avast! SecureLine.lnk [2015-11-11] ShortcutTarget: avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) AutoConfigURL: [S-1-5-21-2421830386-3516612503-909366600-1001] => hxxp://stop-block.org/wpad.dat?ccff5aa26c527adfe15c5d9946411f206451327 Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{db2c9de7-f35d-44c5-8037-6eea81e0d451}: [DhcpNameServer] 192.168.2.1 ManualProxies: 0hxxp://stop-block.org/wpad.dat?ccff5aa26c527adfe15c5d9946411f206451327 Internet Explorer: ================== HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus15.msn.com/?pc=ASTE HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE SearchScopes: HKU\S-1-5-21-2421830386-3516612503-909366600-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2421830386-3516612503-909366600-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-21] (Oracle Corporation) BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-21] (Oracle Corporation) BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab) Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab) Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab) FireFox: ======== FF ProfilePath: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\v07uout6.default FF Homepage: hxxps://www.google.de/?gws_rd=ssl about:preferences FF Plugin: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-21] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-21] (Oracle Corporation) FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-20] (VideoLAN) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-18] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-18] (Google Inc.) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-15] () FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.) FF Extension: Simple Mail - C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\v07uout6.default\extensions\simplemail@telega.phpnet.us [2016-02-18] FF Extension: Adblock Plus - C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\v07uout6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-24] FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2016-02-17] Chrome: ======= CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe [71168 2015-05-31] (ASUS Cloud Corporation) [Datei ist nicht signiert] R2 ASUSGiftBoxDekstop; C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe [315704 2015-07-20] (ASUS) R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2016-02-17] (Kaspersky Lab ZAO) R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1385640 2015-08-17] (Intel Corporation) R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-04-14] (WildTangent) R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [353896 2015-10-06] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert] S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation) R2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe [133480 2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd) R3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-18] (Electronic Arts) R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [445240 2015-04-29] () S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation) S2 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.5.471.0\McCSPServiceHost.exe" [X] S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 athr; C:\Windows\System32\drivers\athw10x.sys [4317808 2015-07-14] (Qualcomm Atheros Communications, Inc.) R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [97680 2015-08-17] (ASUS Corporation) R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO) R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [53752 2015-08-17] (Intel Corporation) R3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [50696 2015-08-17] (Intel Corporation) S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-02-19] () R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [261624 2015-08-17] (Intel Corporation) R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel Corporation) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO) R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO) R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [68280 2015-06-06] (Kaspersky Lab ZAO) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab) R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [181640 2016-02-17] (AO Kaspersky Lab) R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [227512 2016-02-17] (AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [934272 2016-02-17] (AO Kaspersky Lab) R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39608 2015-06-11] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2016-02-17] (AO Kaspersky Lab) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [87944 2016-02-17] (Kaspersky Lab ZAO) R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO) S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [52832 2016-02-20] (hxxp://libusb-win32.sourceforge.net) S3 libusbK; C:\Windows\System32\drivers\libusbK.sys [47928 2016-02-20] (hxxp://libusb-win32.sourceforge.net) R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-28] (Intel Corporation) S3 PCTV_NTAMD64; C:\Windows\system32\DRIVERS\pctv4XXe_amd64.sys [571552 2016-02-21] (Pinnacle Systems GmbH) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek ) R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [420440 2015-05-27] (Realsil Semiconductor Corporation) S2 TVicPort; kein ImagePath S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation) S3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [254976 2010-08-31] (Jungo) S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X] U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X] U0 msahci; system32\drivers\msahci.sys [X] S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-02-26 09:58 - 2016-02-26 09:58 - 00016148 _____ C:\Windows\system32\DESKTOP-L5KOO87_Gunther_HistoryPrediction.bin 2016-02-25 09:06 - 2016-02-25 10:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\DesignCAD 22 2016-02-25 09:06 - 2016-02-25 10:36 - 00000000 ____D C:\ProgramData\TEMP 2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22 2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\ProgramData\IMSIDesign 2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\Program Files (x86)\IMSIDesign 2016-02-25 09:01 - 2016-02-25 09:01 - 52116093 _____ (Franzis Verlag GmbH ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\30812-0-DesignCAD-V22-Basistoolkit.exe 2016-02-24 09:36 - 2016-02-24 13:26 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\ATMEGA_Programmierung 2016-02-23 16:46 - 2016-02-23 17:52 - 00000000 ____D C:\Program Files (x86)\Atmel 2016-02-23 16:36 - 2016-02-23 16:37 - 05198040 _____ (akeo.ie) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\zadig_2.2.exe 2016-02-23 13:25 - 2016-02-23 13:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Mauer 2016-02-23 09:26 - 2016-02-26 10:01 - 00000000 ____D C:\FRST 2016-02-23 09:19 - 2016-02-26 10:01 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen 2016-02-23 09:18 - 2016-02-23 09:18 - 02371072 _____ (Farbar) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\FRST64.exe 2016-02-22 13:53 - 2016-02-22 13:53 - 00048680 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\GDIPFONTCACHEV1.DAT 2016-02-22 10:20 - 2016-02-22 10:20 - 00000000 ____D C:\ProgramData\Brother 2016-02-22 10:19 - 2016-02-22 10:19 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\NetworkRepairTool 2016-02-22 10:18 - 2016-02-22 10:19 - 00983784 _____ (A.I.SOFT,INC.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Nettool_12140.EXE 2016-02-22 10:09 - 2016-02-22 10:09 - 00000034 _____ C:\Windows\SysWOW64\BD2040.DAT 2016-02-22 09:49 - 2016-02-26 08:47 - 00004174 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BF62B9E7-975F-45F1-9CC0-00F0D4052F41} 2016-02-22 09:33 - 2016-02-22 09:33 - 01120672 _____ (Malunu ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\adobe_flash_player.exe 2016-02-22 08:05 - 2016-02-22 08:06 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Audacity 2016-02-22 08:05 - 2016-02-22 08:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Audacity 2016-02-22 08:04 - 2016-02-22 08:05 - 00000000 ____D C:\Program Files (x86)\Audacity 2016-02-22 08:04 - 2016-02-22 08:04 - 00001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk 2016-02-21 17:54 - 2016-02-21 17:54 - 00002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk 2016-02-21 17:54 - 2016-02-21 17:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Google 2016-02-21 17:53 - 2016-02-21 17:53 - 00987728 _____ (Google Inc.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\GoogleEarthSetup.exe 2016-02-21 17:44 - 2016-02-21 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi 2016-02-21 17:44 - 2016-02-21 17:44 - 00001107 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Fugawi Global Navigator 4.5.LNK 2016-02-21 17:43 - 2016-02-21 17:43 - 00000000 ____D C:\Program Files (x86)\Fugawi 2016-02-21 17:10 - 2016-02-21 17:44 - 00000037 _____ C:\Windows\iltwain.ini 2016-02-21 15:38 - 2016-02-21 15:45 - 00000017 ____H C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\19720201.dat 2016-02-21 15:35 - 2016-02-21 18:04 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Fugawi 2016-02-21 15:35 - 2016-02-21 17:44 - 00000000 ____D C:\ProgramData\Fugawi 2016-02-21 15:35 - 2016-02-21 15:51 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Fugawi 2016-02-21 15:35 - 2016-02-21 15:35 - 00000000 ____D C:\Program Files (x86)\Earth Resource Mapping 2016-02-21 15:35 - 2016-02-21 15:35 - 00000000 _____ C:\Windows\Lmvk32.INI 2016-02-21 15:35 - 2003-03-18 19:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll 2016-02-21 15:35 - 2003-02-21 03:42 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll 2016-02-21 15:35 - 2002-01-05 04:48 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll 2016-02-21 15:35 - 2002-01-05 04:36 - 00964608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll 2016-02-21 15:32 - 2016-02-21 15:32 - 55326352 _____ (Northport Systems Inc. ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\fugawi45565615.exe 2016-02-21 13:13 - 2016-02-22 16:39 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.mediathek3 2016-02-21 13:13 - 2016-02-21 13:13 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Sun 2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Sun 2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.oracle_jre_usage 2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Oracle 2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\ProgramData\Oracle 2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\Program Files\Java 2016-02-21 13:07 - 2016-02-21 13:12 - 57099360 _____ (Oracle Corporation) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\jre-8u73-windows-x64.exe 2016-02-21 12:24 - 2016-02-21 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters 2016-02-21 12:24 - 2016-02-21 12:24 - 00000000 ____D C:\Program Files (x86)\LAV Filters 2016-02-21 12:23 - 2016-02-21 12:23 - 09532984 _____ (1f0.de ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\LAVFilters-0.67-Installer.exe 2016-02-21 12:21 - 2016-02-21 12:21 - 07185389 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\LAVFilters-0.67-x64.zip 2016-02-21 12:13 - 2016-02-21 12:13 - 00318223 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_Filter_3_8_1.zip 2016-02-21 10:09 - 2016-02-21 10:09 - 00571552 _____ (Pinnacle Systems GmbH) C:\Windows\system32\Drivers\pctv4XXe_amd64.sys 2016-02-21 10:03 - 2016-02-21 10:06 - 00000000 ____D C:\Program Files (x86)\DVBViewer 2016-02-21 10:03 - 2016-02-21 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer 2016-02-21 10:03 - 2016-02-21 10:03 - 00000000 ____D C:\ProgramData\CMUV 2016-02-21 10:00 - 2016-02-21 12:30 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\DVBViewer 2016-02-21 09:58 - 2016-02-21 09:58 - 01082553 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_GE_Anleitung.zip 2016-02-21 09:57 - 2016-02-21 09:57 - 07436126 _____ (CM&V ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_setup.exe 2016-02-21 09:55 - 2016-02-21 09:55 - 00001024 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\9DD6626F58261648.dvbvkey 2016-02-21 09:26 - 2016-02-21 09:26 - 00000706 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Geräte - Shortcut.lnk 2016-02-21 09:05 - 2016-02-21 09:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Pico Technology 2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Downloaded Installations 2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pico Technology 2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\Program Files (x86)\Pico Technology 2016-02-21 08:57 - 2016-02-21 08:57 - 00000000 ____D C:\Program Files\Pico Technology 2016-02-20 17:27 - 2016-02-20 17:27 - 111098163 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Microsoft-Spiele-x64.zip 2016-02-20 17:26 - 2016-02-20 17:26 - 01116040 _____ (Feme ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Microsoft-Spiele-x64.exe 2016-02-20 17:03 - 2016-02-24 09:56 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\MyPhoneExplorer 2016-02-20 17:03 - 2016-02-20 17:03 - 00002128 _____ C:\Users\Public\Desktop\MyPhoneExplorer.lnk 2016-02-20 17:03 - 2016-02-20 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer 2016-02-20 17:03 - 2016-02-20 17:03 - 00000000 ____D C:\Program Files (x86)\MyPhoneExplorer 2016-02-20 17:01 - 2016-02-20 17:02 - 07886000 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\MyPhoneExplorer_Setup_1.8.7.exe 2016-02-20 15:24 - 2016-02-20 15:24 - 00003668 _____ C:\Windows\System32\Tasks\{FCC43C23-C686-4530-BB4D-97C7E689F677} 2016-02-20 15:23 - 2016-02-20 15:23 - 00000000 ____D C:\ProgramData\VS 2016-02-20 15:18 - 2016-02-20 15:18 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010 2016-02-20 15:18 - 2016-02-20 15:18 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010 2016-02-20 12:53 - 2016-02-20 12:53 - 00003758 _____ C:\Windows\System32\Tasks\DriverMaxAgent 2016-02-20 12:53 - 2016-02-20 12:53 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Innovative Solutions 2016-02-20 12:53 - 2016-02-20 12:53 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Innovative Solutions 2016-02-20 12:52 - 2016-02-20 12:52 - 00000000 ____D C:\Program Files (x86)\Innovative Solutions 2016-02-20 11:49 - 2016-02-23 17:17 - 00000306 __RSH C:\ProgramData\ntuser.pol 2016-02-20 11:49 - 2016-02-20 12:59 - 00067680 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusb0.dll 2016-02-20 11:49 - 2016-02-20 12:59 - 00052832 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusb0.sys 2016-02-20 11:49 - 2016-02-20 11:58 - 00099128 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusbK.dll 2016-02-20 11:49 - 2016-02-20 11:58 - 00084280 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusbK.dll 2016-02-20 11:49 - 2016-02-20 11:58 - 00076384 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusb0.dll 2016-02-20 11:49 - 2016-02-20 11:58 - 00047928 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusbK.sys 2016-02-20 11:49 - 2016-02-20 11:55 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\usb_driver 2016-02-20 11:49 - 2016-02-20 11:49 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll 2016-02-20 11:36 - 2016-02-20 11:36 - 00000000 ____D C:\ProgramData\Atmel 2016-02-20 10:37 - 2016-02-20 10:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft Corporation 2016-02-20 10:32 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\VisualAssist 2016-02-20 10:32 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\VisualAssist 2016-02-20 10:32 - 2016-02-20 10:32 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\IsolatedStorage 2016-02-20 10:31 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Atmel 2016-02-20 10:27 - 2016-02-20 10:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Atmel Studio 2016-02-20 10:27 - 2016-02-20 10:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Atmel 2016-02-20 10:27 - 2016-02-20 10:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Atmel 2016-02-20 10:26 - 2016-02-20 10:26 - 00000000 ____D C:\Program Files\Seggger 2016-02-20 10:25 - 2016-02-20 10:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0 2016-02-20 10:25 - 2010-08-31 13:23 - 00254976 _____ (Jungo) C:\Windows\system32\Drivers\windrvr6.sys 2016-02-20 10:25 - 2010-01-17 20:13 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi1011.dll 2016-02-20 10:25 - 2009-09-02 11:48 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1010.dll 2016-02-20 10:25 - 2009-07-14 10:07 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1002.dll 2016-02-20 10:25 - 2009-05-14 13:21 - 00157184 _____ (Jungo) C:\Windows\SysWOW64\wdapi1001.dll 2016-02-20 10:25 - 2008-07-04 09:51 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi921.dll 2016-02-20 10:25 - 2006-10-18 15:39 - 00141824 _____ (Jungo) C:\Windows\SysWOW64\wdapi811.dll 2016-02-20 10:24 - 2016-02-20 10:24 - 00000000 ____D C:\Program Files\Microsoft Help Viewer 2016-02-20 10:24 - 2016-02-20 10:24 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Windows\SysWOW64\1033 2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Visual Studio 2010 2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0 2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs 2016-02-20 09:37 - 2016-02-20 09:37 - 00000771 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte - Shortcut.lnk 2016-02-20 09:32 - 2016-02-20 09:32 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte 2016-02-20 09:29 - 2016-02-20 09:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\MCS Electronics 2016-02-20 09:28 - 2016-02-20 09:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\MCS Electronics 2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\MCS Electronics 2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics 2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\Program Files (x86)\MCS Electronics 2016-02-19 20:10 - 2016-02-19 20:10 - 00001230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2016-02-19 20:10 - 2016-02-19 20:10 - 00001218 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2016-02-19 17:41 - 2016-02-19 17:41 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys 2016-02-19 17:41 - 2016-02-19 17:41 - 00003450 _____ C:\Windows\System32\Tasks\SpyHunter4Startup 2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Enigma Software Group 2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 ____D C:\sh4ldr 2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 _____ C:\autoexec.bat 2016-02-19 16:40 - 2016-02-19 16:49 - 00000000 ____D C:\Program Files (x86)\SprgFiles 2016-02-19 16:40 - 2016-02-19 16:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverRestore 2016-02-19 16:40 - 2016-02-19 16:40 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\SpringFiles 2016-02-19 13:43 - 2016-02-19 13:43 - 00003972 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2016-02-19 13:43 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Adobe 2016-02-19 13:43 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\CEF 2016-02-19 13:42 - 2016-02-19 13:45 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-02-19 13:42 - 2016-02-19 13:44 - 00000000 ____D C:\ProgramData\Adobe 2016-02-19 13:42 - 2016-02-19 13:42 - 00002126 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2016-02-19 13:42 - 2016-02-19 13:42 - 00000000 ____D C:\Program Files (x86)\Adobe 2016-02-19 13:41 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Adobe 2016-02-19 10:06 - 2016-02-19 10:06 - 00000000 ____D C:\Windows\system32\SleepStudy 2016-02-18 19:57 - 2016-02-26 10:02 - 00001144 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-02-18 19:57 - 2016-02-18 19:57 - 00004202 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2016-02-18 19:57 - 2016-02-18 19:57 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Google 2016-02-18 19:56 - 2016-02-25 20:01 - 00001140 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-02-18 19:56 - 2016-02-21 17:54 - 00000000 ____D C:\Program Files (x86)\Google 2016-02-18 19:56 - 2016-02-18 19:56 - 00003970 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2016-02-18 19:53 - 2016-02-18 19:53 - 00000764 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Arbeitsdateien - Shortcut.lnk 2016-02-18 19:50 - 2016-02-18 19:50 - 00000675 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\GPS - Shortcut.lnk 2016-02-18 19:49 - 2016-02-18 19:49 - 00000780 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kranich_Projekte - Shortcut.lnk 2016-02-18 19:43 - 2016-02-18 19:43 - 00000707 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\TK102-2 -Shortcut.lnk 2016-02-18 19:33 - 2016-02-22 08:07 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio 2016-02-18 18:46 - 2016-02-18 18:46 - 31367109 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\vlc-2.2.2-win64.exe 2016-02-18 16:44 - 2016-02-18 16:47 - 00000000 ____D C:\Windows\system32\MRT 2016-02-18 16:44 - 2016-02-18 16:44 - 146614896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-02-18 16:33 - 2016-02-18 16:33 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help 2016-02-18 16:33 - 2016-02-18 16:33 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help 2016-02-18 16:30 - 2016-01-31 07:23 - 02601160 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll 2016-02-18 16:30 - 2016-01-31 07:04 - 01811360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll 2016-02-18 16:30 - 2016-01-31 06:38 - 21873152 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll 2016-02-18 16:30 - 2016-01-31 06:34 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll 2016-02-18 16:30 - 2016-01-31 06:33 - 24593920 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-02-18 16:30 - 2016-01-31 06:25 - 12504576 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-02-18 16:30 - 2016-01-31 06:25 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-02-18 16:30 - 2016-01-31 06:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll 2016-02-18 16:30 - 2016-01-31 06:25 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys 2016-02-18 16:30 - 2016-01-31 06:23 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2016-02-18 16:30 - 2016-01-31 06:22 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll 2016-02-18 16:30 - 2016-01-31 06:17 - 19324928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-02-18 16:30 - 2016-01-31 06:17 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll 2016-02-18 16:30 - 2016-01-31 06:14 - 07525376 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll 2016-02-18 16:30 - 2016-01-31 06:14 - 03588096 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys 2016-02-18 16:30 - 2016-01-31 06:13 - 04791808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-02-18 16:30 - 2016-01-31 06:11 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll 2016-02-18 16:30 - 2016-01-31 06:07 - 18802176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll 2016-02-18 16:30 - 2016-01-31 06:04 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll 2016-02-18 16:30 - 2016-01-31 06:02 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-02-18 16:30 - 2016-01-31 06:00 - 11263488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-02-18 16:30 - 2016-01-31 05:59 - 05457408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll 2016-02-18 16:30 - 2016-01-05 04:06 - 08022368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-02-18 16:30 - 2016-01-05 04:06 - 01063504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll 2016-02-18 16:30 - 2016-01-05 04:06 - 00119800 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL 2016-02-18 16:30 - 2016-01-05 04:04 - 02824248 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2016-02-18 16:30 - 2016-01-05 03:30 - 00882208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll 2016-02-18 16:30 - 2016-01-05 03:30 - 00100712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL 2016-02-18 16:30 - 2016-01-05 03:28 - 02445128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll 2016-02-18 16:30 - 2016-01-05 03:09 - 01234944 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2016-02-18 16:30 - 2016-01-05 02:57 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2016-02-18 16:30 - 2016-01-05 02:57 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-02-18 16:30 - 2016-01-05 02:29 - 00650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-02-18 16:30 - 2016-01-05 02:29 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-02-18 16:30 - 2016-01-05 02:26 - 00373760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-02-18 16:30 - 2015-11-25 06:40 - 00516448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS 2016-02-18 16:30 - 2015-11-25 05:49 - 01569280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll 2016-02-18 16:30 - 2015-11-25 05:30 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys 2016-02-18 16:30 - 2015-11-25 05:30 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys 2016-02-18 16:30 - 2015-11-25 05:22 - 01383424 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys 2016-02-18 16:30 - 2015-11-25 05:18 - 01233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll 2016-02-18 16:30 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll 2016-02-18 16:30 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2016-02-18 16:30 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2016-02-18 16:30 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys 2016-02-18 16:30 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll 2016-02-18 16:30 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2016-02-18 16:30 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2016-02-18 16:30 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2016-02-18 16:30 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2016-02-18 16:30 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2016-02-18 16:30 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2016-02-18 16:30 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2016-02-18 16:30 - 2015-09-17 07:48 - 02432336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2016-02-18 16:30 - 2015-09-17 07:48 - 00406864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2016-02-18 16:30 - 2015-09-17 07:06 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll 2016-02-18 16:30 - 2015-09-17 07:06 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll 2016-02-18 16:30 - 2015-09-17 07:03 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe 2016-02-18 16:30 - 2015-09-17 07:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll 2016-02-18 16:30 - 2015-09-17 06:55 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll 2016-02-18 16:30 - 2015-09-17 06:52 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll 2016-02-18 16:30 - 2015-09-17 06:52 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll 2016-02-18 16:30 - 2015-09-17 06:51 - 01812480 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll 2016-02-18 16:30 - 2015-09-17 06:50 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys 2016-02-18 16:30 - 2015-09-17 06:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\buttonconverter.sys 2016-02-18 16:30 - 2015-09-17 06:48 - 02093056 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll 2016-02-18 16:30 - 2015-09-17 06:47 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll 2016-02-18 16:30 - 2015-09-17 06:46 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll 2016-02-18 16:30 - 2015-09-17 06:46 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll 2016-02-18 16:30 - 2015-09-17 06:44 - 01844736 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll 2016-02-18 16:30 - 2015-09-17 06:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll 2016-02-18 16:30 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll 2016-02-18 16:30 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-02-18 16:30 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll 2016-02-18 16:30 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2016-02-18 16:30 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS 2016-02-18 16:30 - 2015-08-11 11:03 - 00442208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2016-02-18 16:30 - 2015-08-11 11:02 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys 2016-02-18 16:30 - 2015-08-11 10:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\tetheringclient.dll 2016-02-18 16:30 - 2015-08-11 10:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe 2016-02-18 16:29 - 2016-01-31 07:25 - 01951872 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2016-02-18 16:29 - 2016-01-31 07:25 - 01248896 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll 2016-02-18 16:29 - 2016-01-31 07:24 - 01824880 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-02-18 16:29 - 2016-01-31 07:23 - 01420392 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll 2016-02-18 16:29 - 2016-01-31 07:06 - 01535032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-02-18 16:29 - 2016-01-31 07:06 - 01531368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2016-02-18 16:29 - 2016-01-31 07:06 - 00809336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll 2016-02-18 16:29 - 2016-01-31 07:04 - 01180696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll 2016-02-18 16:29 - 2016-01-31 06:33 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\IoTAssignedAccessLockFramework.dll 2016-02-18 16:29 - 2016-01-31 06:29 - 11557888 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2016-02-18 16:29 - 2016-01-31 06:26 - 06787072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2016-02-18 16:29 - 2016-01-31 06:26 - 03793408 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2016-02-18 16:29 - 2016-01-31 06:20 - 02849792 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-02-18 16:29 - 2016-01-31 06:19 - 01602560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-02-18 16:29 - 2016-01-31 06:19 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll 2016-02-18 16:29 - 2016-01-31 06:16 - 09889280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2016-02-18 16:29 - 2016-01-31 06:16 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-02-18 16:29 - 2016-01-31 06:11 - 05156352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2016-02-18 16:29 - 2016-01-31 06:11 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll 2016-02-18 16:29 - 2016-01-31 06:06 - 02316800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-02-18 16:29 - 2016-01-31 06:05 - 01380864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-02-18 16:29 - 2016-01-31 06:02 - 00768000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-02-18 16:29 - 2016-01-05 04:07 - 02463704 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2016-02-18 16:29 - 2016-01-05 04:07 - 00377592 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL 2016-02-18 16:29 - 2016-01-05 04:06 - 01991120 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL 2016-02-18 16:29 - 2016-01-05 04:06 - 01270104 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 02641928 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2016-02-18 16:29 - 2016-01-05 04:04 - 01150816 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00862056 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00787720 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL 2016-02-18 16:29 - 2016-01-05 04:04 - 00784136 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00779928 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00772448 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00751992 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL 2016-02-18 16:29 - 2016-01-05 04:04 - 00667856 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00233992 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00115704 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL 2016-02-18 16:29 - 2016-01-05 04:04 - 00090912 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00083704 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll 2016-02-18 16:29 - 2016-01-05 03:59 - 00781976 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll 2016-02-18 16:29 - 2016-01-05 03:50 - 01083072 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-02-18 16:29 - 2016-01-05 03:50 - 00723648 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-02-18 16:29 - 2016-01-05 03:50 - 00345080 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL 2016-02-18 16:29 - 2016-01-05 03:50 - 00205072 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL 2016-02-18 16:29 - 2016-01-05 03:30 - 02459096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2016-02-18 16:29 - 2016-01-05 03:30 - 02162064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL 2016-02-18 16:29 - 2016-01-05 03:30 - 02152744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2016-02-18 16:29 - 2016-01-05 03:30 - 01106872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll 2016-02-18 16:29 - 2016-01-05 03:30 - 00368776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL 2016-02-18 16:29 - 2016-01-05 03:29 - 00208688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll 2016-02-18 16:29 - 2016-01-05 03:28 - 00714808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll 2016-02-18 16:29 - 2016-01-05 03:28 - 00696192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL 2016-02-18 16:29 - 2016-01-05 03:28 - 00695752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL 2016-02-18 16:29 - 2016-01-05 03:28 - 00645144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll 2016-02-18 16:29 - 2016-01-05 03:28 - 00635312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2016-02-18 16:29 - 2016-01-05 03:28 - 00497896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2016-02-18 16:29 - 2016-01-05 03:28 - 00107952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL 2016-02-18 16:29 - 2016-01-05 03:28 - 00082096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll 2016-02-18 16:29 - 2016-01-05 03:28 - 00072808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll 2016-02-18 16:29 - 2016-01-05 03:21 - 00658528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll 2016-02-18 16:29 - 2016-01-05 03:15 - 00931328 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL 2016-02-18 16:29 - 2016-01-05 03:15 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\usermgrcli.dll 2016-02-18 16:29 - 2016-01-05 03:10 - 00305776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL 2016-02-18 16:29 - 2016-01-05 03:10 - 00188032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL 2016-02-18 16:29 - 2016-01-05 03:09 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2016-02-18 16:29 - 2016-01-05 03:02 - 01672192 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2016-02-18 16:29 - 2016-01-05 03:02 - 00678912 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2016-02-18 16:29 - 2016-01-05 03:00 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-02-18 16:29 - 2016-01-05 02:59 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-02-18 16:29 - 2016-01-05 02:57 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll 2016-02-18 16:29 - 2016-01-05 02:51 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL 2016-02-18 16:29 - 2016-01-05 02:51 - 01009664 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL 2016-02-18 16:29 - 2016-01-05 02:51 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL 2016-02-18 16:29 - 2016-01-05 02:51 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL 2016-02-18 16:29 - 2016-01-05 02:51 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL 2016-02-18 16:29 - 2016-01-05 02:44 - 00159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll 2016-02-18 16:29 - 2016-01-05 02:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usermgrcli.dll 2016-02-18 16:29 - 2016-01-05 02:42 - 00871936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL 2016-02-18 16:29 - 2016-01-05 02:32 - 01541632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2016-02-18 16:29 - 2016-01-05 02:32 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2016-02-18 16:29 - 2016-01-05 02:31 - 00563200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2016-02-18 16:29 - 2016-01-05 02:20 - 00890880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL 2016-02-18 16:29 - 2016-01-05 02:19 - 01070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL 2016-02-18 16:29 - 2016-01-05 02:19 - 00747008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL 2016-02-18 16:29 - 2016-01-05 02:19 - 00409088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL 2016-02-18 16:29 - 2016-01-05 02:19 - 00404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL 2016-02-18 16:29 - 2015-12-01 07:03 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\gpuenergydrv.sys 2016-02-18 16:29 - 2015-11-25 06:42 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2016-02-18 16:29 - 2015-11-25 06:42 - 00168288 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.exe 2016-02-18 16:29 - 2015-11-25 06:33 - 03622272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-02-18 16:29 - 2015-11-25 06:27 - 01366680 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll 2016-02-18 16:29 - 2015-11-25 06:12 - 04047288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2016-02-18 16:29 - 2015-11-25 06:09 - 01310880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll 2016-02-18 16:29 - 2015-11-25 06:01 - 02879024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-02-18 16:29 - 2015-11-25 05:49 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll 2016-02-18 16:29 - 2015-11-25 05:49 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll 2016-02-18 16:29 - 2015-11-25 05:49 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\RasMediaManager.dll 2016-02-18 16:29 - 2015-11-25 05:48 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\EthernetMediaManager.dll 2016-02-18 16:29 - 2015-11-25 05:48 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\DAMediaManager.dll 2016-02-18 16:29 - 2015-11-25 05:37 - 02350592 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2016-02-18 16:29 - 2015-11-25 05:36 - 01710592 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll 2016-02-18 16:29 - 2015-11-25 05:35 - 00929792 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll 2016-02-18 16:29 - 2015-11-25 05:35 - 00845824 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe 2016-02-18 16:29 - 2015-11-25 05:31 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll 2016-02-18 16:29 - 2015-11-25 05:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll 2016-02-18 16:29 - 2015-11-25 05:29 - 01649152 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll 2016-02-18 16:29 - 2015-11-25 05:29 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\ninput.dll 2016-02-18 16:29 - 2015-11-25 05:27 - 02180608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll 2016-02-18 16:29 - 2015-11-25 05:23 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-02-18 16:29 - 2015-11-25 05:22 - 01717248 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll 2016-02-18 16:29 - 2015-11-25 05:22 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll 2016-02-18 16:29 - 2015-11-25 05:19 - 01795584 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll 2016-02-18 16:29 - 2015-11-25 05:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll 2016-02-18 16:29 - 2015-11-25 05:17 - 00774656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll 2016-02-18 16:29 - 2015-11-25 05:16 - 01442816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll 2016-02-18 16:29 - 2015-11-25 05:16 - 00786432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe 2016-02-18 16:29 - 2015-11-25 05:13 - 02153984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2016-02-18 16:29 - 2015-11-25 05:10 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll 2016-02-18 16:29 - 2015-11-25 05:04 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll 2016-02-18 16:29 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll 2016-02-18 16:29 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll 2016-02-18 16:29 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll 2016-02-18 16:29 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll 2016-02-18 16:29 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll 2016-02-18 16:29 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe 2016-02-18 16:29 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll 2016-02-18 16:29 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll 2016-02-18 16:29 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll 2016-02-18 16:29 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll 2016-02-18 16:29 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll 2016-02-18 16:29 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll 2016-02-18 16:29 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll 2016-02-18 16:29 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll 2016-02-18 16:29 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll 2016-02-18 16:29 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll 2016-02-18 16:29 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2016-02-18 16:29 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2016-02-18 16:29 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll 2016-02-18 16:29 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2016-02-18 16:29 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll 2016-02-18 16:29 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2016-02-18 16:29 - 2015-09-17 07:50 - 00099664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys 2016-02-18 16:29 - 2015-09-17 07:49 - 06487248 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll 2016-02-18 16:29 - 2015-09-17 07:49 - 00894256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2016-02-18 16:29 - 2015-09-17 07:49 - 00553808 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe 2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ C:\Windows\system32\CoreUIComponents.dll 2016-02-18 16:29 - 2015-09-17 07:48 - 02156400 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll 2016-02-18 16:29 - 2015-09-17 07:48 - 01983824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2016-02-18 16:29 - 2015-09-17 07:48 - 00555768 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll 2016-02-18 16:29 - 2015-09-17 07:48 - 00476760 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll 2016-02-18 16:29 - 2015-09-17 07:37 - 01295712 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll 2016-02-18 16:29 - 2015-09-17 07:28 - 05120056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll 2016-02-18 16:29 - 2015-09-17 07:28 - 00441168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe 2016-02-18 16:29 - 2015-09-17 07:28 - 00074880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll 2016-02-18 16:29 - 2015-09-17 07:27 - 01766952 _____ C:\Windows\SysWOW64\CoreUIComponents.dll 2016-02-18 16:29 - 2015-09-17 07:27 - 00454512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll 2016-02-18 16:29 - 2015-09-17 07:26 - 01895568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll 2016-02-18 16:29 - 2015-09-17 07:26 - 00434376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll 2016-02-18 16:29 - 2015-09-17 07:05 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll 2016-02-18 16:29 - 2015-09-17 07:05 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll 2016-02-18 16:29 - 2015-09-17 07:04 - 07569408 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll 2016-02-18 16:29 - 2015-09-17 07:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll 2016-02-18 16:29 - 2015-09-17 07:00 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll 2016-02-18 16:29 - 2015-09-17 06:57 - 02228736 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll 2016-02-18 16:29 - 2015-09-17 06:56 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll 2016-02-18 16:29 - 2015-09-17 06:55 - 00671232 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll 2016-02-18 16:29 - 2015-09-17 06:54 - 03781120 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll 2016-02-18 16:29 - 2015-09-17 06:54 - 00780288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll 2016-02-18 16:29 - 2015-09-17 06:54 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2016-02-18 16:29 - 2015-09-17 06:53 - 07055872 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll 2016-02-18 16:29 - 2015-09-17 06:52 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll 2016-02-18 16:29 - 2015-09-17 06:52 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll 2016-02-18 16:29 - 2015-09-17 06:52 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll 2016-02-18 16:29 - 2015-09-17 06:51 - 02660864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll 2016-02-18 16:29 - 2015-09-17 06:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\LocationGeofences.dll 2016-02-18 16:29 - 2015-09-17 06:49 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll 2016-02-18 16:29 - 2015-09-17 06:47 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll 2016-02-18 16:29 - 2015-09-17 06:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll 2016-02-18 16:29 - 2015-09-17 06:46 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll 2016-02-18 16:29 - 2015-09-17 06:45 - 01331200 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll 2016-02-18 16:29 - 2015-09-17 06:43 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll 2016-02-18 16:29 - 2015-09-17 06:40 - 06101504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll 2016-02-18 16:29 - 2015-09-17 06:39 - 00587264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll 2016-02-18 16:29 - 2015-09-17 06:39 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2016-02-18 16:29 - 2015-09-17 06:36 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll 2016-02-18 16:29 - 2015-09-17 06:35 - 05079552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll 2016-02-18 16:29 - 2015-09-17 06:35 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll 2016-02-18 16:29 - 2015-09-17 06:30 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll 2016-02-18 16:29 - 2015-09-17 06:29 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll 2016-02-18 16:29 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll 2016-02-18 16:29 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.PicturePassword.dll 2016-02-18 16:29 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2016-02-18 16:29 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll 2016-02-18 16:29 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2016-02-18 16:29 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll 2016-02-18 16:29 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll 2016-02-18 16:29 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll 2016-02-18 16:29 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll 2016-02-18 16:29 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll 2016-02-18 16:29 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2016-02-18 16:29 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll 2016-02-18 16:29 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll 2016-02-18 16:29 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll 2016-02-18 16:29 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll 2016-02-18 16:29 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll 2016-02-18 16:29 - 2015-08-11 10:50 - 01643872 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2016-02-18 16:29 - 2015-08-11 10:08 - 00893440 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll 2016-02-18 16:29 - 2015-08-11 10:05 - 03527168 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll 2016-02-18 16:29 - 2015-08-11 10:05 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\LocationPermissions.dll 2016-02-18 16:29 - 2015-08-11 10:03 - 02558976 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll 2016-02-18 16:29 - 2015-08-11 09:48 - 00671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll 2016-02-18 16:29 - 2015-08-11 09:43 - 02748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll 2016-02-18 16:29 - 2015-08-11 09:40 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll 2016-02-18 16:28 - 2016-01-31 06:29 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rasman.dll 2016-02-18 16:28 - 2016-01-31 06:24 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2016-02-18 16:28 - 2016-01-31 06:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2016-02-18 16:28 - 2016-01-31 06:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2016-02-18 16:28 - 2016-01-31 06:19 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IoTAssignedAccessLockFramework.dll 2016-02-18 16:28 - 2016-01-31 06:18 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll 2016-02-18 16:28 - 2016-01-31 06:18 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll 2016-02-18 16:28 - 2016-01-31 06:13 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasman.dll 2016-02-18 16:28 - 2016-01-31 06:13 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\ztrace_maps.dll 2016-02-18 16:28 - 2016-01-31 06:11 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2016-02-18 16:28 - 2016-01-31 06:05 - 00574464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll 2016-02-18 16:28 - 2016-01-31 06:05 - 00118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll 2016-02-18 16:28 - 2016-01-31 05:58 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ztrace_maps.dll 2016-02-18 16:28 - 2016-01-05 04:04 - 01591848 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-02-18 16:28 - 2016-01-05 04:04 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL 2016-02-18 16:28 - 2016-01-05 04:04 - 00249464 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL 2016-02-18 16:28 - 2016-01-05 04:04 - 00243248 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll |
26.02.2016, 10:28 | #4 |
| Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit Hier der zweite Teil von Fst.txt: 2016-02-18 16:28 - 2016-01-05 03:52 - 00441696 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-02-18 16:28 - 2016-01-05 03:50 - 01817064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll 2016-02-18 16:28 - 2016-01-05 03:50 - 00251544 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL 2016-02-18 16:28 - 2016-01-05 03:31 - 01365576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2016-02-18 16:28 - 2016-01-05 03:30 - 00232896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL 2016-02-18 16:28 - 2016-01-05 03:28 - 00277400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL 2016-02-18 16:28 - 2016-01-05 03:28 - 00116728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2016-02-18 16:28 - 2016-01-05 03:15 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll 2016-02-18 16:28 - 2016-01-05 03:10 - 00539136 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll 2016-02-18 16:28 - 2016-01-05 03:10 - 00278424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL 2016-02-18 16:28 - 2016-01-05 03:02 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2016-02-18 16:28 - 2016-01-05 03:01 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax 2016-02-18 16:28 - 2016-01-05 02:38 - 00556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll 2016-02-18 16:28 - 2016-01-05 02:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax 2016-02-18 16:28 - 2015-12-01 08:01 - 02115936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2016-02-18 16:28 - 2015-11-25 06:32 - 00113184 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll 2016-02-18 16:28 - 2015-11-25 05:59 - 00092992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll 2016-02-18 16:28 - 2015-11-25 05:36 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys 2016-02-18 16:28 - 2015-11-25 05:28 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll 2016-02-18 16:28 - 2015-11-25 05:26 - 00849408 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll 2016-02-18 16:28 - 2015-11-25 05:26 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll 2016-02-18 16:28 - 2015-11-25 05:25 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll 2016-02-18 16:28 - 2015-11-25 05:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll 2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll 2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZST.DLL 2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL 2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL 2016-02-18 16:28 - 2015-11-25 05:11 - 00296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll 2016-02-18 16:28 - 2015-11-25 05:10 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll 2016-02-18 16:28 - 2015-11-25 05:08 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll 2016-02-18 16:28 - 2015-11-25 05:07 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll 2016-02-18 16:28 - 2015-11-25 05:04 - 00480768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll 2016-02-18 16:28 - 2015-11-25 05:04 - 00474624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll 2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZST.DLL 2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL 2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL 2016-02-18 16:28 - 2015-11-25 03:52 - 00775312 _____ C:\Windows\SysWOW64\locale.nls 2016-02-18 16:28 - 2015-11-25 03:52 - 00775312 _____ C:\Windows\system32\locale.nls 2016-02-18 16:28 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe 2016-02-18 16:28 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-02-18 16:28 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll 2016-02-18 16:28 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll 2016-02-18 16:28 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll 2016-02-18 16:28 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll 2016-02-18 16:28 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll 2016-02-18 16:28 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll 2016-02-18 16:28 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-02-18 16:28 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2016-02-18 16:28 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2016-02-18 16:28 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2016-02-18 16:28 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2016-02-18 16:28 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2016-02-18 16:28 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi 2016-02-18 16:28 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll 2016-02-18 16:28 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll 2016-02-18 16:28 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll 2016-02-18 16:28 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll 2016-02-18 16:28 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll 2016-02-18 16:28 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll 2016-02-18 16:28 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll 2016-02-18 16:28 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll 2016-02-18 16:28 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll 2016-02-18 16:28 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll 2016-02-18 16:28 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll 2016-02-18 16:28 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll 2016-02-18 16:28 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\CallHistoryClient.dll 2016-02-18 16:28 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll 2016-02-18 16:28 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll 2016-02-18 16:28 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2016-02-18 16:28 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll 2016-02-18 16:28 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll 2016-02-18 16:28 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll 2016-02-18 16:28 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll 2016-02-18 16:28 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll 2016-02-18 16:28 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallHistoryClient.dll 2016-02-18 16:28 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll 2016-02-18 16:28 - 2015-09-19 06:14 - 00102304 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll 2016-02-18 16:28 - 2015-09-17 07:50 - 01563392 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll 2016-02-18 16:28 - 2015-09-17 07:50 - 00088384 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll 2016-02-18 16:28 - 2015-09-17 07:49 - 01563472 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll 2016-02-18 16:28 - 2015-09-17 07:49 - 00501008 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2016-02-18 16:28 - 2015-09-17 07:48 - 00809352 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll 2016-02-18 16:28 - 2015-09-17 07:48 - 00584656 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2016-02-18 16:28 - 2015-09-17 07:48 - 00537080 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll 2016-02-18 16:28 - 2015-09-17 07:48 - 00505696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys 2016-02-18 16:28 - 2015-09-17 07:48 - 00395088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2016-02-18 16:28 - 2015-09-17 07:48 - 00332624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys 2016-02-18 16:28 - 2015-09-17 07:48 - 00278352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys 2016-02-18 16:28 - 2015-09-17 07:37 - 01168736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2016-02-18 16:28 - 2015-09-17 07:28 - 01357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll 2016-02-18 16:28 - 2015-09-17 07:28 - 00407608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2016-02-18 16:28 - 2015-09-17 07:26 - 00508248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2016-02-18 16:28 - 2015-09-17 07:26 - 00428128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll 2016-02-18 16:28 - 2015-09-17 07:11 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll 2016-02-18 16:28 - 2015-09-17 07:10 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll 2016-02-18 16:28 - 2015-09-17 07:09 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll 2016-02-18 16:28 - 2015-09-17 07:09 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll 2016-02-18 16:28 - 2015-09-17 07:08 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll 2016-02-18 16:28 - 2015-09-17 07:08 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll 2016-02-18 16:28 - 2015-09-17 07:08 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerShellext.exe 2016-02-18 16:28 - 2015-09-17 07:04 - 00910848 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll 2016-02-18 16:28 - 2015-09-17 07:03 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll 2016-02-18 16:28 - 2015-09-17 07:03 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll 2016-02-18 16:28 - 2015-09-17 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe 2016-02-18 16:28 - 2015-09-17 07:02 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll 2016-02-18 16:28 - 2015-09-17 07:00 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll 2016-02-18 16:28 - 2015-09-17 06:58 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll 2016-02-18 16:28 - 2015-09-17 06:57 - 00403456 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll 2016-02-18 16:28 - 2015-09-17 06:57 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll 2016-02-18 16:28 - 2015-09-17 06:57 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll 2016-02-18 16:28 - 2015-09-17 06:56 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll 2016-02-18 16:28 - 2015-09-17 06:56 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll 2016-02-18 16:28 - 2015-09-17 06:55 - 01601536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll 2016-02-18 16:28 - 2015-09-17 06:55 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll 2016-02-18 16:28 - 2015-09-17 06:55 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll 2016-02-18 16:28 - 2015-09-17 06:55 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe 2016-02-18 16:28 - 2015-09-17 06:55 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll 2016-02-18 16:28 - 2015-09-17 06:52 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll 2016-02-18 16:28 - 2015-09-17 06:52 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll 2016-02-18 16:28 - 2015-09-17 06:52 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll 2016-02-18 16:28 - 2015-09-17 06:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll 2016-02-18 16:28 - 2015-09-17 06:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll 2016-02-18 16:28 - 2015-09-17 06:51 - 01203712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll 2016-02-18 16:28 - 2015-09-17 06:51 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll 2016-02-18 16:28 - 2015-09-17 06:51 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll 2016-02-18 16:28 - 2015-09-17 06:50 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll 2016-02-18 16:28 - 2015-09-17 06:50 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll 2016-02-18 16:28 - 2015-09-17 06:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeWiFi.dll 2016-02-18 16:28 - 2015-09-17 06:50 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeCell.dll 2016-02-18 16:28 - 2015-09-17 06:49 - 01290240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll 2016-02-18 16:28 - 2015-09-17 06:49 - 00439296 _____ (Microsoft Corporation) C:\Windows\system32\LocationWebproxy.dll 2016-02-18 16:28 - 2015-09-17 06:49 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\LocationCrowdsource.dll 2016-02-18 16:28 - 2015-09-17 06:49 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeIP.dll 2016-02-18 16:28 - 2015-09-17 06:49 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\LocationWiFiAdapter.dll 2016-02-18 16:28 - 2015-09-17 06:49 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Speech.Pal.dll 2016-02-18 16:28 - 2015-09-17 06:48 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll 2016-02-18 16:28 - 2015-09-17 06:48 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll 2016-02-18 16:28 - 2015-09-17 06:48 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll 2016-02-18 16:28 - 2015-09-17 06:48 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll 2016-02-18 16:28 - 2015-09-17 06:48 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll 2016-02-18 16:28 - 2015-09-17 06:47 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll 2016-02-18 16:28 - 2015-09-17 06:46 - 00928256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll 2016-02-18 16:28 - 2015-09-17 06:46 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll 2016-02-18 16:28 - 2015-09-17 06:46 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe 2016-02-18 16:28 - 2015-09-17 06:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\syncmlhook.dll 2016-02-18 16:28 - 2015-09-17 06:45 - 00869376 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll 2016-02-18 16:28 - 2015-09-17 06:45 - 00832512 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll 2016-02-18 16:28 - 2015-09-17 06:45 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll 2016-02-18 16:28 - 2015-09-17 06:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll 2016-02-18 16:28 - 2015-09-17 06:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\syncutil.dll 2016-02-18 16:28 - 2015-09-17 06:43 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll 2016-02-18 16:28 - 2015-09-17 06:43 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll 2016-02-18 16:28 - 2015-09-17 06:41 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll 2016-02-18 16:28 - 2015-09-17 06:40 - 01162240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll 2016-02-18 16:28 - 2015-09-17 06:38 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll 2016-02-18 16:28 - 2015-09-17 06:37 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll 2016-02-18 16:28 - 2015-09-17 06:35 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll 2016-02-18 16:28 - 2015-09-17 06:34 - 00253440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll 2016-02-18 16:28 - 2015-09-17 06:32 - 00336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll 2016-02-18 16:28 - 2015-09-17 06:32 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll 2016-02-18 16:28 - 2015-09-17 06:32 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2016-02-18 16:28 - 2015-09-17 06:31 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll 2016-02-18 16:28 - 2015-09-17 06:29 - 00701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll 2016-02-18 16:28 - 2015-09-17 06:29 - 00677888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll 2016-02-18 16:28 - 2015-09-17 06:28 - 00473088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll 2016-02-18 16:28 - 2015-09-17 06:26 - 00899584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll 2016-02-18 16:28 - 2015-09-17 06:16 - 00512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll 2016-02-18 16:28 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-02-18 16:28 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll 2016-02-18 16:28 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2016-02-18 16:28 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll 2016-02-18 16:28 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe 2016-02-18 16:28 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll 2016-02-18 16:28 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll 2016-02-18 16:28 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll 2016-02-18 16:28 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll 2016-02-18 16:28 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll 2016-02-18 16:28 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll 2016-02-18 16:28 - 2015-08-18 07:54 - 00247296 _____ C:\Windows\system32\facecredentialprovider.dll 2016-02-18 16:28 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll 2016-02-18 16:28 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll 2016-02-18 16:28 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll 2016-02-18 16:28 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll 2016-02-18 16:28 - 2015-08-18 05:44 - 00008847 _____ C:\Windows\system32\ResPriHMImageList 2016-02-18 16:28 - 2015-08-11 11:04 - 01087296 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2016-02-18 16:28 - 2015-08-11 11:02 - 00292856 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe 2016-02-18 16:28 - 2015-08-11 10:52 - 00993104 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll 2016-02-18 16:28 - 2015-08-11 10:40 - 00918320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2016-02-18 16:28 - 2015-08-11 10:37 - 00243800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe 2016-02-18 16:28 - 2015-08-11 10:26 - 00845664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll 2016-02-18 16:28 - 2015-08-11 10:19 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll 2016-02-18 16:28 - 2015-08-11 10:14 - 00404480 _____ C:\Windows\system32\diagtrack_wininternal.dll 2016-02-18 16:28 - 2015-08-11 10:13 - 00413184 _____ C:\Windows\system32\diagtrack_win.dll 2016-02-18 16:28 - 2015-08-11 10:11 - 02446336 _____ C:\Windows\system32\InputService.dll 2016-02-18 16:28 - 2015-08-11 10:11 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe 2016-02-18 16:28 - 2015-08-11 10:10 - 00293376 _____ C:\Windows\system32\TextInputFramework.dll 2016-02-18 16:28 - 2015-08-11 10:09 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll 2016-02-18 16:28 - 2015-08-11 10:05 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll 2016-02-18 16:28 - 2015-08-11 10:00 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe 2016-02-18 16:28 - 2015-08-11 09:59 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll 2016-02-18 16:28 - 2015-08-11 09:59 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll 2016-02-18 16:28 - 2015-08-11 09:59 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll 2016-02-18 16:28 - 2015-08-11 09:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tetheringclient.dll 2016-02-18 16:28 - 2015-08-11 09:51 - 01823232 _____ C:\Windows\SysWOW64\InputService.dll 2016-02-18 16:28 - 2015-08-11 09:50 - 00420352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe 2016-02-18 16:28 - 2015-08-11 09:50 - 00200704 _____ C:\Windows\SysWOW64\TextInputFramework.dll 2016-02-18 16:28 - 2015-08-11 09:50 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll 2016-02-18 16:28 - 2015-08-11 09:39 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe 2016-02-18 16:28 - 2015-08-11 09:38 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll 2016-02-18 16:08 - 2016-02-20 17:33 - 00000000 ____D C:\Program Files\Microsoft Games 2016-02-18 16:05 - 2016-02-20 17:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft Games 2016-02-18 16:05 - 2016-02-18 16:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Microsoft Games 2016-02-18 16:00 - 2016-02-18 16:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vista Games 2016-02-18 15:59 - 2010-05-17 08:33 - 00061440 _____ (Rafael & ZoRoNaX) C:\Windows\system32\Vista.Emulation.dll 2016-02-18 13:29 - 2016-02-18 19:35 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\vlc 2016-02-18 13:29 - 2016-02-18 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2016-02-18 13:29 - 2016-02-18 13:29 - 00000000 ____D C:\Program Files\VideoLAN 2016-02-18 12:55 - 2016-02-23 13:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Flight Simulator-Dateien 2016-02-18 12:51 - 2016-02-18 12:51 - 00000000 ____D C:\Users\Public\Documents\Flight Simulator-Dateien 2016-02-18 12:49 - 2016-02-18 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games 2016-02-18 12:43 - 2016-02-25 09:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Programme 2016-02-18 12:42 - 2016-02-18 16:00 - 00000000 ____D C:\Program Files (x86)\Microsoft Games 2016-02-18 11:29 - 2016-02-18 11:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Criterion Games 2016-02-18 11:26 - 2012-04-12 14:25 - 00539136 _____ (Microsoft Corporation) C:\Program Files (x86)\spider.exe 2016-02-18 10:54 - 2016-02-25 18:00 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele 2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online 2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Chat 2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\Program Files (x86)\WestwoodOnline 2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\Program Files (x86)\WestwoodChat 2016-02-18 10:52 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2016-02-18 10:52 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2016-02-18 10:52 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2016-02-18 10:52 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2016-02-18 10:52 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2016-02-18 10:52 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2016-02-18 10:52 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2016-02-18 10:52 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2016-02-18 10:52 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2016-02-18 10:52 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2016-02-18 10:52 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2016-02-18 10:52 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2016-02-18 10:52 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2016-02-18 10:52 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2016-02-18 10:52 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2016-02-18 10:52 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2016-02-18 10:52 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2016-02-18 10:52 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2016-02-18 10:52 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2016-02-18 10:52 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2016-02-18 10:52 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2016-02-18 10:52 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2016-02-18 10:52 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2016-02-18 10:52 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2016-02-18 10:52 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2016-02-18 10:52 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2016-02-18 10:52 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2016-02-18 10:52 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2016-02-18 10:52 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2016-02-18 10:52 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2016-02-18 10:52 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2016-02-18 10:52 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2016-02-18 10:52 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2016-02-18 10:52 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2016-02-18 10:52 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2016-02-18 10:52 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2016-02-18 10:52 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2016-02-18 10:52 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2016-02-18 10:52 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2016-02-18 10:52 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2016-02-18 10:52 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2016-02-18 10:52 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2016-02-18 10:52 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2016-02-18 10:52 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2016-02-18 10:52 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2016-02-18 10:52 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2016-02-18 10:52 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2016-02-18 10:52 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2016-02-18 10:52 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2016-02-18 10:52 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2016-02-18 10:52 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2016-02-18 10:52 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2016-02-18 10:52 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2016-02-18 10:52 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2016-02-18 10:52 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2016-02-18 10:52 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2016-02-18 10:52 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2016-02-18 10:52 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2016-02-18 10:52 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2016-02-18 10:52 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2016-02-18 10:52 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2016-02-18 10:52 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2016-02-18 10:52 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2016-02-18 10:52 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2016-02-18 10:52 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2016-02-18 10:52 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2016-02-18 10:52 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2016-02-18 10:52 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2016-02-18 10:52 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2016-02-18 10:52 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2016-02-18 10:52 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2016-02-18 10:52 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2016-02-18 10:52 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2016-02-18 10:52 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2016-02-18 10:52 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2016-02-18 10:52 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2016-02-18 10:52 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2016-02-18 10:52 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2016-02-18 10:52 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2016-02-18 10:52 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2016-02-18 10:52 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2016-02-18 10:52 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2016-02-18 10:52 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2016-02-18 10:52 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2016-02-18 10:52 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2016-02-18 10:52 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2016-02-18 10:52 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2016-02-18 10:52 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2016-02-18 10:52 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2016-02-18 10:52 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2016-02-18 10:52 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2016-02-18 10:52 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2016-02-18 10:52 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2016-02-18 10:52 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2016-02-18 10:52 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2016-02-18 10:52 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2016-02-18 10:52 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2016-02-18 10:52 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2016-02-18 10:52 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2016-02-18 10:52 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2016-02-18 10:52 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2016-02-18 10:52 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2016-02-18 10:52 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2016-02-18 10:52 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2016-02-18 10:52 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2016-02-18 10:52 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2016-02-18 10:52 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2016-02-18 10:52 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2016-02-18 10:52 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2016-02-18 10:52 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2016-02-18 10:52 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2016-02-18 10:52 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2016-02-18 10:52 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2016-02-18 10:52 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2016-02-18 10:52 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2016-02-18 10:52 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2016-02-18 10:52 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2016-02-18 10:52 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2016-02-18 10:52 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2016-02-18 10:52 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2016-02-18 10:52 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2016-02-18 10:52 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2016-02-18 10:52 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2016-02-18 10:52 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2016-02-18 10:52 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2016-02-18 10:52 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2016-02-18 10:52 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2016-02-18 10:52 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2016-02-18 10:52 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2016-02-18 10:52 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2016-02-18 10:52 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2016-02-18 10:52 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2016-02-18 10:52 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2016-02-18 10:52 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2016-02-18 10:52 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2016-02-18 10:52 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2016-02-18 10:52 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2016-02-18 10:52 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2016-02-18 10:52 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2016-02-18 10:52 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2016-02-18 10:52 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2016-02-18 10:52 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2016-02-18 10:52 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2016-02-18 10:52 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2016-02-18 10:52 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2016-02-18 10:52 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2016-02-18 10:46 - 2016-02-18 15:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Origin 2016-02-18 10:46 - 2016-02-18 11:18 - 00000000 ____D C:\Program Files (x86)\Origin Games 2016-02-18 10:46 - 2016-02-18 10:46 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Origin 2016-02-18 10:43 - 2016-02-25 08:45 - 00000000 ____D C:\ProgramData\Origin 2016-02-18 10:43 - 2016-02-18 11:29 - 00000000 ____D C:\ProgramData\Electronic Arts 2016-02-18 10:43 - 2016-02-18 10:46 - 00000000 ____D C:\Program Files (x86)\Origin 2016-02-18 10:43 - 2016-02-18 10:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2016-02-18 10:42 - 2016-02-18 10:42 - 31335272 _____ (Electronic Arts, Inc.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\OriginThinSetup.exe 2016-02-18 10:25 - 2016-02-23 17:56 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik 2016-02-18 10:11 - 2016-02-18 10:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2 2016-02-18 10:11 - 2016-02-18 10:11 - 00000000 ____D C:\Program Files (x86)\LogView V2 2016-02-18 10:06 - 2016-02-18 10:06 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\LogView 7 2016-02-18 09:56 - 2016-02-18 10:25 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\LogView 2016-02-18 09:52 - 2016-02-18 09:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Comms 2016-02-18 09:42 - 2016-02-25 09:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Grafik 2016-02-18 09:41 - 2016-02-18 09:41 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paint Shop Pro 5 2016-02-18 09:41 - 2016-02-18 09:41 - 00000000 ____D C:\Program Files (x86)\Paint Shop Pro 5 2016-02-18 09:30 - 2016-02-18 09:30 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.android 2016-02-17 21:14 - 2016-02-17 21:14 - 00000000 ___RD C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Brother 2016-02-17 21:13 - 2016-02-22 13:41 - 00000432 _____ C:\Windows\BRWMARK.INI 2016-02-17 21:13 - 2016-02-22 13:41 - 00000034 _____ C:\Windows\SysWOW64\BD2030.DAT 2016-02-17 20:27 - 2016-02-17 20:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\NetworkTiles 2016-02-17 18:35 - 2016-02-19 16:02 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten 2016-02-17 18:11 - 2016-02-17 18:11 - 00026296 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Abrechnung_4475958910292900_20160214.PDF 2016-02-17 17:44 - 2016-02-17 17:45 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Office 2016-02-17 17:42 - 2016-02-21 16:24 - 00425472 _____ (Steganos GmbH) C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\LockNote105.exe 2016-02-17 17:40 - 2016-02-18 16:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Works 2016-02-17 17:40 - 2016-02-17 17:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-02-17 17:39 - 2016-02-17 17:39 - 00000000 ____D C:\Windows\PCHEALTH 2016-02-17 17:36 - 2016-02-17 17:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft Help 2016-02-17 17:36 - 2016-02-17 17:36 - 00000000 ____D C:\Program Files\Microsoft Office 2016-02-17 17:35 - 2016-02-17 17:35 - 00000000 __RHD C:\MSOCache 2016-02-17 17:15 - 2016-02-17 21:20 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\ElevatedDiagnostics 2016-02-17 17:14 - 2016-02-17 17:14 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kaspersky 2016-02-17 17:12 - 2016-02-17 17:12 - 00002026 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Editor.lnk 2016-02-17 17:11 - 2016-02-17 17:11 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\WildTangent 2016-02-17 16:59 - 2016-02-17 16:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2016-02-17 16:59 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll 2016-02-17 16:58 - 2016-02-26 09:01 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2016-02-17 16:58 - 2016-02-25 08:45 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture 2016-02-17 16:58 - 2016-02-17 17:21 - 00934272 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys 2016-02-17 16:58 - 2016-02-17 17:21 - 00181640 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys 2016-02-17 16:58 - 2016-02-17 17:04 - 00227512 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys 2016-02-17 16:58 - 2016-02-17 16:58 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab 2016-02-17 16:43 - 2015-07-09 20:38 - 01996288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0007.dll 2016-02-17 16:43 - 2015-07-09 20:36 - 12039680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsLexicons0007.dll 2016-02-17 16:43 - 2015-07-09 20:26 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0007.dll 2016-02-17 16:43 - 2015-07-09 20:25 - 12039680 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0007.dll 2016-02-17 16:43 - 2015-07-09 20:25 - 11602944 _____ (Microsoft Corporation) C:\Windows\system32\prm0007.dll 2016-02-17 16:42 - 2016-02-17 16:48 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Mozilla 2016-02-17 16:42 - 2016-02-17 16:42 - 00001049 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk 2016-02-17 16:42 - 2016-02-17 16:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla 2016-02-17 16:41 - 2016-02-17 16:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2016-02-17 16:36 - 2016-02-17 16:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\awsRun 2016-02-17 16:33 - 2016-02-17 16:33 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Macromedia 2016-02-17 16:32 - 2016-02-17 20:11 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\MicrosoftEdge 2016-02-17 16:31 - 2016-02-17 16:31 - 00002439 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-02-17 16:31 - 2016-02-17 16:31 - 00000000 ___RD C:\Users\Gunther.DESKTOP-L5KOO87\OneDrive 2016-02-17 16:31 - 2016-02-17 16:31 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\NVIDIA 2016-02-17 16:28 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Adobe 2016-02-17 16:28 - 2016-02-17 16:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\DropboxOEM 2016-02-17 16:28 - 2016-02-17 16:28 - 00003628 _____ C:\Windows\System32\Tasks\ASUS Smart Gesture Launcher 2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\WebStorage 2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Publishers 2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\DropboxOEM 2016-02-17 16:27 - 2016-02-26 09:58 - 00000165 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\sp_data.sys 2016-02-17 16:27 - 2016-02-21 18:31 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87 2016-02-17 16:27 - 2016-02-21 15:35 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\VirtualStore 2016-02-17 16:27 - 2016-02-20 17:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Packages 2016-02-17 16:27 - 2016-02-17 16:27 - 00056952 _____ C:\Windows\system32\ASGCoInstaller_x64.dll 2016-02-17 16:27 - 2016-02-17 16:27 - 00016148 _____ C:\Windows\system32\DESKTOP-L5KOO87_defaultuser0_HistoryPrediction.bin 2016-02-17 16:27 - 2016-02-17 16:27 - 00000020 ___SH C:\Users\Gunther.DESKTOP-L5KOO87\ntuser.ini 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Vorlagen 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Startmenü 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Netzwerkumgebung 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Lokale Einstellungen 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Eigene Dateien 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Druckumgebung 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Videos 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Musik 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Bilder 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Verlauf 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Anwendungsdaten 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Anwendungsdaten 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\TileDataLayer 2016-02-17 16:24 - 2016-02-25 08:44 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2016-02-17 16:18 - 2015-12-09 04:39 - 00301728 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-02-26 10:00 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsNotifyTask_Administrator.job 2016-02-26 08:57 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsUpdateTask_Administrator.job 2016-02-26 08:50 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps 2016-02-26 08:50 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\AppReadiness 2016-02-25 12:00 - 2015-11-11 08:02 - 00003544 _____ C:\Windows\System32\Tasks\ASUS Live Update1 2016-02-25 12:00 - 2015-11-11 08:02 - 00003534 _____ C:\Windows\System32\Tasks\ASUS Live Update2 2016-02-25 09:27 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp 2016-02-25 09:26 - 2015-07-10 17:27 - 00000000 ____D C:\Windows\OCR 2016-02-25 08:44 - 2015-11-11 08:51 - 00000000 __SHD C:\Users\Gunther\IntelGraphicsProfiles 2016-02-24 18:40 - 2015-08-18 14:14 - 00773778 _____ C:\Windows\system32\perfh007.dat 2016-02-24 18:40 - 2015-08-18 14:14 - 00154590 _____ C:\Windows\system32\perfc007.dat 2016-02-24 18:40 - 2015-08-18 06:20 - 01790124 _____ C:\Windows\system32\PerfStringBackup.INI 2016-02-24 18:40 - 2015-07-10 12:02 - 00000000 ____D C:\Windows\INF 2016-02-23 17:55 - 2015-11-11 07:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-02-21 17:22 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-02-21 17:22 - 2015-07-10 13:20 - 00232392 _____ C:\Windows\system32\FNTCACHE.DAT 2016-02-21 17:22 - 2015-07-10 10:05 - 00131072 ___SH C:\Windows\system32\config\BBI 2016-02-21 15:29 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2016-02-21 10:37 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\rescache 2016-02-21 10:34 - 2015-08-18 14:13 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2016-02-21 10:34 - 2015-07-10 17:30 - 00000000 ____D C:\Program Files\Windows Journal 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\winrm 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\WCN 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\slmgr 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\winrm 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\WCN 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\slmgr 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\F12 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\F12 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\dsc 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\DiagSvcs 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\MiracastView 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\ImmersiveControlPanel 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\DevicesFlow 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\oobe 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\MUI 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\Com 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\SystemResetPlatform 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\oobe 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\MUI 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\migwiz 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\Com 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\PolicyDefinitions 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\IME 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Help 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Defender 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\System 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\SysWOW64\Dism 2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Sysprep 2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Dism 2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\servicing 2016-02-21 09:55 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\en-GB 2016-02-21 09:55 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\en-GB 2016-02-21 08:56 - 2015-11-11 07:39 - 00000000 ____D C:\ProgramData\Package Cache 2016-02-20 16:54 - 2015-07-10 12:04 - 00000150 _____ C:\Windows\win.ini 2016-02-20 11:49 - 2015-07-10 12:04 - 00000000 ___HD C:\Windows\system32\GroupPolicy 2016-02-20 10:26 - 2015-11-11 08:02 - 00000000 ____D C:\Program Files\DIFX 2016-02-20 10:25 - 2015-08-18 14:00 - 00000000 ____D C:\Program Files (x86)\MSBuild 2016-02-19 20:10 - 2015-11-11 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-02-19 19:43 - 2015-11-11 10:41 - 00000000 ___HD C:\$SysReset 2016-02-19 16:40 - 2015-11-11 08:23 - 00001732 _____ C:\Users\Public\Desktop\WPS Office.lnk 2016-02-19 15:16 - 2015-11-11 07:36 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\PurchaseDialog 2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioPlugIns 2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\appraiser 2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Provisioning 2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\L2Schemas 2016-02-18 19:53 - 2015-08-18 15:00 - 00000000 ____D C:\Windows\Panther 2016-02-18 19:48 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT 2016-02-18 16:26 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioDatabase 2016-02-18 12:51 - 2015-07-10 11:59 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe 2016-02-18 12:51 - 2015-07-10 11:59 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe 2016-02-18 12:51 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll 2016-02-18 12:50 - 2015-07-10 11:59 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll 2016-02-18 12:50 - 2015-07-10 11:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll 2016-02-18 12:50 - 2015-07-10 11:59 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll 2016-02-18 12:50 - 2015-07-10 11:59 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe 2016-02-18 08:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\appcompat 2016-02-17 17:40 - 2015-08-18 06:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2016-02-17 17:36 - 2015-07-10 17:30 - 00000000 ____D C:\Windows\ShellNew 2016-02-17 17:21 - 2015-06-26 23:58 - 00087944 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klwfp.sys 2016-02-17 17:21 - 2015-06-08 19:43 - 00041352 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klpd.sys 2016-02-17 16:59 - 2015-11-11 09:08 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2016-02-17 16:59 - 2015-07-10 10:05 - 00032768 ___SH C:\Windows\system32\config\ELAM 2016-02-17 16:58 - 2015-07-10 12:04 - 00000000 ___HD C:\Windows\ELAMBKUP 2016-02-17 16:57 - 2015-11-11 08:07 - 00000000 ____D C:\ProgramData\McAfee 2016-02-17 16:57 - 2015-11-11 08:07 - 00000000 ____D C:\Program Files (x86)\McAfee 2016-02-17 16:50 - 2015-11-11 08:51 - 00000000 ____D C:\Users\Gunther 2016-02-17 16:42 - 2015-11-11 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-02-17 16:33 - 2015-08-18 06:27 - 00000000 ____D C:\Program Files (x86)\ASUS 2016-02-17 16:27 - 2015-11-11 08:53 - 00000000 ____D C:\ProgramData\SetupTPDriver 2016-02-17 16:25 - 2015-11-11 08:50 - 00000000 ____D C:\ProgramData\USBChargerPlus 2016-02-02 23:47 - 2015-08-18 06:34 - 00828920 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-02-02 23:47 - 2015-08-18 06:34 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2016-02-18 11:26 - 2012-04-12 14:25 - 0539136 _____ (Microsoft Corporation) C:\Program Files (x86)\spider.exe 2016-02-17 16:27 - 2016-02-26 09:58 - 0000165 _____ () C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\sp_data.sys 2016-02-21 15:38 - 2016-02-21 15:45 - 0000017 ____H () C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\19720201.dat 2015-11-11 07:51 - 2015-11-11 07:51 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2016-01-26 09:02 - 2016-01-26 09:02 - 0010346 _____ () C:\ProgramData\regid.1996-09.com.picotech_{d03e5488-efee-4362-98cf-72f093b918f0}.swidtag Einige Dateien in TEMP: ==================== C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\cfuapir2.dll C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\d5wc5ovy.dll C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\DRHelper_installFinish.exe C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\DRHelper_installStart.exe C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\DRHelper_uninstallComplete.exe C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\ICReinstall_adobe_flash_player.exe C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\ICReinstall_Microsoft-Spiele-x64.exe C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\McCSPInstall.dll C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\mccspuninstall.exe C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\ose00000.exe C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\pzunzahz.dll C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\QC27khC3Gx.exe C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\sf3ldbaj.dll C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\tmp-drivermax10195779.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-08-18 06:02 ==================== Ende von FRST.txt ============================ Hier die Datei Addition.txt:FRST Additions Logfile: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:21-02-2016 01 durchgeführt von Gunther (2016-02-26 10:02:59) Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen Windows 10 Home (X64) (2016-02-17 15:23:58) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-2421830386-3516612503-909366600-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2421830386-3516612503-909366600-503 - Limited - Disabled) Gast (S-1-5-21-2421830386-3516612503-909366600-501 - Limited - Disabled) Gunther (S-1-5-21-2421830386-3516612503-909366600-1001 - Administrator - Enabled) => C:\Users\Gunther.DESKTOP-L5KOO87 ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B} AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20059 - Adobe Systems Incorporated) ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.6 - ASUS) ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.5 - ASUS) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.5 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS) Atmel USB (HKLM-x32\...\{E8F8861D-98E0-43FF-9E48-AC236CC3BE4E}) (Version: 10.6 - Atmel) Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.105 - ICEpower a/s) Avast SecureLine for Asustek (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.239.3 - AVAST Software) BASCOM-AVR (HKLM-x32\...\{47F94730-ABD2-47F6-920E-EA8CDB6DD0C6}_is1) (Version: 2.0.7.5 - MCS Electronics) Command & Conquer™ Red Alert, Counterstrike and The Aftermath (HKLM-x32\...\{B9A7CCBE-48F7-4B3E-BD20-76ADDD4DC69F}) (Version: 1.0.0.0 - Electronic Arts, Inc.) Command & Conquer™ Tiberian Sun™ and Firestorm™ (HKLM-x32\...\{78F60BDD-1923-4CF7-B6BD-087D06D7B5BB}) (Version: 1.0.0.0 - Electronic Arts, Inc.) DesignCAD 22 (HKLM-x32\...\{C5C61F02-1453-48A1-947E-8BC9F6812F8E}) (Version: 22.0.0 - IMSIDesign) Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.) Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.) DVBViewer Pro (HKLM-x32\...\DVBViewer Pro_is1) (Version: 5.5.2.0 - CM&V) Evernote v. 5.8.6 (HKLM-x32\...\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}) (Version: 5.8.6.7519 - Evernote Corp.) Fugawi 4.5 (HKLM-x32\...\Fugawi45_is1) (Version: 4.5 - Northport Systems Inc.) Fugawi Google Earth Plug-in Version 1.1.0.4 (HKLM-x32\...\Fugawi45_GE_is1) (Version: 4.5 - Northport Systems Inc.) FugVS2005 (HKLM-x32\...\{0C8364B1-AFD8-45B7-ACE8-B76113B6C418}) (Version: 1.0.0 - Northport Systems Inc.) Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation) Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4300 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) Java 8 Update 73 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418073F0}) (Version: 8.0.730.2 - Oracle Corporation) JLink OB CDC Driver Package (HKLM\...\{CD0E9FFE-70DD-47E3-A7A5-750E9DE6F40B}) (Version: 1.2.1 - SEGGER) Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab) Kaspersky Internet Security (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden LAV Filters 0.67 (HKLM-x32\...\lavfilters_is1) (Version: 0.67 - Hendrik Leppkes) LogView V2 (HKLM-x32\...\LogView V2) (Version: LogView V2 2 - LogView.info - D.Schmidt / H.Hemmecke) LogView V2 2 (HKU\S-1-5-21-2421830386-3516612503-909366600-1001\...\LogView V2 2) (Version: 2 - LogView.info) Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Flight Simulator 2004 - Das Jahrhundert der Luftfahrt (HKLM-x32\...\Flight Simulator 9.0) (Version: 9.0 - Microsoft) Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation) Microsoft SQL Server System CLR Types (HKLM-x32\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Shell (Isolated) - ENU (HKLM-x32\...\{D64B6984-242F-32BC-B008-752806E5FC44}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 44.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2 - Mozilla) MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.7 - F.J. Wechselberger) Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts) NVIDIA Graphics Driver 353.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.84 - NVIDIA Corporation) NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) Origin (HKLM-x32\...\Origin) (Version: 9.11.5.17432 - Electronic Arts, Inc.) Paint Shop Pro 5.01 (HKLM-x32\...\Paint Shop Pro 5.01) (Version: - ) Pico Technology Beta SDK 64-bit (HKLM-x32\...\{da5e6d88-b17c-44cb-a5f9-bf1b5948aef8}) (Version: 10.6.11.23 - Pico Technology Ltd) Pico Technology Beta SDK 64-bit (Version: 10.6.11.23 - Pico Technology Ltd) Hidden PicoScope 6 (HKLM-x32\...\{fe3cc74a-a370-4be1-8daf-90355086e1f4}) (Version: 6.11.10 - Pico Technology) Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31213 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.) SpyHunter 4 (HKLM-x32\...\SpyHunter) (Version: 4.21.18.4608 - Enigma Software Group, LLC) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft) Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft) Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden VLC media player (HKLM\...\VLC media player) (Version: 2.2.2 - VideoLAN) WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.2.524 - ASUS Cloud Corporation) WestwoodChat (HKLM-x32\...\{7CAE6A67-AF7B-4A6A-8705-8AFACA45BB60}) (Version: 1.0.0.0 - WestwoodChat) WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline) WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.16 - WildTangent) Windows-Treiberpaket - ASUS (ATP) Mouse (06/17/2015 6.0.0.66) (HKLM\...\1EFB54678773735560B565BE7FA6F2BCC557EE21) (Version: 06/17/2015 6.0.0.66 - ASUS) Windows-Treiberpaket - Segger (jlink_ob_x64) USB (03/13/2012 2.6.6.2) (HKLM\...\6D4C34D12E9233ABADF9D04ADF9E288A7ECF3B5B) (Version: 03/13/2012 2.6.6.2 - Segger) Windows-Treiberpaket - SEGGER (usbser) Ports (01/25/2012 6.0.2600.4) (HKLM\...\BD6BF8BBF7BE0D0091163F649A1A423B7EB9D4F1) (Version: 01/25/2012 6.0.2600.4 - SEGGER) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS) WPS Office for ASUS (HKLM-x32\...\Kingsoft Office) (Version: 9.1.0.4947 - Kingsoft Corp.) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-2421830386-3516612503-909366600-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\FileCoAuth.exe (Microsoft Corporation) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {0F71139B-44DA-4814-95B3-36544058B19C} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] () Task: {16C0F2CB-05FF-42DC-B079-DCDC8E771142} - System32\Tasks\WpsUpdateTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd) Task: {265A3230-80C1-46DE-871D-6D0FE4A72A99} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-18] (Google Inc.) Task: {2676E35B-A115-4EAD-9303-94D32321AE26} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.) Task: {2D2B9505-7A05-4A59-A05C-3505E92E3AC8} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.) Task: {37600127-75F6-4D0E-AB73-1557C66DB28E} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.) Task: {402CA532-759F-4D1B-A63F-7B136F42AC1D} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.) Task: {42DDF692-C8FF-4705-ABD1-EF4E97066915} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-08-23] (AsusTek) Task: {47B485D9-1AC5-4DE9-BEE0-A56921B2021A} - System32\Tasks\WpsNotifyTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd) Task: {65CE6C8D-F24B-4FBE-97BA-E23A8109A886} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-02-18] (Microsoft Corporation) Task: {80875153-D0CA-4A0A-9947-BCF3BF2007D0} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-08-12] () Task: {80C44CD8-38C9-488D-8935-B27061176C6C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated) Task: {858130DF-8325-4F32-8E9C-56C190671AFC} - System32\Tasks\Microsoft\Office\Microsoft Office Touchless Attach Notification => C:\Program Files (x86)\Microsoft Office\Office15\FirstRun.exe [2015-03-14] (Microsoft Corporation) Task: {8EBD672F-3CE9-4F4F-AE48-C0C1AB17EAF5} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.) Task: {9DD4AD4D-DC0D-4826-B61A-46025A6F398C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-18] (Google Inc.) Task: {A9871C1C-7FA9-4094-9760-69F1EA4F5C91} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS) Task: {AFA1BF32-F765-406A-AF10-1B2967A4442B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-07-29] (Realtek Semiconductor) Task: {CC5EAE02-3FB5-4F7A-B4D4-B55F51724A9E} - System32\Tasks\{FCC43C23-C686-4530-BB4D-97C7E689F677} => pcalua.exe -a C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\avrispmkii_libusb-win32_1.2.1.0\avrispmkii_libusb-win32_1.2.1.0\installer_x86.exe -d C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\avrispmkii_libusb-win32_1.2.1.0\avrispmkii_libusb-win32_1.2.1.0 Task: {D3EF1604-81D4-429F-8F4F-B58B7F7D3E18} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.) Task: {DEA915F7-74D4-4B8F-BABD-86723BDCC2B1} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-07-29] (Realtek Semiconductor) Task: {DEE7A683-A2E0-4371-B9CA-3A7A637B2562} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2015-04-29] (AVAST Software) Task: {F25573CF-40E1-4DE9-8EA5-391037769186} - System32\Tasks\DriverMaxAgent => C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\WpsNotifyTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe Task: C:\Windows\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ShortcutWithArgument: C:\Users\Public\Desktop\WPS Office.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\office6\launcher.exe (Zhuhai Kingsoft Office Software Co.,Ltd) -> "hxxp://esurf.biz/?ssid=1455896353&a=1046395&src=sh&uuid=cf6b077e-f8ca-4141-a6c3-2762a5345dee" ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-08-18 06:25 - 2015-07-15 03:04 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll 2016-02-18 16:28 - 2015-08-11 10:14 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll 2015-11-11 08:06 - 2015-04-29 18:04 - 00445240 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe 2015-11-11 07:48 - 2015-08-07 18:18 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\system32\CoreUIComponents.dll 2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\System32\CoreUIComponents.dll 2015-10-09 10:13 - 2015-10-06 10:03 - 00395368 _____ () C:\Windows\system32\igfxTray.exe 2016-02-18 16:28 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-07-10 11:59 - 2015-07-10 11:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll 2016-02-18 16:29 - 2015-11-25 05:20 - 06569472 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-02-18 16:29 - 2015-11-25 05:17 - 00471040 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-02-18 16:29 - 2015-11-25 05:17 - 01808384 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-02-18 16:29 - 2015-09-17 06:43 - 02274816 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-07-10 12:00 - 2015-07-10 17:29 - 00210432 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 2016-02-17 17:23 - 2016-02-17 17:23 - 00015872 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2016-02-17 17:23 - 2016-02-17 17:23 - 14869504 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2016-02-17 17:22 - 2016-02-17 17:23 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2016-02-18 09:53 - 2016-02-18 09:53 - 09789952 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2016.27.2.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll 2015-08-12 20:44 - 2015-08-12 20:44 - 00012288 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe 2015-07-08 23:18 - 2015-07-08 23:18 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kpcengine.2.3.dll 2015-08-07 02:09 - 2015-08-07 02:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-08-25 10:40 - 2015-08-25 10:40 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll 2015-08-25 10:40 - 2015-08-25 10:40 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll 2015-11-11 07:48 - 2015-07-24 05:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-02-18 10:45 - 2016-02-18 10:45 - 01016832 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll 2016-02-18 10:45 - 2016-02-18 10:45 - 00028160 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll 2016-02-18 10:45 - 2016-02-18 10:45 - 00029696 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll 2016-02-18 10:45 - 2016-02-18 10:45 - 00256000 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll 2016-02-18 10:45 - 2016-02-18 10:45 - 00266240 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll 2016-02-18 10:45 - 2016-02-18 10:45 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll 2016-02-18 10:45 - 2016-02-18 10:45 - 00346112 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll 2016-02-18 10:45 - 2016-02-18 10:45 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll 2016-02-18 10:45 - 2016-02-18 10:45 - 00243200 _____ () C:\Program Files (x86)\Origin\mediaservice\wmfengine.dll 2015-11-11 08:06 - 2015-04-29 18:04 - 38561984 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll 2013-04-27 11:24 - 2013-04-27 11:24 - 00071680 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\checkmetro.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\ProgramData\TEMP:6B0023F8 ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2015-07-10 12:04 - 2015-07-10 12:02 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\asus\wallpapers\asus.jpg DNS Servers: 192.168.2.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{DF8AD133-C2FF-4C30-8618-E3E9B17D5499}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe FirewallRules: [{985BE3A6-760C-48B6-8274-D904C621EF53}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe FirewallRules: [{4B62578A-269D-4C39-AC91-85875738831E}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe FirewallRules: [{EDD1EEA3-DAF2-4D8A-A24F-D306AC1A08C5}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe FirewallRules: [{CE0848E4-9186-43C5-B6E0-EF43EDE445D1}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe FirewallRules: [{51C45640-ADB0-4D34-918A-842910FAD03E}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe FirewallRules: [{FFC3D9CF-365E-482F-8901-BE3E08697A66}] => (Allow) C:\Program Files (x86)\SprgFiles\SprgFiles.exe FirewallRules: [{C6CC372F-7162-40B1-833D-CBDA05E5BFE2}] => (Allow) C:\Program Files (x86)\SprgFiles\SprgFiles.exe FirewallRules: [{5005B685-36C4-4F40-B872-2BEECCD325C4}] => (Allow) C:\Program Files (x86)\SprgFiles\downloader.exe FirewallRules: [{82AFB31B-8E78-4BDA-B2B8-80A1E9C2D4C6}] => (Allow) C:\Program Files (x86)\SprgFiles\downloader.exe FirewallRules: [{32E42A9B-AFB8-485E-B1F5-69629C55AAAF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{EC13B03C-CF42-42D9-A8CE-4299E35BFD6C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Wiederherstellungspunkte ========================= 20-02-2016 10:25:19 Installed Atmel USB 21-02-2016 10:31:53 Sprachpaketdeinstallation 23-02-2016 16:45:46 Installed AVRStudio4 25-02-2016 09:05:02 DesignCAD 22 wurde installiert. ==================== Fehlerhafte Geräte im Gerätemanager ============= ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (02/26/2016 08:44:30 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-L5KOO87) Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“. Error: (02/25/2016 06:48:13 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm RA95.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 1ee8 Startzeit: 01d16fee169eb654 Beendigungszeit: 4294967295 Anwendungspfad: C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95.exe Berichts-ID: eeef2206-dbe7-11e5-9be0-2c56dc295e0b Vollständiger Name des fehlerhaften Pakets: Auf das fehlerhafte Paket bezogene Anwendungs-ID: Error: (02/25/2016 06:00:09 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: Mahjong.exe, Version: 0.0.0.0, Zeitstempel: 0x4343a05e Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10240.16683, Zeitstempel: 0x56ad9358 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0003d16e ID des fehlerhaften Prozesses: 0x1fd4 Startzeit der fehlerhaften Anwendung: 0xMahjong.exe0 Pfad der fehlerhaften Anwendung: Mahjong.exe1 Pfad des fehlerhaften Moduls: Mahjong.exe2 Berichtskennung: Mahjong.exe3 Vollständiger Name des fehlerhaften Pakets: Mahjong.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Mahjong.exe5 Error: (02/25/2016 05:41:06 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-L5KOO87) Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“. Error: (02/25/2016 11:28:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-L5KOO87) Description: Bei der Aktivierung der App „Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“. Error: (02/25/2016 11:28:26 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-L5KOO87) Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2147024865. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“. Error: (02/25/2016 09:05:08 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer". Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll. System Error: Zugriff verweigert . Error: (02/25/2016 08:47:30 AM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (2232) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032. Error: (02/25/2016 08:47:30 AM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (2232) Der Versuch, die Datei "C:\Windows\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien. Error: (02/25/2016 08:47:20 AM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (2232) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032. Systemfehler: ============= Error: (02/26/2016 08:44:29 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-L5KOO87) Description: App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca Error: (02/25/2016 05:41:06 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-L5KOO87) Description: App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca Error: (02/25/2016 11:28:26 AM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-L5KOO87) Description: "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:App.AppXwmnqm0nvq2b90pwvr42qmtdjp7cj3w82.mca31App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mcaNicht verfügbarNicht verfügbar Error: (02/24/2016 06:39:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Benutzerdatenzugriff_Session4" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (02/24/2016 06:39:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Benutzerdatenspeicher _Session4" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (02/24/2016 06:39:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Kontaktdaten_Session4" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (02/24/2016 06:39:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Synchronisierungshost_Session4" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (02/24/2016 12:53:14 PM) (Source: disk) (EventID: 11) (User: ) Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden. Error: (02/24/2016 12:53:12 PM) (Source: disk) (EventID: 11) (User: ) Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden. Error: (02/24/2016 10:03:53 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-L5KOO87) Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz Prozentuale Nutzung des RAM: 34% Installierter physikalischer RAM: 8094.39 MB Verfügbarer physikalischer RAM: 5270.98 MB Summe virtueller Speicher: 10014.39 MB Verfügbarer virtueller Speicher: 6654.47 MB ==================== Laufwerke ================================ Drive c: (OS) (Fixed) (Total:185.55 GB) (Free:109.27 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)] Drive d: (DATA) (Fixed) (Total:279.46 GB) (Free:249.2 GB) NTFS Drive f: (WINDOWS) (Fixed) (Total:149.41 GB) (Free:33 GB) NTFS Drive g: (Data) (Fixed) (Total:148.28 GB) (Free:73.25 GB) NTFS Drive h: (INTENSO) (Removable) (Total:29.28 GB) (Free:20.07 GB) FAT32 ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 6110F75F) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 0C35AC9E) Partition 1: (Active) - (Size=400 MB) - (Type=27) Partition 2: (Not Active) - (Size=149.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=148.3 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 29.3 GB) (Disk ID: 6F20736B) No partition Table on disk 2. Disk 2 is a removable device. ==================== Ende von Addition.txt ============================ |
26.02.2016, 14:31 | #5 |
/// Malwareteam | Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit Schritt 1 Lade dir folgendes Programm herunter und installiere es: Malwarebytes Anti-Malware Hier findest du dazu eine bebilderte Anleitung
Schritt 2 Downloade Dir bitte AdwCleaner auf deinen Desktop.
Schritt 3 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen. Bitte poste in deiner nächsten Antwort also:
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
26.02.2016, 16:39 | #6 |
| Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit Hallo Rafael, habe den ersten Durchlauf mit MBAM erledigt, scheinbar gibt's da was: Ich weiß jetzt nicht, ob ich erstmal warten soll oder gleich mit den weiteren Schritten fortfahren. Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 26.02.2016 Suchlaufzeit: 15:46 Protokolldatei: File03.txt Administrator: Ja Version: 2.2.0.1024 Malware-Datenbank: v2016.02.26.04 Rootkit-Datenbank: v2016.02.17.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: Gunther Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 410331 Abgelaufene Zeit: 31 Min., 16 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Aktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 1 Hijack.AutoConfigURL.PrxySvrRST, HKU\S-1-5-21-2421830386-3516612503-909366600-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|AutoConfigUrl, hxxp://stop-block.org/wpad.dat?ccff5aa26c527adfe15c5d9946411f206451327, In Quarantäne, [aca0a7be158494a2bc66313a000439c7] Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 3 PUP.Optional.SpringFiles, C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\SpringFiles, In Quarantäne, [6fdd24414752cc6a751250a851b19c64], PUP.Optional.DriverRestore, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverRestore, In Quarantäne, [80ccf86dc7d2d36327045da1ff03857b], PUP.Optional.SpringFiles, C:\Program Files (x86)\SprgFiles, In Quarantäne, [78d43f263564be783d0309f510f2bc44], Dateien: 8 PUP.Optional.383Media, C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\DRHelper_installFinish.exe, In Quarantäne, [dc70620396037cbaaa9b6d2d11f001ff], PUP.Optional.383Media, C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\DRHelper_installStart.exe, In Quarantäne, [bd8f6302a8f1191d02437f1b05fc45bb], PUP.Optional.383Media, C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\DRHelper_uninstallComplete.exe, In Quarantäne, [c28aa5c06237f83ecb7aebaf629fe51b], PUP.Optional.InstallCore, C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\ICReinstall_adobe_flash_player.exe, In Quarantäne, [54f8c3a229703303f51b18df09f81de3], PUP.Optional.InstallCore, C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\ICReinstall_Microsoft-Spiele-x64.exe, In Quarantäne, [04486df8c5d400361d6d27d01de47b85], PUP.Optional.InstallCore, C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\adobe_flash_player.exe, In Quarantäne, [f05c2a3b77223df97a96c730f908926e], PUP.Optional.InstallCore, C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Microsoft-Spiele-x64.exe, In Quarantäne, [0e3e3c29455454e21674599ebe4302fe], PUP.Optional.SpringFiles, C:\Program Files (x86)\SprgFiles\Uninstall.exe, In Quarantäne, [78d43f263564be783d0309f510f2bc44], Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Geändert von gzielos (26.02.2016 um 16:41 Uhr) Grund: Frage zur Fortführung einbinden |
26.02.2016, 19:10 | #7 |
/// Malwareteam | Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit go go go
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
26.02.2016, 20:04 | #8 |
| Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit Hallo Rafael, hier das nächste File. Ich hatte zwar schon gedacht, dass nun alles gut wäre, aber leider kam gerade eben bei der Anwahl dieses Forums wieder eine unerwünschte Werbung: "Hallo Windows-Nutzer, du hast gewonnen oder sowas". Na ja, hoffentlich ist das mal zuende... Code:
ATTFilter # AdwCleaner v5.036 - Bericht erstellt am 26/02/2016 um 19:41:16 # Aktualisiert am 22/02/2016 von Xplode # Datenbank : 2016-02-24.1 [Server] # Betriebssystem : Windows 10 Home (x64) # Benutzername : Gunther - DESKTOP-L5KOO87 # Gestartet von : C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen\AdwCleaner_5.036.exe # Option : Löschen # Unterstützung : hxxp://toolslib.net/forum ***** [ Dienste ] ***** ***** [ Ordner ] ***** [-] Ordner Gelöscht : C:\Program Files (x86)\Innovative Solutions [-] Ordner Gelöscht : C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Innovative Solutions [-] Ordner Gelöscht : C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Innovative Solutions ***** [ Dateien ] ***** ***** [ DLLs ] ***** ***** [ Verknüpfungen ] ***** [-] Verknüpfung Desinfiziert : C:\Users\Public\Desktop\WPS Office.lnk [-] Verknüpfung Desinfiziert : C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk ***** [ Aufgabenplanung ] ***** ***** [ Registrierungsdatenbank ] ***** [-] Schlüssel Gelöscht : HKCU\Software\DriverRestore [-] Schlüssel Gelöscht : HKCU\Software\eSupport.com ***** [ Internetbrowser ] ***** ************************* :: "Tracing" Schlüssel gelöscht :: Proxy Einstellungen zurückgesetzt :: Winsock Einstellungen zurückgesetzt :: Chrome Richtlinien gelöscht ************************* C:\AdwCleaner\AdwCleaner[C1].txt - [1459 Bytes] - [26/02/2016 19:41:16] C:\AdwCleaner\AdwCleaner[S1].txt - [1590 Bytes] - [26/02/2016 19:39:43] ########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1605 Bytes] ########## Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:21-02-2016 01 durchgeführt von Gunther (Administrator) auf DESKTOP-L5KOO87 (26-02-2016 19:59:10) Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen Geladene Profile: Gunther (Verfügbare Profile: Gunther) Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe (ASUS) C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGiftBoxDesktop.exe (ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe (Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe (Zhuhai Kingsoft Office Software Co.,Ltd) C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe (Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (AVAST Software) C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe (Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe (WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSPanel.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation) HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe [63272 2015-05-31] () HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595504 2016-01-29] (Oracle Corporation) HKU\S-1-5-21-2421830386-3516612503-909366600-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-18] (Electronic Arts) ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avast! SecureLine.lnk [2015-11-11] ShortcutTarget: avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{db2c9de7-f35d-44c5-8037-6eea81e0d451}: [DhcpNameServer] 192.168.2.1 Internet Explorer: ================== HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus15.msn.com/?pc=ASTE HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE SearchScopes: HKU\S-1-5-21-2421830386-3516612503-909366600-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2421830386-3516612503-909366600-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-21] (Oracle Corporation) BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-21] (Oracle Corporation) BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab) Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab) Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab) FireFox: ======== FF ProfilePath: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\v07uout6.default FF Homepage: hxxps://www.google.de/?gws_rd=ssl about:preferences FF Plugin: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-21] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-21] (Oracle Corporation) FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-20] (VideoLAN) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-18] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-18] (Google Inc.) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-15] () FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.) FF Extension: Simple Mail - C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\v07uout6.default\extensions\simplemail@telega.phpnet.us [2016-02-18] FF Extension: Adblock Plus - C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\v07uout6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-24] FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2016-02-17] Chrome: ======= CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe [71168 2015-05-31] (ASUS Cloud Corporation) [Datei ist nicht signiert] R2 ASUSGiftBoxDekstop; C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe [315704 2015-07-20] (ASUS) R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2016-02-17] (Kaspersky Lab ZAO) R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1385640 2015-08-17] (Intel Corporation) R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-04-14] (WildTangent) R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [353896 2015-10-06] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation) S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert] R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation) R2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe [133480 2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd) S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-18] (Electronic Arts) R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [445240 2015-04-29] () S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation) S2 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.5.471.0\McCSPServiceHost.exe" [X] S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 athr; C:\Windows\System32\drivers\athw10x.sys [4317808 2015-07-14] (Qualcomm Atheros Communications, Inc.) R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [97680 2015-08-17] (ASUS Corporation) R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO) R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [53752 2015-08-17] (Intel Corporation) R3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [50696 2015-08-17] (Intel Corporation) S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-02-19] () R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [261624 2015-08-17] (Intel Corporation) R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel Corporation) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO) R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO) R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [68280 2015-06-06] (Kaspersky Lab ZAO) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab) R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [181640 2016-02-17] (AO Kaspersky Lab) R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [227512 2016-02-17] (AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [934272 2016-02-17] (AO Kaspersky Lab) R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39608 2015-06-11] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2016-02-17] (AO Kaspersky Lab) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [87944 2016-02-17] (Kaspersky Lab ZAO) R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO) S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [52832 2016-02-20] (hxxp://libusb-win32.sourceforge.net) S3 libusbK; C:\Windows\System32\drivers\libusbK.sys [47928 2016-02-20] (hxxp://libusb-win32.sourceforge.net) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-28] (Intel Corporation) S3 PCTV_NTAMD64; C:\Windows\system32\DRIVERS\pctv4XXe_amd64.sys [571552 2016-02-21] (Pinnacle Systems GmbH) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek ) R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [420440 2015-05-27] (Realsil Semiconductor Corporation) S2 TVicPort; kein ImagePath S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation) S3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [254976 2010-08-31] (Jungo) S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X] U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X] U0 msahci; system32\drivers\msahci.sys [X] S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-02-26 19:43 - 2016-02-26 19:43 - 00016148 _____ C:\Windows\system32\DESKTOP-L5KOO87_Gunther_HistoryPrediction.bin 2016-02-26 19:38 - 2016-02-26 19:41 - 00000000 ____D C:\AdwCleaner 2016-02-26 19:36 - 2016-02-26 19:36 - 01511936 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\AdwCleaner_5.036.exe 2016-02-26 15:43 - 2016-02-26 16:25 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-02-26 15:42 - 2016-02-26 15:42 - 00000000 ____D C:\ProgramData\Malwarebytes 2016-02-26 15:42 - 2016-02-26 15:42 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2016-02-26 15:42 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2016-02-26 15:42 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2016-02-26 15:42 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2016-02-26 15:36 - 2016-02-26 15:37 - 22908888 _____ (Malwarebytes ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\mbam-setup-2.2.0.1024.exe 2016-02-25 09:06 - 2016-02-25 10:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\DesignCAD 22 2016-02-25 09:06 - 2016-02-25 10:36 - 00000000 ____D C:\ProgramData\TEMP 2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22 2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\ProgramData\IMSIDesign 2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\Program Files (x86)\IMSIDesign 2016-02-25 09:01 - 2016-02-25 09:01 - 52116093 _____ (Franzis Verlag GmbH ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\30812-0-DesignCAD-V22-Basistoolkit.exe 2016-02-24 09:36 - 2016-02-24 13:26 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\ATMEGA_Programmierung 2016-02-23 16:46 - 2016-02-26 16:19 - 00000000 ____D C:\Program Files (x86)\Atmel 2016-02-23 16:36 - 2016-02-23 16:37 - 05198040 _____ (akeo.ie) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\zadig_2.2.exe 2016-02-23 13:25 - 2016-02-23 13:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Mauer 2016-02-23 09:26 - 2016-02-26 19:59 - 00000000 ____D C:\FRST 2016-02-23 09:19 - 2016-02-26 19:56 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen 2016-02-23 09:18 - 2016-02-23 09:18 - 02371072 _____ (Farbar) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\FRST64.exe 2016-02-22 13:53 - 2016-02-22 13:53 - 00048680 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\GDIPFONTCACHEV1.DAT 2016-02-22 10:20 - 2016-02-22 10:20 - 00000000 ____D C:\ProgramData\Brother 2016-02-22 10:19 - 2016-02-22 10:19 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\NetworkRepairTool 2016-02-22 10:18 - 2016-02-22 10:19 - 00983784 _____ (A.I.SOFT,INC.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Nettool_12140.EXE 2016-02-22 10:09 - 2016-02-22 10:09 - 00000034 _____ C:\Windows\SysWOW64\BD2040.DAT 2016-02-22 09:49 - 2016-02-26 15:30 - 00004174 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BF62B9E7-975F-45F1-9CC0-00F0D4052F41} 2016-02-22 08:05 - 2016-02-22 08:06 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Audacity 2016-02-22 08:05 - 2016-02-22 08:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Audacity 2016-02-22 08:04 - 2016-02-22 08:05 - 00000000 ____D C:\Program Files (x86)\Audacity 2016-02-22 08:04 - 2016-02-22 08:04 - 00001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk 2016-02-21 17:54 - 2016-02-21 17:54 - 00002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk 2016-02-21 17:54 - 2016-02-21 17:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Google 2016-02-21 17:53 - 2016-02-21 17:53 - 00987728 _____ (Google Inc.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\GoogleEarthSetup.exe 2016-02-21 17:44 - 2016-02-21 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi 2016-02-21 17:44 - 2016-02-21 17:44 - 00001107 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Fugawi Global Navigator 4.5.LNK 2016-02-21 17:43 - 2016-02-21 17:43 - 00000000 ____D C:\Program Files (x86)\Fugawi 2016-02-21 17:10 - 2016-02-21 17:44 - 00000037 _____ C:\Windows\iltwain.ini 2016-02-21 15:38 - 2016-02-21 15:45 - 00000017 ____H C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\19720201.dat 2016-02-21 15:35 - 2016-02-21 18:04 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Fugawi 2016-02-21 15:35 - 2016-02-21 17:44 - 00000000 ____D C:\ProgramData\Fugawi 2016-02-21 15:35 - 2016-02-21 15:51 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Fugawi 2016-02-21 15:35 - 2016-02-21 15:35 - 00000000 ____D C:\Program Files (x86)\Earth Resource Mapping 2016-02-21 15:35 - 2016-02-21 15:35 - 00000000 _____ C:\Windows\Lmvk32.INI 2016-02-21 15:35 - 2003-03-18 19:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll 2016-02-21 15:35 - 2003-02-21 03:42 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll 2016-02-21 15:35 - 2002-01-05 04:48 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll 2016-02-21 15:35 - 2002-01-05 04:36 - 00964608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll 2016-02-21 15:32 - 2016-02-21 15:32 - 55326352 _____ (Northport Systems Inc. ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\fugawi45565615.exe 2016-02-21 13:13 - 2016-02-22 16:39 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.mediathek3 2016-02-21 13:13 - 2016-02-21 13:13 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Sun 2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Sun 2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.oracle_jre_usage 2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Oracle 2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\ProgramData\Oracle 2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\Program Files\Java 2016-02-21 13:07 - 2016-02-21 13:12 - 57099360 _____ (Oracle Corporation) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\jre-8u73-windows-x64.exe 2016-02-21 12:24 - 2016-02-21 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters 2016-02-21 12:24 - 2016-02-21 12:24 - 00000000 ____D C:\Program Files (x86)\LAV Filters 2016-02-21 12:23 - 2016-02-21 12:23 - 09532984 _____ (1f0.de ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\LAVFilters-0.67-Installer.exe 2016-02-21 12:21 - 2016-02-21 12:21 - 07185389 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\LAVFilters-0.67-x64.zip 2016-02-21 12:13 - 2016-02-21 12:13 - 00318223 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_Filter_3_8_1.zip 2016-02-21 10:09 - 2016-02-21 10:09 - 00571552 _____ (Pinnacle Systems GmbH) C:\Windows\system32\Drivers\pctv4XXe_amd64.sys 2016-02-21 10:03 - 2016-02-21 10:06 - 00000000 ____D C:\Program Files (x86)\DVBViewer 2016-02-21 10:03 - 2016-02-21 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer 2016-02-21 10:03 - 2016-02-21 10:03 - 00000000 ____D C:\ProgramData\CMUV 2016-02-21 10:00 - 2016-02-21 12:30 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\DVBViewer 2016-02-21 09:58 - 2016-02-21 09:58 - 01082553 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_GE_Anleitung.zip 2016-02-21 09:57 - 2016-02-21 09:57 - 07436126 _____ (CM&V ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_setup.exe 2016-02-21 09:55 - 2016-02-21 09:55 - 00001024 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\9DD6626F58261648.dvbvkey 2016-02-21 09:26 - 2016-02-21 09:26 - 00000706 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Geräte - Shortcut.lnk 2016-02-21 09:05 - 2016-02-21 09:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Pico Technology 2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Downloaded Installations 2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pico Technology 2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\Program Files (x86)\Pico Technology 2016-02-21 08:57 - 2016-02-21 08:57 - 00000000 ____D C:\Program Files\Pico Technology 2016-02-20 17:27 - 2016-02-20 17:27 - 111098163 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Microsoft-Spiele-x64.zip 2016-02-20 17:03 - 2016-02-26 17:48 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\MyPhoneExplorer 2016-02-20 17:03 - 2016-02-20 17:03 - 00002128 _____ C:\Users\Public\Desktop\MyPhoneExplorer.lnk 2016-02-20 17:03 - 2016-02-20 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer 2016-02-20 17:03 - 2016-02-20 17:03 - 00000000 ____D C:\Program Files (x86)\MyPhoneExplorer 2016-02-20 17:01 - 2016-02-20 17:02 - 07886000 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\MyPhoneExplorer_Setup_1.8.7.exe 2016-02-20 15:24 - 2016-02-20 15:24 - 00003668 _____ C:\Windows\System32\Tasks\{FCC43C23-C686-4530-BB4D-97C7E689F677} 2016-02-20 15:23 - 2016-02-20 15:23 - 00000000 ____D C:\ProgramData\VS 2016-02-20 15:18 - 2016-02-20 15:18 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010 2016-02-20 15:18 - 2016-02-20 15:18 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010 2016-02-20 12:53 - 2016-02-20 12:53 - 00003758 _____ C:\Windows\System32\Tasks\DriverMaxAgent 2016-02-20 11:49 - 2016-02-26 19:41 - 00000008 __RSH C:\ProgramData\ntuser.pol 2016-02-20 11:49 - 2016-02-20 12:59 - 00067680 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusb0.dll 2016-02-20 11:49 - 2016-02-20 12:59 - 00052832 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusb0.sys 2016-02-20 11:49 - 2016-02-20 11:58 - 00099128 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusbK.dll 2016-02-20 11:49 - 2016-02-20 11:58 - 00084280 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusbK.dll 2016-02-20 11:49 - 2016-02-20 11:58 - 00076384 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusb0.dll 2016-02-20 11:49 - 2016-02-20 11:58 - 00047928 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusbK.sys 2016-02-20 11:49 - 2016-02-20 11:55 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\usb_driver 2016-02-20 11:49 - 2016-02-20 11:49 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll 2016-02-20 11:36 - 2016-02-20 11:36 - 00000000 ____D C:\ProgramData\Atmel 2016-02-20 10:37 - 2016-02-20 10:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft Corporation 2016-02-20 10:32 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\VisualAssist 2016-02-20 10:32 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\VisualAssist 2016-02-20 10:32 - 2016-02-20 10:32 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\IsolatedStorage 2016-02-20 10:31 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Atmel 2016-02-20 10:27 - 2016-02-20 10:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Atmel Studio 2016-02-20 10:27 - 2016-02-20 10:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Atmel 2016-02-20 10:27 - 2016-02-20 10:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Atmel 2016-02-20 10:26 - 2016-02-20 10:26 - 00000000 ____D C:\Program Files\Seggger 2016-02-20 10:25 - 2016-02-20 10:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0 2016-02-20 10:25 - 2010-08-31 13:23 - 00254976 _____ (Jungo) C:\Windows\system32\Drivers\windrvr6.sys 2016-02-20 10:25 - 2010-01-17 20:13 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi1011.dll 2016-02-20 10:25 - 2009-09-02 11:48 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1010.dll 2016-02-20 10:25 - 2009-07-14 10:07 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1002.dll 2016-02-20 10:25 - 2009-05-14 13:21 - 00157184 _____ (Jungo) C:\Windows\SysWOW64\wdapi1001.dll 2016-02-20 10:25 - 2008-07-04 09:51 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi921.dll 2016-02-20 10:25 - 2006-10-18 15:39 - 00141824 _____ (Jungo) C:\Windows\SysWOW64\wdapi811.dll 2016-02-20 10:24 - 2016-02-20 10:24 - 00000000 ____D C:\Program Files\Microsoft Help Viewer 2016-02-20 10:24 - 2016-02-20 10:24 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Windows\SysWOW64\1033 2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Visual Studio 2010 2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0 2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs 2016-02-20 09:37 - 2016-02-20 09:37 - 00000771 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte - Shortcut.lnk 2016-02-20 09:32 - 2016-02-20 09:32 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte 2016-02-20 09:29 - 2016-02-20 09:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\MCS Electronics 2016-02-20 09:28 - 2016-02-20 09:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\MCS Electronics 2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\MCS Electronics 2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics 2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\Program Files (x86)\MCS Electronics 2016-02-19 20:10 - 2016-02-19 20:10 - 00001230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2016-02-19 20:10 - 2016-02-19 20:10 - 00001218 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2016-02-19 17:41 - 2016-02-19 17:41 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys 2016-02-19 17:41 - 2016-02-19 17:41 - 00003450 _____ C:\Windows\System32\Tasks\SpyHunter4Startup 2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Enigma Software Group 2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 ____D C:\sh4ldr 2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 _____ C:\autoexec.bat 2016-02-19 13:43 - 2016-02-19 13:43 - 00003972 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2016-02-19 13:43 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Adobe 2016-02-19 13:43 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\CEF 2016-02-19 13:42 - 2016-02-19 13:45 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-02-19 13:42 - 2016-02-19 13:44 - 00000000 ____D C:\ProgramData\Adobe 2016-02-19 13:42 - 2016-02-19 13:42 - 00002126 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2016-02-19 13:42 - 2016-02-19 13:42 - 00000000 ____D C:\Program Files (x86)\Adobe 2016-02-19 13:41 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Adobe 2016-02-19 10:06 - 2016-02-19 10:06 - 00000000 ____D C:\Windows\system32\SleepStudy 2016-02-18 19:57 - 2016-02-26 18:02 - 00001144 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-02-18 19:57 - 2016-02-18 19:57 - 00004202 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2016-02-18 19:57 - 2016-02-18 19:57 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Google 2016-02-18 19:56 - 2016-02-26 19:44 - 00001140 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-02-18 19:56 - 2016-02-21 17:54 - 00000000 ____D C:\Program Files (x86)\Google 2016-02-18 19:56 - 2016-02-18 19:56 - 00003970 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2016-02-18 19:53 - 2016-02-18 19:53 - 00000764 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Arbeitsdateien - Shortcut.lnk 2016-02-18 19:50 - 2016-02-18 19:50 - 00000675 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\GPS - Shortcut.lnk 2016-02-18 19:49 - 2016-02-18 19:49 - 00000780 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kranich_Projekte - Shortcut.lnk 2016-02-18 19:43 - 2016-02-18 19:43 - 00000707 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\TK102-2 -Shortcut.lnk 2016-02-18 19:33 - 2016-02-22 08:07 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio 2016-02-18 18:46 - 2016-02-18 18:46 - 31367109 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\vlc-2.2.2-win64.exe 2016-02-18 16:44 - 2016-02-18 16:47 - 00000000 ____D C:\Windows\system32\MRT 2016-02-18 16:44 - 2016-02-18 16:44 - 146614896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-02-18 16:33 - 2016-02-18 16:33 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help 2016-02-18 16:33 - 2016-02-18 16:33 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help 2016-02-18 16:30 - 2016-01-31 07:23 - 02601160 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll 2016-02-18 16:30 - 2016-01-31 07:04 - 01811360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll 2016-02-18 16:30 - 2016-01-31 06:38 - 21873152 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll 2016-02-18 16:30 - 2016-01-31 06:34 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll 2016-02-18 16:30 - 2016-01-31 06:33 - 24593920 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-02-18 16:30 - 2016-01-31 06:25 - 12504576 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-02-18 16:30 - 2016-01-31 06:25 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-02-18 16:30 - 2016-01-31 06:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll 2016-02-18 16:30 - 2016-01-31 06:25 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys 2016-02-18 16:30 - 2016-01-31 06:23 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2016-02-18 16:30 - 2016-01-31 06:22 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll 2016-02-18 16:30 - 2016-01-31 06:17 - 19324928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-02-18 16:30 - 2016-01-31 06:17 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll 2016-02-18 16:30 - 2016-01-31 06:14 - 07525376 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll 2016-02-18 16:30 - 2016-01-31 06:14 - 03588096 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys 2016-02-18 16:30 - 2016-01-31 06:13 - 04791808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-02-18 16:30 - 2016-01-31 06:11 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll 2016-02-18 16:30 - 2016-01-31 06:07 - 18802176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll 2016-02-18 16:30 - 2016-01-31 06:04 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll 2016-02-18 16:30 - 2016-01-31 06:02 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-02-18 16:30 - 2016-01-31 06:00 - 11263488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-02-18 16:30 - 2016-01-31 05:59 - 05457408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll 2016-02-18 16:30 - 2016-01-05 04:06 - 08022368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-02-18 16:30 - 2016-01-05 04:06 - 01063504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll 2016-02-18 16:30 - 2016-01-05 04:06 - 00119800 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL 2016-02-18 16:30 - 2016-01-05 04:04 - 02824248 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2016-02-18 16:30 - 2016-01-05 03:30 - 00882208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll 2016-02-18 16:30 - 2016-01-05 03:30 - 00100712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL 2016-02-18 16:30 - 2016-01-05 03:28 - 02445128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll 2016-02-18 16:30 - 2016-01-05 03:09 - 01234944 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2016-02-18 16:30 - 2016-01-05 02:57 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2016-02-18 16:30 - 2016-01-05 02:57 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-02-18 16:30 - 2016-01-05 02:29 - 00650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-02-18 16:30 - 2016-01-05 02:29 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-02-18 16:30 - 2016-01-05 02:26 - 00373760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-02-18 16:30 - 2015-11-25 06:40 - 00516448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS 2016-02-18 16:30 - 2015-11-25 05:49 - 01569280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll 2016-02-18 16:30 - 2015-11-25 05:30 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys 2016-02-18 16:30 - 2015-11-25 05:30 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys 2016-02-18 16:30 - 2015-11-25 05:22 - 01383424 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys 2016-02-18 16:30 - 2015-11-25 05:18 - 01233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll 2016-02-18 16:30 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll 2016-02-18 16:30 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2016-02-18 16:30 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2016-02-18 16:30 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys 2016-02-18 16:30 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll 2016-02-18 16:30 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2016-02-18 16:30 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2016-02-18 16:30 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2016-02-18 16:30 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2016-02-18 16:30 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2016-02-18 16:30 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2016-02-18 16:30 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2016-02-18 16:30 - 2015-09-17 07:48 - 02432336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2016-02-18 16:30 - 2015-09-17 07:48 - 00406864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2016-02-18 16:30 - 2015-09-17 07:06 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll 2016-02-18 16:30 - 2015-09-17 07:06 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll 2016-02-18 16:30 - 2015-09-17 07:03 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe 2016-02-18 16:30 - 2015-09-17 07:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll 2016-02-18 16:30 - 2015-09-17 06:55 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll 2016-02-18 16:30 - 2015-09-17 06:52 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll 2016-02-18 16:30 - 2015-09-17 06:52 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll 2016-02-18 16:30 - 2015-09-17 06:51 - 01812480 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll 2016-02-18 16:30 - 2015-09-17 06:50 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys 2016-02-18 16:30 - 2015-09-17 06:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\buttonconverter.sys 2016-02-18 16:30 - 2015-09-17 06:48 - 02093056 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll 2016-02-18 16:30 - 2015-09-17 06:47 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll 2016-02-18 16:30 - 2015-09-17 06:46 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll 2016-02-18 16:30 - 2015-09-17 06:46 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll 2016-02-18 16:30 - 2015-09-17 06:44 - 01844736 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll 2016-02-18 16:30 - 2015-09-17 06:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll 2016-02-18 16:30 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll 2016-02-18 16:30 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-02-18 16:30 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll 2016-02-18 16:30 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2016-02-18 16:30 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS 2016-02-18 16:30 - 2015-08-11 11:03 - 00442208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2016-02-18 16:30 - 2015-08-11 11:02 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys 2016-02-18 16:30 - 2015-08-11 10:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\tetheringclient.dll 2016-02-18 16:30 - 2015-08-11 10:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe 2016-02-18 16:29 - 2016-01-31 07:25 - 01951872 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2016-02-18 16:29 - 2016-01-31 07:25 - 01248896 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll 2016-02-18 16:29 - 2016-01-31 07:24 - 01824880 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-02-18 16:29 - 2016-01-31 07:23 - 01420392 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll 2016-02-18 16:29 - 2016-01-31 07:06 - 01535032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-02-18 16:29 - 2016-01-31 07:06 - 01531368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2016-02-18 16:29 - 2016-01-31 07:06 - 00809336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll 2016-02-18 16:29 - 2016-01-31 07:04 - 01180696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll 2016-02-18 16:29 - 2016-01-31 06:33 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\IoTAssignedAccessLockFramework.dll 2016-02-18 16:29 - 2016-01-31 06:29 - 11557888 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2016-02-18 16:29 - 2016-01-31 06:26 - 06787072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2016-02-18 16:29 - 2016-01-31 06:26 - 03793408 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2016-02-18 16:29 - 2016-01-31 06:20 - 02849792 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-02-18 16:29 - 2016-01-31 06:19 - 01602560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-02-18 16:29 - 2016-01-31 06:19 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll 2016-02-18 16:29 - 2016-01-31 06:16 - 09889280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2016-02-18 16:29 - 2016-01-31 06:16 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-02-18 16:29 - 2016-01-31 06:11 - 05156352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2016-02-18 16:29 - 2016-01-31 06:11 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll 2016-02-18 16:29 - 2016-01-31 06:06 - 02316800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-02-18 16:29 - 2016-01-31 06:05 - 01380864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-02-18 16:29 - 2016-01-31 06:02 - 00768000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-02-18 16:29 - 2016-01-05 04:07 - 02463704 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2016-02-18 16:29 - 2016-01-05 04:07 - 00377592 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL 2016-02-18 16:29 - 2016-01-05 04:06 - 01991120 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL 2016-02-18 16:29 - 2016-01-05 04:06 - 01270104 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 02641928 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2016-02-18 16:29 - 2016-01-05 04:04 - 01150816 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00862056 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00787720 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL 2016-02-18 16:29 - 2016-01-05 04:04 - 00784136 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00779928 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00772448 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00751992 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL 2016-02-18 16:29 - 2016-01-05 04:04 - 00667856 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00233992 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00115704 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL 2016-02-18 16:29 - 2016-01-05 04:04 - 00090912 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll 2016-02-18 16:29 - 2016-01-05 04:04 - 00083704 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll 2016-02-18 16:29 - 2016-01-05 03:59 - 00781976 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll 2016-02-18 16:29 - 2016-01-05 03:50 - 01083072 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-02-18 16:29 - 2016-01-05 03:50 - 00723648 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-02-18 16:29 - 2016-01-05 03:50 - 00345080 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL 2016-02-18 16:29 - 2016-01-05 03:50 - 00205072 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL 2016-02-18 16:29 - 2016-01-05 03:30 - 02459096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2016-02-18 16:29 - 2016-01-05 03:30 - 02162064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL 2016-02-18 16:29 - 2016-01-05 03:30 - 02152744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2016-02-18 16:29 - 2016-01-05 03:30 - 01106872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll 2016-02-18 16:29 - 2016-01-05 03:30 - 00368776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL 2016-02-18 16:29 - 2016-01-05 03:29 - 00208688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll 2016-02-18 16:29 - 2016-01-05 03:28 - 00714808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll 2016-02-18 16:29 - 2016-01-05 03:28 - 00696192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL 2016-02-18 16:29 - 2016-01-05 03:28 - 00695752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL 2016-02-18 16:29 - 2016-01-05 03:28 - 00645144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll 2016-02-18 16:29 - 2016-01-05 03:28 - 00635312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2016-02-18 16:29 - 2016-01-05 03:28 - 00497896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2016-02-18 16:29 - 2016-01-05 03:28 - 00107952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL 2016-02-18 16:29 - 2016-01-05 03:28 - 00082096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll 2016-02-18 16:29 - 2016-01-05 03:28 - 00072808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll 2016-02-18 16:29 - 2016-01-05 03:21 - 00658528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll 2016-02-18 16:29 - 2016-01-05 03:15 - 00931328 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL 2016-02-18 16:29 - 2016-01-05 03:15 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\usermgrcli.dll 2016-02-18 16:29 - 2016-01-05 03:10 - 00305776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL 2016-02-18 16:29 - 2016-01-05 03:10 - 00188032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL 2016-02-18 16:29 - 2016-01-05 03:09 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2016-02-18 16:29 - 2016-01-05 03:02 - 01672192 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2016-02-18 16:29 - 2016-01-05 03:02 - 00678912 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2016-02-18 16:29 - 2016-01-05 03:00 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-02-18 16:29 - 2016-01-05 02:59 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-02-18 16:29 - 2016-01-05 02:57 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll 2016-02-18 16:29 - 2016-01-05 02:51 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL 2016-02-18 16:29 - 2016-01-05 02:51 - 01009664 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL 2016-02-18 16:29 - 2016-01-05 02:51 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL 2016-02-18 16:29 - 2016-01-05 02:51 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL 2016-02-18 16:29 - 2016-01-05 02:51 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL 2016-02-18 16:29 - 2016-01-05 02:44 - 00159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll 2016-02-18 16:29 - 2016-01-05 02:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usermgrcli.dll 2016-02-18 16:29 - 2016-01-05 02:42 - 00871936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL 2016-02-18 16:29 - 2016-01-05 02:32 - 01541632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2016-02-18 16:29 - 2016-01-05 02:32 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2016-02-18 16:29 - 2016-01-05 02:31 - 00563200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2016-02-18 16:29 - 2016-01-05 02:20 - 00890880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL 2016-02-18 16:29 - 2016-01-05 02:19 - 01070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL 2016-02-18 16:29 - 2016-01-05 02:19 - 00747008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL 2016-02-18 16:29 - 2016-01-05 02:19 - 00409088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL 2016-02-18 16:29 - 2016-01-05 02:19 - 00404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL 2016-02-18 16:29 - 2015-12-01 07:03 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\gpuenergydrv.sys 2016-02-18 16:29 - 2015-11-25 06:42 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2016-02-18 16:29 - 2015-11-25 06:42 - 00168288 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.exe 2016-02-18 16:29 - 2015-11-25 06:33 - 03622272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-02-18 16:29 - 2015-11-25 06:27 - 01366680 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll 2016-02-18 16:29 - 2015-11-25 06:12 - 04047288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2016-02-18 16:29 - 2015-11-25 06:09 - 01310880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll 2016-02-18 16:29 - 2015-11-25 06:01 - 02879024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-02-18 16:29 - 2015-11-25 05:49 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll 2016-02-18 16:29 - 2015-11-25 05:49 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll 2016-02-18 16:29 - 2015-11-25 05:49 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\RasMediaManager.dll 2016-02-18 16:29 - 2015-11-25 05:48 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\EthernetMediaManager.dll 2016-02-18 16:29 - 2015-11-25 05:48 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\DAMediaManager.dll 2016-02-18 16:29 - 2015-11-25 05:37 - 02350592 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2016-02-18 16:29 - 2015-11-25 05:36 - 01710592 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll 2016-02-18 16:29 - 2015-11-25 05:35 - 00929792 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll 2016-02-18 16:29 - 2015-11-25 05:35 - 00845824 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe 2016-02-18 16:29 - 2015-11-25 05:31 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll 2016-02-18 16:29 - 2015-11-25 05:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll 2016-02-18 16:29 - 2015-11-25 05:29 - 01649152 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll 2016-02-18 16:29 - 2015-11-25 05:29 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\ninput.dll 2016-02-18 16:29 - 2015-11-25 05:27 - 02180608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll 2016-02-18 16:29 - 2015-11-25 05:23 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-02-18 16:29 - 2015-11-25 05:22 - 01717248 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll 2016-02-18 16:29 - 2015-11-25 05:22 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll 2016-02-18 16:29 - 2015-11-25 05:19 - 01795584 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll 2016-02-18 16:29 - 2015-11-25 05:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll 2016-02-18 16:29 - 2015-11-25 05:17 - 00774656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll 2016-02-18 16:29 - 2015-11-25 05:16 - 01442816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll 2016-02-18 16:29 - 2015-11-25 05:16 - 00786432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe 2016-02-18 16:29 - 2015-11-25 05:13 - 02153984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2016-02-18 16:29 - 2015-11-25 05:10 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll 2016-02-18 16:29 - 2015-11-25 05:04 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll 2016-02-18 16:29 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll 2016-02-18 16:29 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll 2016-02-18 16:29 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll 2016-02-18 16:29 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll 2016-02-18 16:29 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll 2016-02-18 16:29 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe 2016-02-18 16:29 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll 2016-02-18 16:29 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll 2016-02-18 16:29 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll 2016-02-18 16:29 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll 2016-02-18 16:29 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll 2016-02-18 16:29 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll 2016-02-18 16:29 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll 2016-02-18 16:29 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll 2016-02-18 16:29 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll 2016-02-18 16:29 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll 2016-02-18 16:29 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2016-02-18 16:29 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2016-02-18 16:29 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll 2016-02-18 16:29 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2016-02-18 16:29 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll 2016-02-18 16:29 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2016-02-18 16:29 - 2015-09-17 07:50 - 00099664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys 2016-02-18 16:29 - 2015-09-17 07:49 - 06487248 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll 2016-02-18 16:29 - 2015-09-17 07:49 - 00894256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2016-02-18 16:29 - 2015-09-17 07:49 - 00553808 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe 2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ C:\Windows\system32\CoreUIComponents.dll 2016-02-18 16:29 - 2015-09-17 07:48 - 02156400 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll 2016-02-18 16:29 - 2015-09-17 07:48 - 01983824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2016-02-18 16:29 - 2015-09-17 07:48 - 00555768 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll 2016-02-18 16:29 - 2015-09-17 07:48 - 00476760 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll 2016-02-18 16:29 - 2015-09-17 07:37 - 01295712 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll 2016-02-18 16:29 - 2015-09-17 07:28 - 05120056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll 2016-02-18 16:29 - 2015-09-17 07:28 - 00441168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe 2016-02-18 16:29 - 2015-09-17 07:28 - 00074880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll 2016-02-18 16:29 - 2015-09-17 07:27 - 01766952 _____ C:\Windows\SysWOW64\CoreUIComponents.dll 2016-02-18 16:29 - 2015-09-17 07:27 - 00454512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll 2016-02-18 16:29 - 2015-09-17 07:26 - 01895568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll 2016-02-18 16:29 - 2015-09-17 07:26 - 00434376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll 2016-02-18 16:29 - 2015-09-17 07:05 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll 2016-02-18 16:29 - 2015-09-17 07:05 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll 2016-02-18 16:29 - 2015-09-17 07:04 - 07569408 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll 2016-02-18 16:29 - 2015-09-17 07:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll 2016-02-18 16:29 - 2015-09-17 07:00 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll 2016-02-18 16:29 - 2015-09-17 06:57 - 02228736 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll 2016-02-18 16:29 - 2015-09-17 06:56 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll 2016-02-18 16:29 - 2015-09-17 06:55 - 00671232 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll 2016-02-18 16:29 - 2015-09-17 06:54 - 03781120 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll 2016-02-18 16:29 - 2015-09-17 06:54 - 00780288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll 2016-02-18 16:29 - 2015-09-17 06:54 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2016-02-18 16:29 - 2015-09-17 06:53 - 07055872 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll 2016-02-18 16:29 - 2015-09-17 06:52 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll 2016-02-18 16:29 - 2015-09-17 06:52 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll 2016-02-18 16:29 - 2015-09-17 06:52 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll 2016-02-18 16:29 - 2015-09-17 06:51 - 02660864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll 2016-02-18 16:29 - 2015-09-17 06:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\LocationGeofences.dll 2016-02-18 16:29 - 2015-09-17 06:49 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll 2016-02-18 16:29 - 2015-09-17 06:47 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll 2016-02-18 16:29 - 2015-09-17 06:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll 2016-02-18 16:29 - 2015-09-17 06:46 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll 2016-02-18 16:29 - 2015-09-17 06:45 - 01331200 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll 2016-02-18 16:29 - 2015-09-17 06:43 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll 2016-02-18 16:29 - 2015-09-17 06:40 - 06101504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll 2016-02-18 16:29 - 2015-09-17 06:39 - 00587264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll 2016-02-18 16:29 - 2015-09-17 06:39 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2016-02-18 16:29 - 2015-09-17 06:36 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll 2016-02-18 16:29 - 2015-09-17 06:35 - 05079552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll 2016-02-18 16:29 - 2015-09-17 06:35 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll 2016-02-18 16:29 - 2015-09-17 06:30 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll 2016-02-18 16:29 - 2015-09-17 06:29 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll 2016-02-18 16:29 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll 2016-02-18 16:29 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.PicturePassword.dll 2016-02-18 16:29 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2016-02-18 16:29 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll 2016-02-18 16:29 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2016-02-18 16:29 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll 2016-02-18 16:29 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll 2016-02-18 16:29 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll 2016-02-18 16:29 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll 2016-02-18 16:29 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll 2016-02-18 16:29 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2016-02-18 16:29 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll 2016-02-18 16:29 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll 2016-02-18 16:29 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll 2016-02-18 16:29 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll 2016-02-18 16:29 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll 2016-02-18 16:29 - 2015-08-11 10:50 - 01643872 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2016-02-18 16:29 - 2015-08-11 10:08 - 00893440 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll 2016-02-18 16:29 - 2015-08-11 10:05 - 03527168 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll 2016-02-18 16:29 - 2015-08-11 10:05 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\LocationPermissions.dll 2016-02-18 16:29 - 2015-08-11 10:03 - 02558976 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll 2016-02-18 16:29 - 2015-08-11 09:48 - 00671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll 2016-02-18 16:29 - 2015-08-11 09:43 - 02748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll 2016-02-18 16:29 - 2015-08-11 09:40 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll 2016-02-18 16:28 - 2016-01-31 06:29 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rasman.dll 2016-02-18 16:28 - 2016-01-31 06:24 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2016-02-18 16:28 - 2016-01-31 06:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2016-02-18 16:28 - 2016-01-31 06:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2016-02-18 16:28 - 2016-01-31 06:19 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IoTAssignedAccessLockFramework.dll 2016-02-18 16:28 - 2016-01-31 06:18 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll 2016-02-18 16:28 - 2016-01-31 06:18 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll 2016-02-18 16:28 - 2016-01-31 06:13 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasman.dll 2016-02-18 16:28 - 2016-01-31 06:13 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\ztrace_maps.dll 2016-02-18 16:28 - 2016-01-31 06:11 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2016-02-18 16:28 - 2016-01-31 06:05 - 00574464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll 2016-02-18 16:28 - 2016-01-31 06:05 - 00118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll 2016-02-18 16:28 - 2016-01-31 05:58 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ztrace_maps.dll 2016-02-18 16:28 - 2016-01-05 04:04 - 01591848 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-02-18 16:28 - 2016-01-05 04:04 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL 2016-02-18 16:28 - 2016-01-05 04:04 - 00249464 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL 2016-02-18 16:28 - 2016-01-05 04:04 - 00243248 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2016-02-18 16:28 - 2016-01-05 03:52 - 00441696 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-02-18 16:28 - 2016-01-05 03:50 - 01817064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll 2016-02-18 16:28 - 2016-01-05 03:50 - 00251544 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL 2016-02-18 16:28 - 2016-01-05 03:31 - 01365576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2016-02-18 16:28 - 2016-01-05 03:30 - 00232896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL 2016-02-18 16:28 - 2016-01-05 03:28 - 00277400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL 2016-02-18 16:28 - 2016-01-05 03:28 - 00116728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2016-02-18 16:28 - 2016-01-05 03:15 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll 2016-02-18 16:28 - 2016-01-05 03:10 - 00539136 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll 2016-02-18 16:28 - 2016-01-05 03:10 - 00278424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL 2016-02-18 16:28 - 2016-01-05 03:02 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2016-02-18 16:28 - 2016-01-05 03:01 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax 2016-02-18 16:28 - 2016-01-05 02:38 - 00556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll 2016-02-18 16:28 - 2016-01-05 02:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax 2016-02-18 16:28 - 2015-12-01 08:01 - 02115936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2016-02-18 16:28 - 2015-11-25 06:32 - 00113184 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll 2016-02-18 16:28 - 2015-11-25 05:59 - 00092992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll 2016-02-18 16:28 - 2015-11-25 05:36 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys |
26.02.2016, 20:08 | #9 |
| Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit Zweiter Teil von FRST.txt: Code:
ATTFilter 2016-02-18 16:28 - 2015-11-25 05:28 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll 2016-02-18 16:28 - 2015-11-25 05:26 - 00849408 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll 2016-02-18 16:28 - 2015-11-25 05:26 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll 2016-02-18 16:28 - 2015-11-25 05:25 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll 2016-02-18 16:28 - 2015-11-25 05:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll 2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll 2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZST.DLL 2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL 2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL 2016-02-18 16:28 - 2015-11-25 05:11 - 00296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll 2016-02-18 16:28 - 2015-11-25 05:10 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll 2016-02-18 16:28 - 2015-11-25 05:08 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll 2016-02-18 16:28 - 2015-11-25 05:07 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll 2016-02-18 16:28 - 2015-11-25 05:04 - 00480768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll 2016-02-18 16:28 - 2015-11-25 05:04 - 00474624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll 2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZST.DLL 2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL 2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL 2016-02-18 16:28 - 2015-11-25 03:52 - 00775312 _____ C:\Windows\SysWOW64\locale.nls 2016-02-18 16:28 - 2015-11-25 03:52 - 00775312 _____ C:\Windows\system32\locale.nls 2016-02-18 16:28 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe 2016-02-18 16:28 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-02-18 16:28 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll 2016-02-18 16:28 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll 2016-02-18 16:28 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll 2016-02-18 16:28 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll 2016-02-18 16:28 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll 2016-02-18 16:28 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll 2016-02-18 16:28 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-02-18 16:28 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2016-02-18 16:28 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2016-02-18 16:28 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2016-02-18 16:28 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2016-02-18 16:28 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2016-02-18 16:28 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi 2016-02-18 16:28 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll 2016-02-18 16:28 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll 2016-02-18 16:28 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll 2016-02-18 16:28 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll 2016-02-18 16:28 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll 2016-02-18 16:28 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll 2016-02-18 16:28 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll 2016-02-18 16:28 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll 2016-02-18 16:28 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll 2016-02-18 16:28 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll 2016-02-18 16:28 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll 2016-02-18 16:28 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll 2016-02-18 16:28 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\CallHistoryClient.dll 2016-02-18 16:28 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll 2016-02-18 16:28 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll 2016-02-18 16:28 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2016-02-18 16:28 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll 2016-02-18 16:28 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll 2016-02-18 16:28 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll 2016-02-18 16:28 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll 2016-02-18 16:28 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll 2016-02-18 16:28 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallHistoryClient.dll 2016-02-18 16:28 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll 2016-02-18 16:28 - 2015-09-19 06:14 - 00102304 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll 2016-02-18 16:28 - 2015-09-17 07:50 - 01563392 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll 2016-02-18 16:28 - 2015-09-17 07:50 - 00088384 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll 2016-02-18 16:28 - 2015-09-17 07:49 - 01563472 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll 2016-02-18 16:28 - 2015-09-17 07:49 - 00501008 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2016-02-18 16:28 - 2015-09-17 07:48 - 00809352 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll 2016-02-18 16:28 - 2015-09-17 07:48 - 00584656 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2016-02-18 16:28 - 2015-09-17 07:48 - 00537080 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll 2016-02-18 16:28 - 2015-09-17 07:48 - 00505696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys 2016-02-18 16:28 - 2015-09-17 07:48 - 00395088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2016-02-18 16:28 - 2015-09-17 07:48 - 00332624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys 2016-02-18 16:28 - 2015-09-17 07:48 - 00278352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys 2016-02-18 16:28 - 2015-09-17 07:37 - 01168736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2016-02-18 16:28 - 2015-09-17 07:28 - 01357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll 2016-02-18 16:28 - 2015-09-17 07:28 - 00407608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2016-02-18 16:28 - 2015-09-17 07:26 - 00508248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2016-02-18 16:28 - 2015-09-17 07:26 - 00428128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll 2016-02-18 16:28 - 2015-09-17 07:11 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll 2016-02-18 16:28 - 2015-09-17 07:10 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll 2016-02-18 16:28 - 2015-09-17 07:09 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll 2016-02-18 16:28 - 2015-09-17 07:09 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll 2016-02-18 16:28 - 2015-09-17 07:08 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll 2016-02-18 16:28 - 2015-09-17 07:08 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll 2016-02-18 16:28 - 2015-09-17 07:08 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerShellext.exe 2016-02-18 16:28 - 2015-09-17 07:04 - 00910848 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll 2016-02-18 16:28 - 2015-09-17 07:03 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll 2016-02-18 16:28 - 2015-09-17 07:03 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll 2016-02-18 16:28 - 2015-09-17 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe 2016-02-18 16:28 - 2015-09-17 07:02 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll 2016-02-18 16:28 - 2015-09-17 07:00 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll 2016-02-18 16:28 - 2015-09-17 06:58 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll 2016-02-18 16:28 - 2015-09-17 06:57 - 00403456 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll 2016-02-18 16:28 - 2015-09-17 06:57 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll 2016-02-18 16:28 - 2015-09-17 06:57 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll 2016-02-18 16:28 - 2015-09-17 06:56 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll 2016-02-18 16:28 - 2015-09-17 06:56 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll 2016-02-18 16:28 - 2015-09-17 06:55 - 01601536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll 2016-02-18 16:28 - 2015-09-17 06:55 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll 2016-02-18 16:28 - 2015-09-17 06:55 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll 2016-02-18 16:28 - 2015-09-17 06:55 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe 2016-02-18 16:28 - 2015-09-17 06:55 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll 2016-02-18 16:28 - 2015-09-17 06:52 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll 2016-02-18 16:28 - 2015-09-17 06:52 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll 2016-02-18 16:28 - 2015-09-17 06:52 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll 2016-02-18 16:28 - 2015-09-17 06:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll 2016-02-18 16:28 - 2015-09-17 06:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll 2016-02-18 16:28 - 2015-09-17 06:51 - 01203712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll 2016-02-18 16:28 - 2015-09-17 06:51 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll 2016-02-18 16:28 - 2015-09-17 06:51 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll 2016-02-18 16:28 - 2015-09-17 06:50 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll 2016-02-18 16:28 - 2015-09-17 06:50 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll 2016-02-18 16:28 - 2015-09-17 06:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeWiFi.dll 2016-02-18 16:28 - 2015-09-17 06:50 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeCell.dll 2016-02-18 16:28 - 2015-09-17 06:49 - 01290240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll 2016-02-18 16:28 - 2015-09-17 06:49 - 00439296 _____ (Microsoft Corporation) C:\Windows\system32\LocationWebproxy.dll 2016-02-18 16:28 - 2015-09-17 06:49 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\LocationCrowdsource.dll 2016-02-18 16:28 - 2015-09-17 06:49 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeIP.dll 2016-02-18 16:28 - 2015-09-17 06:49 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\LocationWiFiAdapter.dll 2016-02-18 16:28 - 2015-09-17 06:49 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Speech.Pal.dll 2016-02-18 16:28 - 2015-09-17 06:48 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll 2016-02-18 16:28 - 2015-09-17 06:48 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll 2016-02-18 16:28 - 2015-09-17 06:48 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll 2016-02-18 16:28 - 2015-09-17 06:48 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll 2016-02-18 16:28 - 2015-09-17 06:48 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll 2016-02-18 16:28 - 2015-09-17 06:47 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll 2016-02-18 16:28 - 2015-09-17 06:46 - 00928256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll 2016-02-18 16:28 - 2015-09-17 06:46 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll 2016-02-18 16:28 - 2015-09-17 06:46 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe 2016-02-18 16:28 - 2015-09-17 06:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\syncmlhook.dll 2016-02-18 16:28 - 2015-09-17 06:45 - 00869376 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll 2016-02-18 16:28 - 2015-09-17 06:45 - 00832512 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll 2016-02-18 16:28 - 2015-09-17 06:45 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll 2016-02-18 16:28 - 2015-09-17 06:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll 2016-02-18 16:28 - 2015-09-17 06:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\syncutil.dll 2016-02-18 16:28 - 2015-09-17 06:43 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll 2016-02-18 16:28 - 2015-09-17 06:43 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll 2016-02-18 16:28 - 2015-09-17 06:41 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll 2016-02-18 16:28 - 2015-09-17 06:40 - 01162240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll 2016-02-18 16:28 - 2015-09-17 06:38 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll 2016-02-18 16:28 - 2015-09-17 06:37 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll 2016-02-18 16:28 - 2015-09-17 06:35 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll 2016-02-18 16:28 - 2015-09-17 06:34 - 00253440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll 2016-02-18 16:28 - 2015-09-17 06:32 - 00336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll 2016-02-18 16:28 - 2015-09-17 06:32 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll 2016-02-18 16:28 - 2015-09-17 06:32 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2016-02-18 16:28 - 2015-09-17 06:31 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll 2016-02-18 16:28 - 2015-09-17 06:29 - 00701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll 2016-02-18 16:28 - 2015-09-17 06:29 - 00677888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll 2016-02-18 16:28 - 2015-09-17 06:28 - 00473088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll 2016-02-18 16:28 - 2015-09-17 06:26 - 00899584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll 2016-02-18 16:28 - 2015-09-17 06:16 - 00512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll 2016-02-18 16:28 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-02-18 16:28 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll 2016-02-18 16:28 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2016-02-18 16:28 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll 2016-02-18 16:28 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe 2016-02-18 16:28 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll 2016-02-18 16:28 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll 2016-02-18 16:28 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll 2016-02-18 16:28 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll 2016-02-18 16:28 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll 2016-02-18 16:28 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll 2016-02-18 16:28 - 2015-08-18 07:54 - 00247296 _____ C:\Windows\system32\facecredentialprovider.dll 2016-02-18 16:28 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll 2016-02-18 16:28 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll 2016-02-18 16:28 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll 2016-02-18 16:28 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll 2016-02-18 16:28 - 2015-08-18 05:44 - 00008847 _____ C:\Windows\system32\ResPriHMImageList 2016-02-18 16:28 - 2015-08-11 11:04 - 01087296 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2016-02-18 16:28 - 2015-08-11 11:02 - 00292856 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe 2016-02-18 16:28 - 2015-08-11 10:52 - 00993104 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll 2016-02-18 16:28 - 2015-08-11 10:40 - 00918320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2016-02-18 16:28 - 2015-08-11 10:37 - 00243800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe 2016-02-18 16:28 - 2015-08-11 10:26 - 00845664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll 2016-02-18 16:28 - 2015-08-11 10:19 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll 2016-02-18 16:28 - 2015-08-11 10:14 - 00404480 _____ C:\Windows\system32\diagtrack_wininternal.dll 2016-02-18 16:28 - 2015-08-11 10:13 - 00413184 _____ C:\Windows\system32\diagtrack_win.dll 2016-02-18 16:28 - 2015-08-11 10:11 - 02446336 _____ C:\Windows\system32\InputService.dll 2016-02-18 16:28 - 2015-08-11 10:11 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe 2016-02-18 16:28 - 2015-08-11 10:10 - 00293376 _____ C:\Windows\system32\TextInputFramework.dll 2016-02-18 16:28 - 2015-08-11 10:09 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll 2016-02-18 16:28 - 2015-08-11 10:05 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll 2016-02-18 16:28 - 2015-08-11 10:00 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe 2016-02-18 16:28 - 2015-08-11 09:59 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll 2016-02-18 16:28 - 2015-08-11 09:59 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll 2016-02-18 16:28 - 2015-08-11 09:59 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll 2016-02-18 16:28 - 2015-08-11 09:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tetheringclient.dll 2016-02-18 16:28 - 2015-08-11 09:51 - 01823232 _____ C:\Windows\SysWOW64\InputService.dll 2016-02-18 16:28 - 2015-08-11 09:50 - 00420352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe 2016-02-18 16:28 - 2015-08-11 09:50 - 00200704 _____ C:\Windows\SysWOW64\TextInputFramework.dll 2016-02-18 16:28 - 2015-08-11 09:50 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll 2016-02-18 16:28 - 2015-08-11 09:39 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe 2016-02-18 16:28 - 2015-08-11 09:38 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll 2016-02-18 16:08 - 2016-02-20 17:33 - 00000000 ____D C:\Program Files\Microsoft Games 2016-02-18 16:05 - 2016-02-20 17:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft Games 2016-02-18 16:05 - 2016-02-18 16:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Microsoft Games 2016-02-18 16:00 - 2016-02-18 16:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vista Games 2016-02-18 15:59 - 2010-05-17 08:33 - 00061440 _____ (Rafael & ZoRoNaX) C:\Windows\system32\Vista.Emulation.dll 2016-02-18 13:29 - 2016-02-18 19:35 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\vlc 2016-02-18 13:29 - 2016-02-18 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2016-02-18 13:29 - 2016-02-18 13:29 - 00000000 ____D C:\Program Files\VideoLAN 2016-02-18 12:55 - 2016-02-23 13:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Flight Simulator-Dateien 2016-02-18 12:51 - 2016-02-18 12:51 - 00000000 ____D C:\Users\Public\Documents\Flight Simulator-Dateien 2016-02-18 12:49 - 2016-02-18 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games 2016-02-18 12:43 - 2016-02-26 19:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Programme 2016-02-18 12:42 - 2016-02-18 16:00 - 00000000 ____D C:\Program Files (x86)\Microsoft Games 2016-02-18 11:29 - 2016-02-18 11:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Criterion Games 2016-02-18 11:26 - 2012-04-12 14:25 - 00539136 _____ (Microsoft Corporation) C:\Program Files (x86)\spider.exe 2016-02-18 10:54 - 2016-02-25 18:00 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele 2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online 2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Chat 2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\Program Files (x86)\WestwoodOnline 2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\Program Files (x86)\WestwoodChat 2016-02-18 10:52 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2016-02-18 10:52 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2016-02-18 10:52 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2016-02-18 10:52 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2016-02-18 10:52 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2016-02-18 10:52 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2016-02-18 10:52 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2016-02-18 10:52 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2016-02-18 10:52 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2016-02-18 10:52 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2016-02-18 10:52 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2016-02-18 10:52 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2016-02-18 10:52 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2016-02-18 10:52 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2016-02-18 10:52 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2016-02-18 10:52 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2016-02-18 10:52 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2016-02-18 10:52 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2016-02-18 10:52 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2016-02-18 10:52 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2016-02-18 10:52 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2016-02-18 10:52 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2016-02-18 10:52 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2016-02-18 10:52 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2016-02-18 10:52 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2016-02-18 10:52 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2016-02-18 10:52 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2016-02-18 10:52 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2016-02-18 10:52 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2016-02-18 10:52 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2016-02-18 10:52 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2016-02-18 10:52 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2016-02-18 10:52 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2016-02-18 10:52 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2016-02-18 10:52 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2016-02-18 10:52 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2016-02-18 10:52 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2016-02-18 10:52 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2016-02-18 10:52 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2016-02-18 10:52 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2016-02-18 10:52 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2016-02-18 10:52 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2016-02-18 10:52 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2016-02-18 10:52 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2016-02-18 10:52 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2016-02-18 10:52 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2016-02-18 10:52 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2016-02-18 10:52 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2016-02-18 10:52 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2016-02-18 10:52 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2016-02-18 10:52 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2016-02-18 10:52 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2016-02-18 10:52 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2016-02-18 10:52 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2016-02-18 10:52 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2016-02-18 10:52 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2016-02-18 10:52 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2016-02-18 10:52 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2016-02-18 10:52 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2016-02-18 10:52 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2016-02-18 10:52 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2016-02-18 10:52 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2016-02-18 10:52 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2016-02-18 10:52 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2016-02-18 10:52 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2016-02-18 10:52 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2016-02-18 10:52 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2016-02-18 10:52 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2016-02-18 10:52 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2016-02-18 10:52 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2016-02-18 10:52 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2016-02-18 10:52 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2016-02-18 10:52 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2016-02-18 10:52 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2016-02-18 10:52 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2016-02-18 10:52 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2016-02-18 10:52 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2016-02-18 10:52 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2016-02-18 10:52 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2016-02-18 10:52 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2016-02-18 10:52 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2016-02-18 10:52 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2016-02-18 10:52 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2016-02-18 10:52 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2016-02-18 10:52 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2016-02-18 10:52 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2016-02-18 10:52 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2016-02-18 10:52 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2016-02-18 10:52 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2016-02-18 10:52 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2016-02-18 10:52 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2016-02-18 10:52 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2016-02-18 10:52 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2016-02-18 10:52 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2016-02-18 10:52 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2016-02-18 10:52 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2016-02-18 10:52 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2016-02-18 10:52 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2016-02-18 10:52 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2016-02-18 10:52 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2016-02-18 10:52 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2016-02-18 10:52 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2016-02-18 10:52 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2016-02-18 10:52 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2016-02-18 10:52 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2016-02-18 10:52 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2016-02-18 10:52 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2016-02-18 10:52 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2016-02-18 10:52 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2016-02-18 10:52 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2016-02-18 10:52 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2016-02-18 10:52 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2016-02-18 10:52 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2016-02-18 10:52 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2016-02-18 10:52 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2016-02-18 10:52 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2016-02-18 10:52 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2016-02-18 10:52 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2016-02-18 10:52 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2016-02-18 10:52 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2016-02-18 10:52 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2016-02-18 10:52 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2016-02-18 10:52 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2016-02-18 10:52 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2016-02-18 10:52 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2016-02-18 10:52 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2016-02-18 10:52 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2016-02-18 10:52 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2016-02-18 10:52 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2016-02-18 10:52 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2016-02-18 10:52 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2016-02-18 10:52 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2016-02-18 10:52 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2016-02-18 10:52 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2016-02-18 10:52 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2016-02-18 10:52 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2016-02-18 10:52 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2016-02-18 10:52 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2016-02-18 10:52 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2016-02-18 10:52 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2016-02-18 10:52 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2016-02-18 10:52 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2016-02-18 10:52 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2016-02-18 10:52 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2016-02-18 10:52 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2016-02-18 10:52 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2016-02-18 10:52 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2016-02-18 10:52 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2016-02-18 10:52 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2016-02-18 10:52 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2016-02-18 10:46 - 2016-02-18 15:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Origin 2016-02-18 10:46 - 2016-02-18 11:18 - 00000000 ____D C:\Program Files (x86)\Origin Games 2016-02-18 10:46 - 2016-02-18 10:46 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Origin 2016-02-18 10:43 - 2016-02-26 19:45 - 00000000 ____D C:\ProgramData\Origin 2016-02-18 10:43 - 2016-02-18 11:29 - 00000000 ____D C:\ProgramData\Electronic Arts 2016-02-18 10:43 - 2016-02-18 10:46 - 00000000 ____D C:\Program Files (x86)\Origin 2016-02-18 10:43 - 2016-02-18 10:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2016-02-18 10:42 - 2016-02-18 10:42 - 31335272 _____ (Electronic Arts, Inc.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\OriginThinSetup.exe 2016-02-18 10:25 - 2016-02-23 17:56 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik 2016-02-18 10:11 - 2016-02-18 10:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2 2016-02-18 10:11 - 2016-02-18 10:11 - 00000000 ____D C:\Program Files (x86)\LogView V2 2016-02-18 10:06 - 2016-02-18 10:06 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\LogView 7 2016-02-18 09:56 - 2016-02-18 10:25 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\LogView 2016-02-18 09:52 - 2016-02-18 09:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Comms 2016-02-18 09:42 - 2016-02-25 09:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Grafik 2016-02-18 09:41 - 2016-02-18 09:41 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paint Shop Pro 5 2016-02-18 09:41 - 2016-02-18 09:41 - 00000000 ____D C:\Program Files (x86)\Paint Shop Pro 5 2016-02-18 09:30 - 2016-02-18 09:30 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.android 2016-02-17 21:14 - 2016-02-17 21:14 - 00000000 ___RD C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Brother 2016-02-17 21:13 - 2016-02-22 13:41 - 00000432 _____ C:\Windows\BRWMARK.INI 2016-02-17 21:13 - 2016-02-22 13:41 - 00000034 _____ C:\Windows\SysWOW64\BD2030.DAT 2016-02-17 20:27 - 2016-02-17 20:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\NetworkTiles 2016-02-17 18:35 - 2016-02-19 16:02 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten 2016-02-17 18:11 - 2016-02-17 18:11 - 00026296 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Abrechnung_4475958910292900_20160214.PDF 2016-02-17 17:44 - 2016-02-17 17:45 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Office 2016-02-17 17:42 - 2016-02-21 16:24 - 00425472 _____ (Steganos GmbH) C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\LockNote105.exe 2016-02-17 17:40 - 2016-02-18 16:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Works 2016-02-17 17:40 - 2016-02-17 17:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-02-17 17:39 - 2016-02-17 17:39 - 00000000 ____D C:\Windows\PCHEALTH 2016-02-17 17:36 - 2016-02-17 17:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft Help 2016-02-17 17:36 - 2016-02-17 17:36 - 00000000 ____D C:\Program Files\Microsoft Office 2016-02-17 17:35 - 2016-02-17 17:35 - 00000000 __RHD C:\MSOCache 2016-02-17 17:15 - 2016-02-17 21:20 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\ElevatedDiagnostics 2016-02-17 17:14 - 2016-02-17 17:14 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kaspersky 2016-02-17 17:12 - 2016-02-17 17:12 - 00002026 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Editor.lnk 2016-02-17 17:11 - 2016-02-17 17:11 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\WildTangent 2016-02-17 16:59 - 2016-02-17 16:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2016-02-17 16:59 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll 2016-02-17 16:58 - 2016-02-26 19:58 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2016-02-17 16:58 - 2016-02-26 19:44 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture 2016-02-17 16:58 - 2016-02-17 17:21 - 00934272 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys 2016-02-17 16:58 - 2016-02-17 17:21 - 00181640 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys 2016-02-17 16:58 - 2016-02-17 17:04 - 00227512 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys 2016-02-17 16:58 - 2016-02-17 16:58 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab 2016-02-17 16:43 - 2015-07-09 20:38 - 01996288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0007.dll 2016-02-17 16:43 - 2015-07-09 20:36 - 12039680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsLexicons0007.dll 2016-02-17 16:43 - 2015-07-09 20:26 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0007.dll 2016-02-17 16:43 - 2015-07-09 20:25 - 12039680 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0007.dll 2016-02-17 16:43 - 2015-07-09 20:25 - 11602944 _____ (Microsoft Corporation) C:\Windows\system32\prm0007.dll 2016-02-17 16:42 - 2016-02-17 16:48 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Mozilla 2016-02-17 16:42 - 2016-02-17 16:42 - 00001049 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk 2016-02-17 16:42 - 2016-02-17 16:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla 2016-02-17 16:41 - 2016-02-17 16:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2016-02-17 16:36 - 2016-02-17 16:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\awsRun 2016-02-17 16:33 - 2016-02-17 16:33 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Macromedia 2016-02-17 16:32 - 2016-02-17 20:11 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\MicrosoftEdge 2016-02-17 16:31 - 2016-02-17 16:31 - 00002439 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-02-17 16:31 - 2016-02-17 16:31 - 00000000 ___RD C:\Users\Gunther.DESKTOP-L5KOO87\OneDrive 2016-02-17 16:31 - 2016-02-17 16:31 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\NVIDIA 2016-02-17 16:28 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Adobe 2016-02-17 16:28 - 2016-02-17 16:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\DropboxOEM 2016-02-17 16:28 - 2016-02-17 16:28 - 00003628 _____ C:\Windows\System32\Tasks\ASUS Smart Gesture Launcher 2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\WebStorage 2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Publishers 2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\DropboxOEM 2016-02-17 16:27 - 2016-02-26 19:44 - 00000165 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\sp_data.sys 2016-02-17 16:27 - 2016-02-21 18:31 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87 2016-02-17 16:27 - 2016-02-21 15:35 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\VirtualStore 2016-02-17 16:27 - 2016-02-20 17:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Packages 2016-02-17 16:27 - 2016-02-17 16:27 - 00056952 _____ C:\Windows\system32\ASGCoInstaller_x64.dll 2016-02-17 16:27 - 2016-02-17 16:27 - 00016148 _____ C:\Windows\system32\DESKTOP-L5KOO87_defaultuser0_HistoryPrediction.bin 2016-02-17 16:27 - 2016-02-17 16:27 - 00000020 ___SH C:\Users\Gunther.DESKTOP-L5KOO87\ntuser.ini 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Vorlagen 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Startmenü 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Netzwerkumgebung 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Lokale Einstellungen 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Eigene Dateien 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Druckumgebung 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Videos 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Musik 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Bilder 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Verlauf 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Anwendungsdaten 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Anwendungsdaten 2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\TileDataLayer 2016-02-17 16:24 - 2016-02-26 19:43 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2016-02-17 16:18 - 2015-12-09 04:39 - 00301728 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-02-26 19:57 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsUpdateTask_Administrator.job 2016-02-26 19:50 - 2015-08-18 14:14 - 00773778 _____ C:\Windows\system32\perfh007.dat 2016-02-26 19:50 - 2015-08-18 14:14 - 00154590 _____ C:\Windows\system32\perfc007.dat 2016-02-26 19:50 - 2015-08-18 06:20 - 01790124 _____ C:\Windows\system32\PerfStringBackup.INI 2016-02-26 19:50 - 2015-07-10 12:02 - 00000000 ____D C:\Windows\INF 2016-02-26 19:43 - 2015-11-11 08:51 - 00000000 __SHD C:\Users\Gunther\IntelGraphicsProfiles 2016-02-26 19:42 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-02-26 19:42 - 2015-07-10 10:05 - 00131072 ___SH C:\Windows\system32\config\BBI 2016-02-26 19:41 - 2015-11-11 08:23 - 00001542 _____ C:\Users\Public\Desktop\WPS Office.lnk 2016-02-26 18:00 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsNotifyTask_Administrator.job 2016-02-26 16:18 - 2015-07-10 17:27 - 00000000 ____D C:\Windows\OCR 2016-02-26 13:24 - 2015-08-18 06:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2016-02-26 13:24 - 2015-07-10 12:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-02-26 12:00 - 2015-11-11 08:02 - 00003544 _____ C:\Windows\System32\Tasks\ASUS Live Update1 2016-02-26 12:00 - 2015-11-11 08:02 - 00003534 _____ C:\Windows\System32\Tasks\ASUS Live Update2 2016-02-26 08:50 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps 2016-02-26 08:50 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\AppReadiness 2016-02-25 09:27 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp 2016-02-23 17:55 - 2015-11-11 07:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-02-21 17:22 - 2015-07-10 13:20 - 00232392 _____ C:\Windows\system32\FNTCACHE.DAT 2016-02-21 15:29 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2016-02-21 10:37 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\rescache 2016-02-21 10:34 - 2015-08-18 14:13 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2016-02-21 10:34 - 2015-07-10 17:30 - 00000000 ____D C:\Program Files\Windows Journal 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\winrm 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\WCN 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\slmgr 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\winrm 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\WCN 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\slmgr 2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\F12 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\F12 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\dsc 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\DiagSvcs 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\MiracastView 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\ImmersiveControlPanel 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\DevicesFlow 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\oobe 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\MUI 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\Com 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\SystemResetPlatform 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\oobe 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\MUI 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\migwiz 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\Com 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\PolicyDefinitions 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\IME 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Help 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Defender 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\System 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\SysWOW64\Dism 2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Sysprep 2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Dism 2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\servicing 2016-02-21 09:55 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\en-GB 2016-02-21 09:55 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\en-GB 2016-02-21 08:56 - 2015-11-11 07:39 - 00000000 ____D C:\ProgramData\Package Cache 2016-02-20 16:54 - 2015-07-10 12:04 - 00000150 _____ C:\Windows\win.ini 2016-02-20 10:26 - 2015-11-11 08:02 - 00000000 ____D C:\Program Files\DIFX 2016-02-20 10:25 - 2015-08-18 14:00 - 00000000 ____D C:\Program Files (x86)\MSBuild 2016-02-19 20:10 - 2015-11-11 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-02-19 19:43 - 2015-11-11 10:41 - 00000000 ___HD C:\$SysReset 2016-02-19 15:16 - 2015-11-11 07:36 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\PurchaseDialog 2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioPlugIns 2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\appraiser 2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Provisioning 2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\L2Schemas 2016-02-18 19:53 - 2015-08-18 15:00 - 00000000 ____D C:\Windows\Panther 2016-02-18 19:48 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT 2016-02-18 16:26 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioDatabase 2016-02-18 12:51 - 2015-07-10 11:59 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe 2016-02-18 12:51 - 2015-07-10 11:59 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe 2016-02-18 12:51 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll 2016-02-18 12:51 - 2015-07-10 11:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll 2016-02-18 12:50 - 2015-07-10 11:59 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll 2016-02-18 12:50 - 2015-07-10 11:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll 2016-02-18 12:50 - 2015-07-10 11:59 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll 2016-02-18 12:50 - 2015-07-10 11:59 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe 2016-02-18 08:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\appcompat 2016-02-17 17:36 - 2015-07-10 17:30 - 00000000 ____D C:\Windows\ShellNew 2016-02-17 17:21 - 2015-06-26 23:58 - 00087944 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klwfp.sys 2016-02-17 17:21 - 2015-06-08 19:43 - 00041352 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klpd.sys 2016-02-17 16:59 - 2015-11-11 09:08 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2016-02-17 16:59 - 2015-07-10 10:05 - 00032768 ___SH C:\Windows\system32\config\ELAM 2016-02-17 16:58 - 2015-07-10 12:04 - 00000000 ___HD C:\Windows\ELAMBKUP 2016-02-17 16:57 - 2015-11-11 08:07 - 00000000 ____D C:\ProgramData\McAfee 2016-02-17 16:57 - 2015-11-11 08:07 - 00000000 ____D C:\Program Files (x86)\McAfee 2016-02-17 16:50 - 2015-11-11 08:51 - 00000000 ____D C:\Users\Gunther 2016-02-17 16:42 - 2015-11-11 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-02-17 16:33 - 2015-08-18 06:27 - 00000000 ____D C:\Program Files (x86)\ASUS 2016-02-17 16:27 - 2015-11-11 08:53 - 00000000 ____D C:\ProgramData\SetupTPDriver 2016-02-17 16:25 - 2015-11-11 08:50 - 00000000 ____D C:\ProgramData\USBChargerPlus 2016-02-02 23:47 - 2015-08-18 06:34 - 00828920 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-02-02 23:47 - 2015-08-18 06:34 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2016-02-18 11:26 - 2012-04-12 14:25 - 0539136 _____ (Microsoft Corporation) C:\Program Files (x86)\spider.exe 2016-02-17 16:27 - 2016-02-26 19:44 - 0000165 _____ () C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\sp_data.sys 2016-02-21 15:38 - 2016-02-21 15:45 - 0000017 ____H () C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\19720201.dat 2015-11-11 07:51 - 2015-11-11 07:51 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2016-01-26 09:02 - 2016-01-26 09:02 - 0010346 _____ () C:\ProgramData\regid.1996-09.com.picotech_{d03e5488-efee-4362-98cf-72f093b918f0}.swidtag Einige Dateien in TEMP: ==================== C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\cfuapir2.dll C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\d5wc5ovy.dll C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\McCSPInstall.dll C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\mccspuninstall.exe C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\ose00000.exe C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\pzunzahz.dll C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\QC27khC3Gx.exe C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\sf3ldbaj.dll C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\sqlite3.dll C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\tmp-drivermax10195779.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-08-18 06:02 ==================== Ende von FRST.txt ============================ Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:21-02-2016 01 durchgeführt von Gunther (2016-02-26 19:59:56) Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen Windows 10 Home (X64) (2016-02-17 15:23:58) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-2421830386-3516612503-909366600-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2421830386-3516612503-909366600-503 - Limited - Disabled) Gast (S-1-5-21-2421830386-3516612503-909366600-501 - Limited - Disabled) Gunther (S-1-5-21-2421830386-3516612503-909366600-1001 - Administrator - Enabled) => C:\Users\Gunther.DESKTOP-L5KOO87 ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B} AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20059 - Adobe Systems Incorporated) ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.6 - ASUS) ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.5 - ASUS) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.5 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS) Atmel USB (HKLM-x32\...\{E8F8861D-98E0-43FF-9E48-AC236CC3BE4E}) (Version: 10.6 - Atmel) Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.105 - ICEpower a/s) Avast SecureLine for Asustek (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.239.3 - AVAST Software) BASCOM-AVR (HKLM-x32\...\{47F94730-ABD2-47F6-920E-EA8CDB6DD0C6}_is1) (Version: 2.0.7.5 - MCS Electronics) Command & Conquer™ Red Alert, Counterstrike and The Aftermath (HKLM-x32\...\{B9A7CCBE-48F7-4B3E-BD20-76ADDD4DC69F}) (Version: 1.0.0.0 - Electronic Arts, Inc.) Command & Conquer™ Tiberian Sun™ and Firestorm™ (HKLM-x32\...\{78F60BDD-1923-4CF7-B6BD-087D06D7B5BB}) (Version: 1.0.0.0 - Electronic Arts, Inc.) DesignCAD 22 (HKLM-x32\...\{C5C61F02-1453-48A1-947E-8BC9F6812F8E}) (Version: 22.0.0 - IMSIDesign) Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.) Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.) DVBViewer Pro (HKLM-x32\...\DVBViewer Pro_is1) (Version: 5.5.2.0 - CM&V) Evernote v. 5.8.6 (HKLM-x32\...\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}) (Version: 5.8.6.7519 - Evernote Corp.) Fugawi 4.5 (HKLM-x32\...\Fugawi45_is1) (Version: 4.5 - Northport Systems Inc.) Fugawi Google Earth Plug-in Version 1.1.0.4 (HKLM-x32\...\Fugawi45_GE_is1) (Version: 4.5 - Northport Systems Inc.) FugVS2005 (HKLM-x32\...\{0C8364B1-AFD8-45B7-ACE8-B76113B6C418}) (Version: 1.0.0 - Northport Systems Inc.) Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation) Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4300 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) Java 8 Update 73 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418073F0}) (Version: 8.0.730.2 - Oracle Corporation) JLink OB CDC Driver Package (HKLM\...\{CD0E9FFE-70DD-47E3-A7A5-750E9DE6F40B}) (Version: 1.2.1 - SEGGER) Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab) Kaspersky Internet Security (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden LAV Filters 0.67 (HKLM-x32\...\lavfilters_is1) (Version: 0.67 - Hendrik Leppkes) LogView V2 (HKLM-x32\...\LogView V2) (Version: LogView V2 2 - LogView.info - D.Schmidt / H.Hemmecke) LogView V2 2 (HKU\S-1-5-21-2421830386-3516612503-909366600-1001\...\LogView V2 2) (Version: 2 - LogView.info) Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Flight Simulator 2004 - Das Jahrhundert der Luftfahrt (HKLM-x32\...\Flight Simulator 9.0) (Version: 9.0 - Microsoft) Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation) Microsoft SQL Server System CLR Types (HKLM-x32\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Shell (Isolated) - ENU (HKLM-x32\...\{D64B6984-242F-32BC-B008-752806E5FC44}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 44.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2 - Mozilla) MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.7 - F.J. Wechselberger) Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts) NVIDIA Graphics Driver 353.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.84 - NVIDIA Corporation) NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) Origin (HKLM-x32\...\Origin) (Version: 9.11.5.17432 - Electronic Arts, Inc.) Paint Shop Pro 5.01 (HKLM-x32\...\Paint Shop Pro 5.01) (Version: - ) Pico Technology Beta SDK 64-bit (HKLM-x32\...\{da5e6d88-b17c-44cb-a5f9-bf1b5948aef8}) (Version: 10.6.11.23 - Pico Technology Ltd) Pico Technology Beta SDK 64-bit (Version: 10.6.11.23 - Pico Technology Ltd) Hidden PicoScope 6 (HKLM-x32\...\{fe3cc74a-a370-4be1-8daf-90355086e1f4}) (Version: 6.11.10 - Pico Technology) Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31213 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.) SpyHunter 4 (HKLM-x32\...\SpyHunter) (Version: 4.21.18.4608 - Enigma Software Group, LLC) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft) Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft) Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden VLC media player (HKLM\...\VLC media player) (Version: 2.2.2 - VideoLAN) WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.2.524 - ASUS Cloud Corporation) WestwoodChat (HKLM-x32\...\{7CAE6A67-AF7B-4A6A-8705-8AFACA45BB60}) (Version: 1.0.0.0 - WestwoodChat) WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline) WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.16 - WildTangent) Windows-Treiberpaket - ASUS (ATP) Mouse (06/17/2015 6.0.0.66) (HKLM\...\1EFB54678773735560B565BE7FA6F2BCC557EE21) (Version: 06/17/2015 6.0.0.66 - ASUS) Windows-Treiberpaket - Segger (jlink_ob_x64) USB (03/13/2012 2.6.6.2) (HKLM\...\6D4C34D12E9233ABADF9D04ADF9E288A7ECF3B5B) (Version: 03/13/2012 2.6.6.2 - Segger) Windows-Treiberpaket - SEGGER (usbser) Ports (01/25/2012 6.0.2600.4) (HKLM\...\BD6BF8BBF7BE0D0091163F649A1A423B7EB9D4F1) (Version: 01/25/2012 6.0.2600.4 - SEGGER) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS) WPS Office for ASUS (HKLM-x32\...\Kingsoft Office) (Version: 9.1.0.4947 - Kingsoft Corp.) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-2421830386-3516612503-909366600-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\FileCoAuth.exe (Microsoft Corporation) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {0F71139B-44DA-4814-95B3-36544058B19C} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] () Task: {16C0F2CB-05FF-42DC-B079-DCDC8E771142} - System32\Tasks\WpsUpdateTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd) Task: {265A3230-80C1-46DE-871D-6D0FE4A72A99} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-18] (Google Inc.) Task: {2676E35B-A115-4EAD-9303-94D32321AE26} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.) Task: {37600127-75F6-4D0E-AB73-1557C66DB28E} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.) Task: {402CA532-759F-4D1B-A63F-7B136F42AC1D} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.) Task: {42DDF692-C8FF-4705-ABD1-EF4E97066915} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-08-23] (AsusTek) Task: {47B485D9-1AC5-4DE9-BEE0-A56921B2021A} - System32\Tasks\WpsNotifyTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd) Task: {80875153-D0CA-4A0A-9947-BCF3BF2007D0} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-08-12] () Task: {80C44CD8-38C9-488D-8935-B27061176C6C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated) Task: {8EBD672F-3CE9-4F4F-AE48-C0C1AB17EAF5} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.) Task: {97381284-491B-4EC0-A307-B796E0367D01} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.) Task: {9DD4AD4D-DC0D-4826-B61A-46025A6F398C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-18] (Google Inc.) Task: {A9871C1C-7FA9-4094-9760-69F1EA4F5C91} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS) Task: {AFA1BF32-F765-406A-AF10-1B2967A4442B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-07-29] (Realtek Semiconductor) Task: {CC5EAE02-3FB5-4F7A-B4D4-B55F51724A9E} - System32\Tasks\{FCC43C23-C686-4530-BB4D-97C7E689F677} => pcalua.exe -a C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\avrispmkii_libusb-win32_1.2.1.0\avrispmkii_libusb-win32_1.2.1.0\installer_x86.exe -d C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\avrispmkii_libusb-win32_1.2.1.0\avrispmkii_libusb-win32_1.2.1.0 Task: {DEA915F7-74D4-4B8F-BABD-86723BDCC2B1} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-07-29] (Realtek Semiconductor) Task: {DEE7A683-A2E0-4371-B9CA-3A7A637B2562} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2015-04-29] (AVAST Software) Task: {F25573CF-40E1-4DE9-8EA5-391037769186} - System32\Tasks\DriverMaxAgent => C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe Task: {F8268434-0A8D-4792-BB93-FF2B7B564467} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.) Task: {FBFB39E4-B59D-44B9-8DC0-FA82B0F4B685} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-02-18] (Microsoft Corporation) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\WpsNotifyTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe Task: C:\Windows\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-08-18 06:25 - 2015-07-15 03:04 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll 2015-11-11 07:48 - 2015-08-07 18:18 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-02-18 16:28 - 2015-08-11 10:14 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll 2015-05-19 10:11 - 2015-05-19 10:11 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe 2015-11-11 08:06 - 2015-04-29 18:04 - 00445240 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe 2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\system32\CoreUIComponents.dll 2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\System32\CoreUIComponents.dll 2016-02-18 16:28 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-02-18 16:29 - 2015-11-25 05:20 - 06569472 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-02-18 16:29 - 2015-11-25 05:17 - 00471040 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-02-18 16:29 - 2015-11-25 05:17 - 01808384 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-02-18 16:29 - 2015-09-17 06:43 - 02274816 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-10-09 10:13 - 2015-10-06 10:03 - 00395368 _____ () C:\Windows\system32\igfxTray.exe 2015-07-08 23:18 - 2015-07-08 23:18 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kpcengine.2.3.dll 2015-08-25 10:40 - 2015-08-25 10:40 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll 2015-08-25 10:40 - 2015-08-25 10:40 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll 2015-11-11 07:48 - 2015-07-24 05:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-11-11 08:06 - 2015-04-29 18:04 - 38561984 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll 2015-08-07 02:09 - 2015-08-07 02:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\ProgramData\TEMP:6B0023F8 ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2015-07-10 12:04 - 2015-07-10 12:02 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\asus\wallpapers\asus.jpg DNS Servers: 192.168.2.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{DF8AD133-C2FF-4C30-8618-E3E9B17D5499}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe FirewallRules: [{985BE3A6-760C-48B6-8274-D904C621EF53}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe FirewallRules: [{4B62578A-269D-4C39-AC91-85875738831E}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe FirewallRules: [{EDD1EEA3-DAF2-4D8A-A24F-D306AC1A08C5}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe FirewallRules: [{CE0848E4-9186-43C5-B6E0-EF43EDE445D1}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe FirewallRules: [{51C45640-ADB0-4D34-918A-842910FAD03E}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe FirewallRules: [{FFC3D9CF-365E-482F-8901-BE3E08697A66}] => (Allow) C:\Program Files (x86)\SprgFiles\SprgFiles.exe FirewallRules: [{C6CC372F-7162-40B1-833D-CBDA05E5BFE2}] => (Allow) C:\Program Files (x86)\SprgFiles\SprgFiles.exe FirewallRules: [{5005B685-36C4-4F40-B872-2BEECCD325C4}] => (Allow) C:\Program Files (x86)\SprgFiles\downloader.exe FirewallRules: [{82AFB31B-8E78-4BDA-B2B8-80A1E9C2D4C6}] => (Allow) C:\Program Files (x86)\SprgFiles\downloader.exe FirewallRules: [{32E42A9B-AFB8-485E-B1F5-69629C55AAAF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{EC13B03C-CF42-42D9-A8CE-4299E35BFD6C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Wiederherstellungspunkte ========================= 20-02-2016 10:25:19 Installed Atmel USB 21-02-2016 10:31:53 Sprachpaketdeinstallation 23-02-2016 16:45:46 Installed AVRStudio4 25-02-2016 09:05:02 DesignCAD 22 wurde installiert. 26-02-2016 13:24:18 Removed Microsoft Office ==================== Fehlerhafte Geräte im Gerätemanager ============= ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (02/26/2016 07:48:45 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (6012) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032. Error: (02/26/2016 07:48:45 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (6012) Der Versuch, die Datei "C:\Windows\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien. Error: (02/26/2016 07:48:35 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (6012) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032. Error: (02/26/2016 07:48:35 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (6012) Der Versuch, die Datei "C:\Windows\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien. Error: (02/26/2016 07:48:24 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (6012) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032. Error: (02/26/2016 07:48:24 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (6012) Der Versuch, die Datei "C:\Windows\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien. Error: (02/26/2016 07:48:14 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (6012) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032. Error: (02/26/2016 07:48:14 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (6012) Der Versuch, die Datei "C:\Windows\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien. Error: (02/26/2016 07:48:04 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (6012) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032. Error: (02/26/2016 07:48:04 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (6012) Der Versuch, die Datei "C:\Windows\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien. Systemfehler: ============= Error: (02/26/2016 07:45:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "McAfee CSP Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (02/26/2016 07:42:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "TVicPort" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (02/26/2016 07:42:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "SpyHunter 4 Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (02/26/2016 07:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Benutzerdatenzugriff_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (02/26/2016 07:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Benutzerdatenspeicher _Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (02/26/2016 07:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Kontaktdaten_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (02/26/2016 07:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (02/26/2016 07:41:45 PM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: %%1056 Error: (02/26/2016 07:41:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Intel(R) Security Assist" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (02/26/2016 07:41:15 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz Prozentuale Nutzung des RAM: 25% Installierter physikalischer RAM: 8094.39 MB Verfügbarer physikalischer RAM: 6047.15 MB Summe virtueller Speicher: 9374.39 MB Verfügbarer virtueller Speicher: 7234.96 MB ==================== Laufwerke ================================ Drive c: (OS) (Fixed) (Total:185.55 GB) (Free:115.01 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)] Drive d: (DATA) (Fixed) (Total:279.46 GB) (Free:249.2 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 6110F75F) Partition: GPT. ==================== Ende von Addition.txt ============================ |
26.02.2016, 20:37 | #10 |
/// Malwareteam | Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit hm Tritt das Problem nur beim Firefox auf? Schritt 1 Bitte starte wieder FRST, setze den Haken bei Shortcut.txt und drücke auf Untersuchen. Poste bitte nur die Shortcut.txt Cave: Es steht Shortcut.txt nicht Addition.txt
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
26.02.2016, 20:58 | #11 |
| Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit Hallo Rafael, Ja, bisher ist es mir nur bei Firefox aufgefallen, aber andere Browser benutze ich auch nur selten. Also, ich habe nur bei Shortcut.txt einen Haken gemacht, hoffentlich war das richtig? Code:
ATTFilter Untersuchungsergebnis der Verknüpfungen des Benutzers (x64) Version:21-02-2016 01 durchgeführt von Gunther (2016-02-26 20:53:17) Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen Start-Modus: Normal ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\01 - File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\03 - Documents.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Documents () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\04 - Downloads.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Downloads () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\05 - Music.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Music () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\06 - Pictures.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Pictures () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\07 - Videos.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Videos () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\10 - UserProfile.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87 () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}\SC_Reader.ico (Flexera Software LLC) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk -> C:\Program Files (x86)\Audacity\audacity.exe (The Audacity Team) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Devices Flow.lnk -> C:\Windows\DevicesFlow\DevicesFlow.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel(R) HD Graphics Control Panel.lnk -> C:\Windows\System32\GfxUIEx.exe (Intel Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiracastView.lnk -> C:\Windows\MiracastView\MiracastView.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrintDialog.lnk -> C:\Windows\PrintDialog\PrintDialog.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WPS Office\WPS Spreadsheets.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WPS Office\WPS Office Tools\Configuration Tools.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\office6\ksomisc.exe (Zhuhai Kingsoft Office Software Co.,Ltd) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WPS Office\WPS Office Tools\Uninstall.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\utility\uninst.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online\Register Westwoon Online.lnk -> C:\Program Files (x86)\WestwoodOnline\REGISTER.EXE () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Chat\Westwood Chat.lnk -> C:\Program Files (x86)\WestwoodChat\WCHAT.EXE (Westwood Studios) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vista Games\Mahjong Titans.lnk -> C:\Program Files (x86)\Microsoft Games\Mahjong\Mahjong.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> C:\Program Files\VideoLAN\VLC\Documentation.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> C:\Program Files\VideoLAN\VLC\NEWS.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> C:\Program Files\VideoLAN\VLC\VideoLAN Website.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek\Realtek HD Audio Manager.lnk -> C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pico Technology\PicoScope 6.lnk -> C:\Program Files (x86)\Pico Technology\PicoScope6\PicoScope.exe (Pico Technology) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin Fehlermelder.lnk -> C:\Program Files (x86)\Origin\OriginER.exe (Electronic Arts) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin.lnk -> C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer\MyPhoneExplorer.lnk -> C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe (F.J. Wechselberger) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer\Uninstall.lnk -> C:\Program Files (x86)\MyPhoneExplorer\uninstall.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Excel 2007.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\xlicons.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office OneNote 2007.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\joticon.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office PowerPoint 2007.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\pptico.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Word 2007.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\wordicon.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Digitales Zertifikat für VBA-Projekte.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\misc.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Clip Organizer.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\cagicon.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office 2007 Spracheinstellungen.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\misc.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office Picture Manager.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\oisicon.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office-Diagnose.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\misc.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Microsoft Flight Simulator 2004-Infodatei.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\Info.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Microsoft Flight Simulator 2004.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Problembehandlung\Konfigurationssupport.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\Config\configsupport.htm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics\BASCOM-AVR\BASCOM-AVR.lnk -> C:\Program Files (x86)\MCS Electronics\BASCOM-AVR\bascavr.exe (MCS Electronics) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics\BASCOM-AVR\BASCOMP.lnk -> C:\Program Files (x86)\MCS Electronics\BASCOM-AVR\bascomp.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics\BASCOM-AVR\HTML Help.lnk -> C:\Program Files (x86)\MCS Electronics\BASCOM-AVR\BASCAVR.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics\BASCOM-AVR\License.lnk -> C:\Program Files (x86)\MCS Electronics\BASCOM-AVR\LICENSE.TXT () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics\BASCOM-AVR\Read me.lnk -> C:\Program Files (x86)\MCS Electronics\BASCOM-AVR\READDEMO.TXT () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\LogView.lnk -> C:\Program Files (x86)\LogView V2\LogView.exe (LogView.info) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\Tools\CleanUp.lnk -> C:\Program Files (x86)\LogView V2\Tools\CleanUp.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\Tools\SILEditor.lnk -> C:\Program Files (x86)\LogView V2\Tools\SILEditor.exe (SiComponents) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\OpenFormat\OpenFormatEditor.lnk -> C:\Program Files (x86)\LogView V2\OpenFormat\OpenFormatEditor.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\Logging Console\SmartInspectConsole.lnk -> C:\Program Files (x86)\LogView V2\Logging Console\SmartInspectConsole.exe (Gurock Software GmbH) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\Help\LogView V2 Handbuch.lnk -> C:\Program Files (x86)\LogView V2\LogView V2 Handbuch.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\Help\LogViewHilfe.lnk -> C:\Program Files (x86)\LogView V2\Help\LogViewHilfe.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\Help\SmartInspect.lnk -> C:\Program Files (x86)\LogView V2\Logging Console\SmartInspect.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters\Uninstall LAV Filters.lnk -> C:\Program Files (x86)\LAV Filters\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security\Hilfe für Kaspersky Internet Security.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\Doc\de-DE\kis\context.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security\Kaspersky Internet Security.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe (Kaspersky Lab ZAO) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security\Kaspersky Lab im Internet.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kl.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security\Lizenzvertrag.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\Doc\de\license.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Java konfigurieren.lnk -> C:\Program Files\Java\jre1.8.0_73\bin\javacpl.exe (Oracle Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICEpower\AudioWizard\AudioWizard.lnk -> C:\Windows\Installer\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}\NewShortcut2_CAFC68A201474C958303AEAC0F6DBEDB.exe (Flexera Software LLC) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi 4 Getting Started Manual-EN (PDF).lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi 4 Getting Started-EN.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi 4 Kurzanleitung-DE (PDF).lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi 4 Kurzanleitung-DE.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi 4 Release Notes-DE.lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi 4 Release Notes-DE.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi 4 Release Notes-EN.lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi 4 Release Notes-EN.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi Global Navigator 4.5.LNK -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi45.exe (Northport Systems Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi Help-EN.lnk -> C:\Program Files (x86)\Common Files\Fugawi\Help\EN\Fugawi4-EN.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi Hilfe-DE.lnk -> C:\Program Files (x86)\Common Files\Fugawi\Help\DE\Fugawi4-DE.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Map Calibration 4.5.lnk -> C:\Program Files (x86)\Common Files\Fugawi\Util\FugCalibrate45.exe (Northport Systems Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Map Calibration Help-DE.lnk -> C:\Program Files (x86)\Common Files\Fugawi\Help\DE\FugCalibrate-EN.chm (Keine Datei) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Map Calibration Help-EN.lnk -> C:\Program Files (x86)\Common Files\Fugawi\Help\EN\FugCalibrate-EN.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Navionics Supplement-DE.lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Navionics Supplement-DE.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Navionics Supplement-EN.lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Navionics Supplement-EN.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Start Fugawi 4.5.lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi45.exe (Northport Systems Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote\Evernote.lnk -> C:\Windows\Installer\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}\Evernote.ico () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Changelog.lnk -> C:\Program Files (x86)\DVBViewer\docs\changelog.html () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\DVBViewer Pro Downloader.lnk -> C:\Program Files (x86)\DVBViewer\DVBVDownloader.exe (CM&V ) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\DVBViewer Pro.lnk -> C:\Program Files (x86)\DVBViewer\dvbviewer.exe (CM&V Hackbart) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Konfigurationsverzeichnis.lnk -> C:\ProgramData\CMUV\DVBViewer () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Support\ DVBViewer Pro entfernen.lnk -> C:\Program Files (x86)\DVBViewer\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Support\DVBSource ReadMe.lnk -> C:\Program Files (x86)\DVBViewer\docs\DVBSource_ReadMe.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Support\DVBViewer Pro KeyTool.lnk -> C:\Program Files (x86)\DVBViewer\KeyTool.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Support\Tweaker.lnk -> C:\Program Files (x86)\DVBViewer\Tweaker.exe (Griga) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22\DesignCAD 22 Handbuch.lnk -> C:\Program Files (x86)\IMSIDesign\DesignCAD 22\GettingStarted.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22\DesignCAD 22 Hilfe.lnk -> C:\Program Files (x86)\IMSIDesign\DesignCAD 22\dcadexp22.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22\DesignCAD 22 Liesmich.lnk -> C:\Program Files (x86)\IMSIDesign\DesignCAD 22\Dcad22_Readme.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22\DesignCAD 22 Release Notes.lnk -> C:\Program Files (x86)\IMSIDesign\DesignCAD 22\DesignCAD 22.0 Release Notes.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22\DesignCAD 22.lnk -> C:\Program Files (x86)\IMSIDesign\DesignCAD 22\dcadexp22.exe (IMSIDesign) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software\Avast SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS HiPost.lnk -> C:\Program Files (x86)\ASUS\ASUS HiPost\SmartClipboardASUS.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS Install.lnk -> C:\eSupport\eDriver\AsInsWiz.exe (ASUSTek Computer INC.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS Live Update.Lnk -> C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe (ASUSTeK Computer Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS On-Screen Display.lnk -> C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSDMgr.exe (ASUSTek Computer Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\eManual.Lnk -> C:\eSupport\Manual\eManual.exe (ASUSTek Computer Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\USB Charger Plus.lnk -> C:\Windows\Installer\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}\_03B938BA8B4575BDE7A878.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\WinFlash.Lnk -> C:\Program Files (x86)\ASUS\WinFlash\WinFlash.exe (ASUSTek Computer Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\WebStorage\WebStorage.lnk -> C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSPanel.exe (ASUS Cloud Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS Splendid Utility\Splendid Utility.Lnk -> C:\Program Files (x86)\ASUS\Splendid\ACVT.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc () Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Start Menu\Programs\SpyHunter\SpyHunter.lnk -> C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (Keine Datei) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Links\Desktop.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Desktop () Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Links\Downloads.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Downloads () Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Arbeitsdateien - Shortcut.lnk -> D:\Arbeitsdateien () Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte - Shortcut.lnk -> D:\Atmega_Projekte () Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Fugawi Global Navigator 4.5.LNK -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi45.exe (Northport Systems Inc.) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Geräte - Shortcut.lnk -> D:\Geräte () Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\GPS - Shortcut.lnk -> D:\GPS () Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kranich_Projekte - Shortcut.lnk -> D:\Kranich_Projekte () Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\TK102-2 -Shortcut.lnk -> D:\TK102-2 () Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio\Audacity.lnk -> C:\Program Files (x86)\Audacity\audacity.exe (The Audacity Team) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio\DVBViewer.lnk -> C:\Program Files (x86)\DVBViewer\dvbviewer.exe (CM&V Hackbart) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio\MediathekView__Start - Shortcut.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Programme\mediathekview_10\MediathekView__Start.exe () Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Chess - Shortcut.lnk -> C:\Program Files\Microsoft Games\Chess\Chess.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Command and Conquer Red Alert.lnk -> C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe (Kalloc Studios) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Command and Conquer Tiberian Sun.lnk -> C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe (Kalloc Studios) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Mahjong - Shortcut.lnk -> C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Microsoft Flight Simulator 2004.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Need for Speed™ Most Wanted.lnk -> C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe (Electronic Arts) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Origin.lnk -> C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Solitaire - Shortcut.lnk -> C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\spider - Shortcut.lnk -> C:\Program Files (x86)\spider.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\SpiderSolitaire - Shortcut.lnk -> C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kaspersky\Kaspersky Internet Security.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe (Kaspersky Lab ZAO) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen\ Malwarebytes Anti-Malware .lnk -> C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Malwarebytes) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Grafik\DesignCAD 22.lnk -> C:\Program Files (x86)\IMSIDesign\DesignCAD 22\dcadexp22.exe (IMSIDesign) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\PicoScope 6.lnk -> C:\Program Files (x86)\Pico Technology\PicoScope6\PicoScope.exe (Pico Technology) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk -> C:\Windows\System32\fodhelper.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paint Shop Pro 5\Animation Shop.lnk -> C:\Program Files (x86)\Paint Shop Pro 5\Anim.exe (Jasc Software Inc.) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paint Shop Pro 5\Paint Shop Pro 5.lnk -> C:\Program Files (x86)\Paint Shop Pro 5\Psp.exe (Jasc Software, Inc.) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Start Fugawi.lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi45.exe (Northport Systems Inc.) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc () Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) Shortcut: C:\Users\Public\Desktop\Acrobat Reader DC.lnk -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Systems Incorporated) Shortcut: C:\Users\Public\Desktop\ASUS HiPost.lnk -> C:\Program Files (x86)\ASUS\ASUS HiPost\SmartClipboardASUS.exe () Shortcut: C:\Users\Public\Desktop\Evernote.lnk -> C:\Windows\Installer\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}\Evernote.ico () Shortcut: C:\Users\Public\Desktop\Eye Care Switcher.Lnk -> C:\Program Files (x86)\ASUS\Splendid\Eye Care Switcher.exe () Shortcut: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) Shortcut: C:\Users\Public\Desktop\MyPhoneExplorer.lnk -> C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe (F.J. Wechselberger) Shortcut: C:\Users\Public\Desktop\WebStorage.lnk -> C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSPanel.exe (ASUS Cloud Corporation) Shortcut: C:\Users\Public\Desktop\WPS Office.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\office6\launcher.exe (Zhuhai Kingsoft Office Software Co.,Ltd) ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> -sta {C90FB8CA-3295-4462-A721-2935E83694BA} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games App - asus.lnk -> C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe (WildTangent) -> /src gamesmenu /dp asus ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WPS Office\WPS Presentation.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd) -> /w ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WPS Office\WPS Writer.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd) -> /w ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WPS Office\WPS Office Tools\Check for Updates.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe (Zhuhai Kingsoft Office Software Co.,Ltd) -> /from:manual ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online\Uninstall Westwood Online.lnk -> C:\Windows\System32\msiexec.exe (Microsoft Corporation) -> /x {BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Chat\Uninstall Westwood Chat.lnk -> C:\Windows\System32\msiexec.exe (Microsoft Corporation) -> /x {7CAE6A67-AF7B-4A6A-8705-8AFACA45BB60} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> -Iskins ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software) -> /nogui ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pico Technology\Uninstall or Repair PicoScope 6.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i {fe3cc74a-a370-4be1-8daf-90355086e1f4} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Fluglehrer.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe (Microsoft Corporation) -> /INSTRUCTOR ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Microsoft Flight Simulator 2004 deinstallieren.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\UNINSTAL.EXE (Microsoft Corporation) -> /runtemp ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Problembehandlung\Abgesicherter Modus.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe (Microsoft Corporation) -> -SWREND ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Problembehandlung\Standardeinstellungen wiederherstellen.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe (Microsoft Corporation) -> -RESETINI ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\LogView V2 Deinstallation.lnk -> C:\Program Files (x86)\LogView V2\Installer.exe () -> /uninstall ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\LogView V2 Webupdate.lnk -> C:\Program Files (x86)\LogView V2\Installer.exe () -> /webupdate ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters\LAV Audio Configuration.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> "C:\Program Files (x86)\LAV Filters\x86\LAVAudio.ax",OpenConfiguration ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters\LAV Splitter Configuration.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> "C:\Program Files (x86)\LAV Filters\x86\LAVSplitter.ax",OpenConfiguration ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters\LAV Video Configuration.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> "C:\Program Files (x86)\LAV Filters\x86\LAVVideo.ax",OpenConfiguration ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security\Kaspersky Internet Security entfernen.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} REMOVE=ALL ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Auf Updates prüfen.lnk -> C:\Program Files\Java\jre1.8.0_73\bin\javacpl.exe (Oracle Corporation) -> -tab update ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Info zu Java.lnk -> C:\Program Files\Java\jre1.8.0_73\bin\javacpl.exe (Oracle Corporation) -> -tab about ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\WildTangent Games App - asus.lnk -> C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe (WildTangent) -> /src gamesmenu /dp asus ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\DVBViewer Pro Wizard.lnk -> C:\Program Files (x86)\DVBViewer\dvbviewer.exe (CM&V Hackbart) -> -wizard ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Support\DVBViewer Pro (Debug Mode).lnk -> C:\Program Files (x86)\DVBViewer\dvbviewer.exe (CM&V Hackbart) -> -debug -vanilla -osddebug ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Support\DVBViewer Pro (Safe Mode).lnk -> C:\Program Files (x86)\DVBViewer\dvbviewer.exe (CM&V Hackbart) -> -c -vanilla ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 25 GB\Dropbox 25 GB.lnk -> C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe () -> manual ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0 ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257} ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\Start Menu\Programs\SpyHunter\SpyHunter Emergency Startup.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> "C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.com" ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\Start Menu\Programs\SpyHunter\Uninstall.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Enigma Software Group\sh_installer.exe (Enigma Software Group USA, LLC.) -> -r sh ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kaspersky\Sicherer Zahlungsverkehr.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe (Kaspersky Lab ZAO) -> -safebanking ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paint Shop Pro 5\Paint Shop Pro Readme.lnk -> C:\Program Files (x86)\Paint Shop Pro 5\Readme.doc () -> Paint Shop Pro Important Information ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E} ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1} ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0 ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257} ShortcutWithArgument: C:\Users\Public\Desktop\Dropbox 25 GB.lnk -> C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe () -> manual InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters\Visit LAV Filters Home Page.url -> hxxp://1f0.de/ InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters\Visit LAV Filters on Doom9.url -> hxxp://forum.doom9.org/showthread.php?t=156191 InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Besuchen Sie Java.com.url -> hxxp://java.com/ InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Hilfe aufrufen.url -> hxxp://java.com/help InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\DVBViewer Pro im Internet\DVBViewer Community Forum.url -> hxxp://www.dvbviewer.tv/forum/ InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\DVBViewer Pro im Internet\DVBViewer Wiki.url -> hxxp://wiki.dvbviewer.tv InternetURL: C:\Users\Gunther\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142 InternetURL: C:\Users\Gunther\Favorites\Tripadvisor.url -> hxxp://www.tripadvisor.com/Home-m25036 InternetURL: C:\Users\Gunther\Favorites\ASUS E-Service\ASUS Homepage.url -> hxxp://www.asus.com/ InternetURL: C:\Users\Gunther\Favorites\ASUS E-Service\ASUS Member.url -> hxxps://account.asus.com/ InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142 InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Favorites\Tripadvisor.url -> hxxp://www.tripadvisor.com/Home-m25036 InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Favorites\ASUS E-Service\ASUS Homepage.url -> hxxp://www.asus.com/ InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Favorites\ASUS E-Service\ASUS Member.url -> hxxps://account.asus.com/ InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\ALDI_Talk.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Arcor.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\BASCOM_Forum.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Dokujunkies.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Easy-Box.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Flight_Radar.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Geoportal_Erfurt.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\GMX.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Google_Mail.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Google_Maps.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Google_Play_Store.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Gully_Board.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\ISS_Sichtbarkeit.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Itakka_Portal.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Kai_Lego.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Kraniche_GoogleEarth.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\LegoSteine.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\mobilism.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Samsung_Galaxy_GT_I9300.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\SPKMittelthüringen.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\SPKMittelthüringen2.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen\Trojaner_Board.url -> hxxp://www.arcor.de/ums/ums_titel.jsp InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\Favorites\aboutstart.url -> about:start ==================== Ende von Shortcut.txt ============================= |
27.02.2016, 19:27 | #12 |
/// Malwareteam | Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit Bitte folge mal dieser Anleitung: https://support.mozilla.org/de/kb/firefox-bereinigen Tritt das Problem noch auf? Tritt es bei allen Seiten auf?
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
28.02.2016, 12:40 | #13 |
| Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit Hallo Rafael, vielen Dank für den Einsatz sogar am Wochenende - Respekt! Zunächst, es tritt nur sporadisch auf, vielleicht bei jedem 5. Zugriff auf Firefox. Zum Auftreten habe ich ein paar Screenshots der Firefox-Chronik gemacht, wenn Dir das hilft, sage mir bitte, wie ich das hier unterbringen kann (jpg-Bilder). Im Übrigen habe ich Deinen Rat befolgt und Firefox nach Vorgabe "bereinigt". Bis jetzt tritt das Werbeproblem nicht auf, es ist aber zu früh zum jubeln. Ich werde morgen einen Dauerstress mit Firefox machen und schauen, was sich tut. Heute muss ich mich allerdings mit meinem Enkel beschäftigen (10 Jahre). Der ist zwar scharf auf meinen Computer - aber nicht so sehr auf Firefox... Ich melde mich morgen Viele Grüße nach Wien Gunther Hallo Rafael, ich bin jetzt vorsichtig optimistisch! Heute habe ich solche "Überraschungen" noch nicht wieder erlebt. Vielleicht war das mit dem Firefox neu einrichten die Lösung. Sollte das so bleiben, bedanke ich mich erstmal - ansonsten darf ich Dir nochmal schreiben? Viele Grüße von Erfurt nach Wien. Wie kann man Euch eine Kleinigkeit spenden? Gunther |
28.02.2016, 13:07 | #14 |
/// Malwareteam | Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit Klar Danke für deine Spende! Den Link findest du in meiner Signatur! Machen wir noch einen abschließenden Scan: ESET Online Scanner
Hinweis: Dieser Scan kann schon einmal mehrere Stunden dauern...
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
28.02.2016, 16:59 | #15 |
| Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit Hallo Rafael, obwohl es scheinbar keine Werbeeinblendungen mehr gibt, wollte ich trotzdem Deinem Rat folgen. Der angegebene Download erinnert mich aber makaber an den Auslöser meines Problems. Auch hier ein "simpler" Download und dann ein zusätzliches Tool, das ich nicht brauche und das mir im ersten Fall ein sehr unangenehmes Problem beschert hat. Ich habe mir geschworen, so etwas wissentlich nie mehr zu dulden. Was soll das: Download 3 einfache Schritte: 1. Auf "Download" klicken 2. Von unserer Website herunterladen 3. Kostenloser Dateikonverter Ich brauche so etwas nicht und wenn, werde ich es nur allein und nicht als Anhängsel herunter laden. Hoffentlich gelingt mir das immer. Ich habe nicht auf "Download" gedrückt, vielleicht sagst Du mir, wie das zusammenhängt? Eine Spende werde ich trotzdem überweisen, sind 20 € o.k? Gruß Gunther |
Themen zu Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit |
anderes, firefox, frage, gelöst, gen, hinweis, installiert, interne, internet, kaspersky, kaufen, mail, microsoft, neue, neuen, problem, problem gelöst, sache, security, treiber, trojaner, unerwünschte, unerwünschte werbung, werbung, wichtig, windows, windows 7, windows10, ähnliches |