Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Windows 10 / Installation von unerwünschten Programmen hört nicht auf/Defender geht nicht

Windows 10 / Installation von unerwünschten Programmen hört nicht auf/Defender geht nicht


Plagegeister aller Art und deren Bekämpfung: Windows 10 / Installation von unerwünschten Programmen hört nicht auf/Defender geht nicht

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 16.08.2016, 09:20   #7
Piristibulus
 
Windows 10 / Installation von unerwünschten Programmen hört nicht auf/Defender geht nicht - Standard

Windows 10 / Installation von unerwünschten Programmen hört nicht auf/Defender geht nicht


Teil 2:
Code:
ATTFilter
==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-08-16 09:43 - 2016-08-16 09:43 - 00051246 _____ C:\Users\dbirn_000\Desktop\FRST.txt
2016-08-16 09:42 - 2016-08-16 09:43 - 00000000 ____D C:\Users\dbirn_000\AppData\Local\04905D8E-1471340577-11E4-B57F-68F7284155E1
2016-08-16 09:42 - 2016-08-16 09:43 - 00000000 ____D C:\Program Files (x86)\mpck
2016-08-16 09:14 - 2016-08-16 09:43 - 00000000 ____D C:\FRST
2016-08-16 09:14 - 2016-08-16 09:14 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\MCorp
2016-08-16 09:14 - 2016-08-08 03:54 - 01611776 _____ C:\Users\dbirn_000\AppData\Roaming\ucdlr.exe
2016-08-16 09:08 - 2016-08-15 22:16 - 02394624 _____ (Farbar) C:\Users\dbirn_000\Desktop\FRST64.exe
2016-08-16 09:07 - 2016-08-16 09:07 - 00001809 _____ C:\Users\Public\Desktop\MPC Cleaner.lnk
2016-08-16 09:07 - 2016-08-16 09:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC
2016-08-15 18:18 - 2016-08-15 18:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Compress
2016-08-15 18:17 - 2016-08-15 18:17 - 01474568 _____ C:\Users\dbirn_000\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
2016-08-15 18:17 - 2016-08-15 18:17 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\lockhomepage
2016-08-15 18:16 - 2016-08-15 18:19 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\Ludashi
2016-08-15 18:16 - 2016-08-15 18:18 - 00000000 ____D C:\Program Files\ZipTool
2016-08-15 18:16 - 2016-08-15 18:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\鲁大师
2016-08-15 18:16 - 2016-08-15 18:16 - 00000000 ____D C:\Program Files (x86)\LDSGameCenter
2016-08-15 18:16 - 2016-02-18 10:10 - 05267952 _____ () C:\Users\dbirn_000\AppData\Roaming\ziptool_wc-9015_setup.exe
2016-08-15 18:14 - 2016-08-16 09:07 - 00000492 _____ C:\WINDOWS\Tasks\UCBrowserUpdater.job
2016-08-15 18:14 - 2016-08-15 18:15 - 00003518 _____ C:\WINDOWS\System32\Tasks\UCBrowserUpdater
2016-08-15 18:13 - 2016-08-15 19:16 - 00000000 ____D C:\Program Files (x86)\LuDaShi
2016-08-15 18:12 - 2016-08-15 18:12 - 00001606 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器.lnk
2016-08-15 18:12 - 2016-08-15 18:12 - 00001594 _____ C:\Users\Public\Desktop\UC浏览器.lnk
2016-08-15 18:12 - 2016-08-15 18:12 - 00000000 ____D C:\Users\dbirn_000\AppData\Local\UCBrowser
2016-08-15 18:12 - 2016-08-15 18:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器
2016-08-15 18:12 - 2016-08-02 08:39 - 00081792 _____ (Huorong Borui (Beijing) Technology Co., Ltd.) C:\WINDOWS\system32\Drivers\ucguard.sys
2016-08-15 18:11 - 2016-08-15 18:12 - 00000000 ____D C:\Program Files (x86)\UCBrowser
2016-08-15 17:58 - 2016-08-15 18:05 - 00000000 ____D C:\Users\dbirn_000\AppData\Local\app
2016-08-15 17:57 - 2016-08-16 09:07 - 00000000 ____D C:\Program Files (x86)\MPC Cleaner
2016-08-15 17:57 - 2016-08-15 17:57 - 00060136 _____ (DotC United Inc) C:\WINDOWS\system32\Drivers\MPCKpt.sys
2016-08-15 17:57 - 2016-08-15 17:57 - 00003152 _____ C:\WINDOWS\System32\Tasks\tasklist
2016-08-15 17:57 - 2016-08-15 17:57 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\UPUpdata
2016-08-15 17:52 - 2016-08-15 17:52 - 00000000 ____D C:\Program Files (x86)\04905D8E-1471276344-11E4-B57F-68F7284155E1
2016-08-15 17:52 - 2016-08-15 17:48 - 00001006 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2016-08-15 17:48 - 2016-08-16 09:07 - 00000374 _____ C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job
2016-08-15 17:48 - 2016-08-16 09:07 - 00000000 ____D C:\Program Files\SpaceSoundPro
2016-08-15 17:48 - 2016-08-15 17:48 - 00002832 _____ C:\WINDOWS\System32\Tasks\PC SpeedUp Service Deactivator
2016-08-15 17:48 - 2016-08-15 17:48 - 00001128 _____ C:\Users\dbirn_000\Desktop\PC Speed Up.lnk
2016-08-15 17:48 - 2016-08-15 17:48 - 00000000 ____D C:\Users\dbirn_000\Documents\PCSpeedUp
2016-08-15 17:48 - 2016-08-15 17:48 - 00000000 ____D C:\Users\dbirn_000\AppData\Local\Iwighghaceied
2016-08-15 17:48 - 2016-08-15 17:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Up
2016-08-15 17:48 - 2016-08-15 17:48 - 00000000 ____D C:\Program Files\Caster
2016-08-15 15:35 - 2016-08-15 15:35 - 08119845 _____ C:\Users\dbirn_000\Downloads\PPN345203674_0058___log18.pdf
2016-08-15 14:54 - 2016-08-15 14:54 - 00001251 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zotero Standalone.lnk
2016-08-15 14:54 - 2016-08-15 14:54 - 00001239 _____ C:\Users\Public\Desktop\Zotero Standalone.lnk
2016-08-15 14:54 - 2016-08-15 14:54 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\Zotero
2016-08-15 14:54 - 2016-08-15 14:54 - 00000000 ____D C:\Users\dbirn_000\AppData\Local\Zotero
2016-08-15 14:54 - 2016-08-15 14:54 - 00000000 ____D C:\Program Files (x86)\Zotero Standalone
2016-08-15 14:29 - 2016-08-15 14:29 - 04115070 _____ C:\Users\dbirn_000\Downloads\Jacob Perkins-Python Text Processing with NLTK 2.0 Cookbook_ Use Python's NLTK suite of libraries to maximize your Natural Language Processing capabilities-Packt Publishing (2010).pdf
2016-08-15 14:25 - 2016-08-15 15:13 - 05647925 _____ C:\Users\dbirn_000\Downloads\Steven Bird, Ewan Klein, Edward Loper-Natural Language Processing with Python_ Analyzing Text with the Natural Language Toolkit-O'Reilly Media (2009).pdf
2016-08-15 14:25 - 2016-08-15 14:26 - 01969647 _____ C:\Users\dbirn_000\Downloads\Jacob Perkins-Python 3 Text Processing with NLTK 3 Cookbook_ Over 80 practical recipes on natural language processing techniques using Python's NLTK 3.0-Packt Publishing (2014).pdf
2016-08-15 13:35 - 2016-08-15 13:35 - 01110872 _____ C:\Users\dbirn_000\AppData\LocalLow\eff79D4.001
2016-08-15 13:35 - 2016-08-15 13:35 - 00095952 _____ C:\Users\dbirn_000\AppData\LocalLow\eff79D4.004
2016-08-15 13:35 - 2016-08-15 13:35 - 00055908 _____ C:\Users\dbirn_000\AppData\LocalLow\eff79D4.002
2016-08-15 13:35 - 2016-08-15 13:35 - 00054352 _____ C:\Users\dbirn_000\AppData\LocalLow\eff79D4.006
2016-08-15 13:35 - 2016-08-15 13:35 - 00050080 _____ C:\Users\dbirn_000\AppData\LocalLow\eff79D4.003
2016-08-15 13:35 - 2016-08-15 13:35 - 00044740 _____ C:\Users\dbirn_000\AppData\LocalLow\eff79D4.007
2016-08-15 13:35 - 2016-08-15 13:35 - 00042520 _____ C:\Users\dbirn_000\AppData\LocalLow\eff79D4.008
2016-08-15 13:35 - 2016-08-15 13:35 - 00014076 _____ C:\Users\dbirn_000\AppData\LocalLow\eff79D4.005
2016-08-15 13:32 - 2016-08-15 13:32 - 01787973 _____ C:\Users\dbirn_000\Downloads\mARkdown - al-Raqmiyyāt_ Digital Islamic History.pdf
2016-08-15 11:26 - 2016-08-15 11:26 - 00000000 ___HD C:\OneDriveTemp
2016-08-14 17:34 - 2016-08-14 17:36 - 05723977 _____ C:\Users\dbirn_000\Downloads\(Studies in Language Companion Series volume 12) Harm Pinkster (editor)-Latin Linguistics and Linguistic Theory (Studies in Language Companion Series, 12)-John Benjamins Publishing Company (1983).pdf.part
2016-08-13 15:21 - 2016-08-13 15:21 - 00000000 ____D C:\Users\dbirn_000\AppData\Local\ElevatedDiagnostics
2016-08-12 13:42 - 2016-08-12 13:42 - 00000000 ____D C:\Users\dbirn_000\Documents\OneNote Notebooks
2016-08-12 12:15 - 2016-08-12 12:15 - 00000163 _____ C:\Users\dbirn_000\.gitconfig
2016-08-12 12:10 - 2016-08-12 12:10 - 00000000 ____D C:\Temp
2016-08-12 11:33 - 2016-08-12 11:34 - 00000000 ____D C:\Users\dbirn_000\.ssh
2016-08-12 11:33 - 2016-08-12 11:33 - 00001477 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EditPad Pro 7.lnk
2016-08-12 11:33 - 2016-08-12 11:33 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\JGsoft
2016-08-12 11:33 - 2016-08-12 11:33 - 00000000 ____D C:\Program Files\Just Great Software
2016-08-12 11:30 - 2016-08-12 13:37 - 00000000 ____D C:\Users\dbirn_000\Documents\GitHub
2016-08-12 11:30 - 2016-08-12 11:41 - 00000000 ____D C:\Users\dbirn_000\AppData\Local\GitHub
2016-08-12 11:30 - 2016-08-12 11:35 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\GitHub
2016-08-12 11:30 - 2016-08-12 11:30 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc
2016-08-12 11:17 - 2016-08-12 13:41 - 00000000 ____D C:\Users\dbirn_000\AppData\Local\Deployment
2016-08-12 11:07 - 2016-08-12 11:07 - 00849200 _____ C:\Users\dbirn_000\Desktop\SteuerIdentifikation_Birnstiel.pdf
2016-08-12 11:06 - 2016-08-12 11:06 - 00000000 ____D C:\Users\dbirn_000\Downloads\SteuerRyu
2016-08-11 11:19 - 2016-08-11 11:19 - 00915212 _____ C:\Users\dbirn_000\AppData\LocalLow\effA150.00b
2016-08-11 11:19 - 2016-08-11 11:19 - 00219524 _____ C:\Users\dbirn_000\AppData\LocalLow\effA150.009
2016-08-11 11:19 - 2016-08-11 11:19 - 00217044 _____ C:\Users\dbirn_000\AppData\LocalLow\effA150.008
2016-08-11 11:19 - 2016-08-11 11:19 - 00202180 _____ C:\Users\dbirn_000\AppData\LocalLow\effA150.006
2016-08-11 11:19 - 2016-08-11 11:19 - 00180792 _____ C:\Users\dbirn_000\AppData\LocalLow\effA150.00a
2016-08-11 11:19 - 2016-08-11 11:19 - 00176132 _____ C:\Users\dbirn_000\AppData\LocalLow\effA150.007
2016-08-11 11:19 - 2016-08-11 11:19 - 00077548 _____ C:\Users\dbirn_000\AppData\LocalLow\effA150.003
2016-08-11 11:19 - 2016-08-11 11:19 - 00051104 _____ C:\Users\dbirn_000\AppData\LocalLow\effA150.001
2016-08-11 11:19 - 2016-08-11 11:19 - 00047204 _____ C:\Users\dbirn_000\AppData\LocalLow\effA150.005
2016-08-11 11:19 - 2016-08-11 11:19 - 00045360 _____ C:\Users\dbirn_000\AppData\LocalLow\effA150.004
2016-08-11 11:19 - 2016-08-11 11:19 - 00045084 _____ C:\Users\dbirn_000\AppData\LocalLow\effA150.002
2016-08-11 11:18 - 2016-08-11 11:18 - 00077548 _____ C:\Users\dbirn_000\AppData\LocalLow\eff9B29.003
2016-08-11 11:18 - 2016-08-11 11:18 - 00059092 _____ C:\Users\dbirn_000\AppData\LocalLow\eff9B29.007
2016-08-11 11:18 - 2016-08-11 11:18 - 00055604 _____ C:\Users\dbirn_000\AppData\LocalLow\eff9B29.002
2016-08-11 11:18 - 2016-08-11 11:18 - 00052492 _____ C:\Users\dbirn_000\AppData\LocalLow\eff9B29.008
2016-08-11 11:18 - 2016-08-11 11:18 - 00051900 _____ C:\Users\dbirn_000\AppData\LocalLow\eff9B29.006
2016-08-11 11:18 - 2016-08-11 11:18 - 00045692 _____ C:\Users\dbirn_000\AppData\LocalLow\eff9B29.004
2016-08-11 11:18 - 2016-08-11 11:18 - 00039272 _____ C:\Users\dbirn_000\AppData\LocalLow\eff9B29.005
2016-08-11 10:17 - 2016-08-11 10:17 - 00059092 _____ C:\Users\dbirn_000\AppData\LocalLow\effBD18.007
2016-08-11 10:17 - 2016-08-11 10:17 - 00052492 _____ C:\Users\dbirn_000\AppData\LocalLow\effBD18.008
2016-08-11 10:17 - 2016-08-11 10:17 - 00051900 _____ C:\Users\dbirn_000\AppData\LocalLow\effBD18.006
2016-08-11 10:17 - 2016-08-11 10:17 - 00045692 _____ C:\Users\dbirn_000\AppData\LocalLow\effBD18.004
2016-08-11 10:17 - 2016-08-11 10:17 - 00039272 _____ C:\Users\dbirn_000\AppData\LocalLow\effBD18.005
2016-08-11 10:16 - 2016-08-11 10:16 - 00915212 _____ C:\Users\dbirn_000\AppData\LocalLow\eff8D80.00b
2016-08-11 10:16 - 2016-08-11 10:16 - 00219524 _____ C:\Users\dbirn_000\AppData\LocalLow\eff8D80.009
2016-08-11 10:16 - 2016-08-11 10:16 - 00217044 _____ C:\Users\dbirn_000\AppData\LocalLow\eff8D80.008
2016-08-11 10:16 - 2016-08-11 10:16 - 00202180 _____ C:\Users\dbirn_000\AppData\LocalLow\eff8D80.006
2016-08-11 10:16 - 2016-08-11 10:16 - 00180792 _____ C:\Users\dbirn_000\AppData\LocalLow\eff8D80.00a
2016-08-11 10:16 - 2016-08-11 10:16 - 00176132 _____ C:\Users\dbirn_000\AppData\LocalLow\eff8D80.007
2016-08-11 10:16 - 2016-08-11 10:16 - 00047204 _____ C:\Users\dbirn_000\AppData\LocalLow\eff8D80.005
2016-08-11 10:16 - 2016-08-11 10:16 - 00045360 _____ C:\Users\dbirn_000\AppData\LocalLow\eff8D80.004
2016-08-10 14:32 - 2016-08-10 14:32 - 00000000 ____D C:\WINDOWS\PCHEALTH
2016-08-10 13:34 - 2016-08-02 10:48 - 22219328 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-10 13:34 - 2016-08-02 10:44 - 00151232 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-10 13:34 - 2016-08-02 10:44 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-08-10 13:34 - 2016-08-02 10:20 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-08-10 13:34 - 2016-08-02 09:58 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-10 13:34 - 2016-08-02 09:55 - 03617280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-10 13:34 - 2016-08-02 06:51 - 20965240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-10 13:34 - 2016-08-02 06:37 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-08-10 13:34 - 2016-08-02 06:33 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-08-10 13:34 - 2016-08-02 06:27 - 07623168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-08-10 13:34 - 2016-08-02 06:25 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-08-10 13:34 - 2016-08-02 06:25 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-10 13:34 - 2016-08-02 06:23 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-08-10 13:34 - 2016-08-02 06:13 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-08-10 13:34 - 2016-08-02 06:09 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-08-10 13:33 - 2016-08-02 10:58 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-10 13:33 - 2016-08-02 10:53 - 02745224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-10 13:33 - 2016-08-02 10:52 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-10 13:33 - 2016-08-02 10:48 - 00241496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-08-10 13:33 - 2016-08-02 10:23 - 22572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-10 13:33 - 2016-08-02 10:21 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-08-10 13:33 - 2016-08-02 10:21 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-08-10 13:33 - 2016-08-02 10:20 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-08-10 13:33 - 2016-08-02 10:15 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-08-10 13:33 - 2016-08-02 10:15 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-08-10 13:33 - 2016-08-02 10:14 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-08-10 13:33 - 2016-08-02 10:13 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-10 13:33 - 2016-08-02 10:12 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-08-10 13:33 - 2016-08-02 10:11 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-08-10 13:33 - 2016-08-02 10:11 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-08-10 13:33 - 2016-08-02 10:10 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-08-10 13:33 - 2016-08-02 10:09 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-08-10 13:33 - 2016-08-02 10:07 - 23682048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-10 13:33 - 2016-08-02 10:07 - 09125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-08-10 13:33 - 2016-08-02 10:03 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-08-10 13:33 - 2016-08-02 10:00 - 05511168 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-08-10 13:33 - 2016-08-02 09:59 - 08124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-10 13:33 - 2016-08-02 09:57 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-10 13:33 - 2016-08-02 09:56 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-08-10 13:33 - 2016-08-02 09:56 - 01785856 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-10 13:33 - 2016-08-02 09:56 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-08-10 13:33 - 2016-08-02 09:55 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-10 13:33 - 2016-08-02 09:52 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-08-10 13:33 - 2016-08-02 06:56 - 02251440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-10 13:33 - 2016-08-02 06:47 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-08-10 13:33 - 2016-08-02 06:39 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-08-10 13:33 - 2016-08-02 06:37 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-08-10 13:33 - 2016-08-02 06:36 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-08-10 13:33 - 2016-08-02 06:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-08-10 13:33 - 2016-08-02 06:28 - 19423232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-10 13:33 - 2016-08-02 06:26 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-10 13:33 - 2016-08-02 06:26 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-08-10 13:33 - 2016-08-02 06:16 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-10 13:33 - 2016-08-02 06:13 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-10 13:33 - 2016-08-02 06:12 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-08-09 18:45 - 2016-08-09 18:47 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\Skype
2016-08-09 18:45 - 2016-08-09 18:45 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-09 18:45 - 2016-08-09 18:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-08-09 18:43 - 2016-08-09 18:43 - 00000000 ____D C:\Users\dbirn_000\AppData\Local\Evernote
2016-08-09 18:40 - 2016-08-09 18:40 - 00000000 ____D C:\Users\dbirn_000\AppData\LocalLow\Evernote
2016-08-09 18:40 - 2016-08-09 18:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote
2016-08-09 18:40 - 2016-08-09 18:40 - 00000000 ____D C:\Program Files (x86)\Evernote
2016-08-08 15:25 - 2016-08-08 15:25 - 00569425 _____ C:\Users\dbirn_000\Downloads\eLearning-Workshopprogramm_WiSe_1617.pdf
2016-08-07 22:08 - 2016-08-07 22:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-08-05 01:10 - 2016-08-05 01:10 - 00000000 ____D C:\Users\Public\Thunder Network
2016-08-05 01:10 - 2016-08-05 01:10 - 00000000 ____D C:\ProgramData\Thunder Network
2016-08-05 01:08 - 2016-08-05 01:13 - 00000000 ____D C:\ProgramData\DriverTalent
2016-08-05 01:08 - 2016-08-05 01:08 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\DriverTalent
2016-08-05 01:08 - 2016-08-05 01:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Talent
2016-08-05 01:08 - 2016-08-05 01:08 - 00000000 ____D C:\Program Files (x86)\OSTotoSoft
2016-08-05 01:08 - 2016-08-05 01:08 - 00000000 ____D C:\OSTotoFolder
2016-08-05 00:27 - 2016-08-05 00:27 - 00000568 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-08-04 18:51 - 2016-08-04 18:16 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-04 18:48 - 2016-08-04 18:48 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-04 18:48 - 2016-08-04 18:48 - 01708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-08-04 18:48 - 2016-08-04 18:48 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-08-04 18:48 - 2016-08-04 18:48 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-08-04 18:48 - 2016-08-04 18:48 - 01418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-08-04 18:48 - 2016-08-04 18:48 - 01265424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-08-04 18:48 - 2016-08-04 18:48 - 01260384 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-08-04 18:48 - 2016-08-04 18:48 - 00843104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-08-04 18:48 - 2016-08-04 18:48 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-08-04 18:48 - 2016-08-04 18:48 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-04 18:48 - 2016-08-04 18:48 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-04 18:48 - 2016-08-04 18:48 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-08-04 18:48 - 2016-08-04 18:48 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-08-04 18:48 - 2016-08-04 18:48 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-04 18:48 - 2016-08-04 18:48 - 00062816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-08-04 18:48 - 2016-08-04 17:59 - 00000000 ____D C:\Windows.old
2016-08-04 18:45 - 2016-07-15 20:29 - 07702016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Models0011.dll
2016-08-04 18:45 - 2016-07-15 20:29 - 02454528 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Lexicons0011.dll
2016-08-04 18:45 - 2016-07-15 20:25 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB70011.dll
2016-08-04 18:45 - 2016-07-15 20:24 - 07417344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Data0011.dll
2016-08-04 18:45 - 2016-07-15 19:40 - 07253504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NL7Data0011.dll
2016-08-04 18:45 - 2016-07-15 19:40 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB70011.dll
2016-08-04 18:45 - 2016-05-25 15:39 - 00002060 _____ C:\WINDOWS\system32\noise.jpn
2016-08-04 18:45 - 2016-05-25 12:10 - 00002060 _____ C:\WINDOWS\SysWOW64\noise.jpn
2016-08-04 18:44 - 2016-07-15 20:29 - 01722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons000d.dll
2016-08-04 18:44 - 2016-07-15 20:27 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData000d.dll
2016-08-04 18:44 - 2016-07-15 20:24 - 02295296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MLS7.dll
2016-08-04 18:44 - 2016-07-15 19:45 - 01722880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons000d.dll
2016-08-04 18:44 - 2016-07-15 19:43 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData000d.dll
2016-08-04 18:44 - 2016-07-15 19:40 - 02243072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MLS7.dll
2016-08-04 18:40 - 2016-07-15 20:29 - 05739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2016-08-04 18:40 - 2016-07-15 20:29 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2016-08-04 18:40 - 2016-07-15 20:14 - 06354944 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2016-08-04 18:40 - 2016-07-15 19:45 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2016-08-04 18:40 - 2016-07-15 19:29 - 05489664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2016-08-04 18:39 - 2016-07-15 20:28 - 08229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0008.dll
2016-08-04 18:38 - 2016-07-15 20:28 - 16735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0001.dll
2016-08-04 18:37 - 2016-08-04 18:37 - 00000000 ____D C:\WINDOWS\system32\he
2016-08-04 18:37 - 2016-07-15 20:58 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll
2016-08-04 18:37 - 2016-07-15 20:28 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2016-08-04 18:37 - 2016-07-15 20:28 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARP12Debug.dll
2016-08-04 18:37 - 2016-07-15 20:26 - 00376320 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2016-08-04 18:37 - 2016-07-15 20:26 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
2016-08-04 18:37 - 2016-07-15 20:25 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll
2016-08-04 18:37 - 2016-07-15 20:23 - 14388224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll
2016-08-04 18:37 - 2016-07-15 20:22 - 00429056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll
2016-08-04 18:37 - 2016-07-15 20:22 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll
2016-08-04 18:37 - 2016-07-15 20:19 - 01323520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2016-08-04 18:37 - 2016-07-15 20:16 - 05850624 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2016-08-04 18:37 - 2016-07-15 20:16 - 04969472 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2016-08-04 18:37 - 2016-07-15 20:15 - 06582784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12warp.dll
2016-08-04 18:37 - 2016-07-15 20:14 - 02485760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2016-08-04 18:37 - 2016-07-15 20:13 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2016-08-04 18:37 - 2016-07-15 20:13 - 01198592 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe
2016-08-04 18:37 - 2016-07-15 20:13 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll
2016-08-04 18:37 - 2016-07-15 20:12 - 00297984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll
2016-08-04 18:37 - 2016-07-15 20:12 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll
2016-08-04 18:37 - 2016-07-15 20:11 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll
2016-08-04 18:37 - 2016-07-15 19:58 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll
2016-08-04 18:37 - 2016-07-15 19:44 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll
2016-08-04 18:37 - 2016-07-15 19:43 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARP12Debug.dll
2016-08-04 18:37 - 2016-07-15 19:42 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
2016-08-04 18:37 - 2016-07-15 19:41 - 00355840 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2016-08-04 18:37 - 2016-07-15 19:41 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll
2016-08-04 18:37 - 2016-07-15 19:39 - 11670528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll
2016-08-04 18:37 - 2016-07-15 19:38 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
2016-08-04 18:37 - 2016-07-15 19:37 - 01935360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2016-08-04 18:37 - 2016-07-15 19:37 - 01074176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll
2016-08-04 18:37 - 2016-07-15 19:35 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll
2016-08-04 18:37 - 2016-07-15 19:32 - 04596224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2016-08-04 18:37 - 2016-07-15 19:32 - 03701248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe
2016-08-04 18:37 - 2016-07-15 19:31 - 04977664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12warp.dll
2016-08-04 18:37 - 2016-07-15 19:29 - 00953344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe
2016-08-04 18:37 - 2016-07-15 19:29 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll
2016-08-04 18:37 - 2016-07-15 19:29 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll
2016-08-04 18:37 - 2016-07-15 19:28 - 01509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll
2016-08-04 18:37 - 2016-07-15 19:28 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll
2016-08-04 18:37 - 2016-07-15 19:28 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll
2016-08-04 18:35 - 2016-08-04 18:35 - 00000000 ____D C:\WINDOWS\system32\ar
2016-08-04 18:32 - 2016-08-16 09:13 - 00668630 _____ C:\WINDOWS\system32\perfh008.dat
2016-08-04 18:32 - 2016-08-16 09:13 - 00191042 _____ C:\WINDOWS\system32\perfc008.dat
2016-08-04 18:32 - 2016-08-04 18:32 - 00376726 _____ C:\WINDOWS\system32\perfi008.dat
2016-08-04 18:32 - 2016-08-04 18:32 - 00047288 _____ C:\WINDOWS\system32\perfd008.dat
2016-08-04 18:32 - 2016-08-04 18:32 - 00000000 ____D C:\WINDOWS\SysWOW64\el
2016-08-04 18:32 - 2016-08-04 18:32 - 00000000 ____D C:\WINDOWS\system32\el
2016-08-04 18:28 - 2016-08-16 09:13 - 00333030 _____ C:\WINDOWS\system32\perfh011.dat
2016-08-04 18:28 - 2016-08-16 09:13 - 00164772 _____ C:\WINDOWS\system32\perfc011.dat
2016-08-04 18:28 - 2016-08-04 18:28 - 00000000 ____D C:\WINDOWS\SysWOW64\ja
2016-08-04 18:28 - 2016-08-04 18:28 - 00000000 ____D C:\WINDOWS\system32\ja
2016-08-04 18:28 - 2016-08-04 18:27 - 00144476 _____ C:\WINDOWS\system32\perfi011.dat
2016-08-04 18:28 - 2016-08-04 18:27 - 00033362 _____ C:\WINDOWS\system32\perfd011.dat
2016-08-04 18:27 - 2016-08-04 18:27 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\lzhfldr2.dll
2016-08-04 18:27 - 2016-08-04 18:27 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lzhfldr2.dll
2016-08-04 18:25 - 2016-08-04 18:25 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-08-04 18:23 - 2016-08-04 18:29 - 00000000 ____D C:\Users\dbirn_000\AppData\Local\ConnectedDevicesPlatform
2016-08-04 18:23 - 2016-08-04 18:23 - 00000020 ___SH C:\Users\dbirn_000\ntuser.ini
2016-08-04 18:22 - 2016-08-04 18:22 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-08-04 18:21 - 2016-08-04 18:37 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-08-04 18:21 - 2016-08-04 18:21 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-08-04 18:21 - 2016-08-04 18:21 - 00000000 ____D C:\Program Files\MSBuild
2016-08-04 18:21 - 2016-08-04 18:21 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-08-04 18:21 - 2016-08-04 17:59 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-08-04 18:20 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-08-04 18:20 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-08-04 18:20 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-08-04 18:20 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-08-04 18:20 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-08-04 18:20 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-08-04 18:16 - 2016-08-04 18:16 - 00000000 ____D C:\ProgramData\USOShared
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-08-04 18:15 - 2016-08-04 18:15 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-08-04 18:14 - 2016-08-04 18:15 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2016-08-04 18:14 - 2016-08-04 18:15 - 00007623 _____ C:\WINDOWS\diagerr.xml
2016-08-04 18:09 - 2016-08-16 09:10 - 00003036 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (dbirn_000)
2016-08-04 18:09 - 2016-08-16 09:07 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-04 18:09 - 2016-08-09 18:38 - 00003384 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2016-08-04 18:09 - 2016-08-04 18:09 - 00003496 _____ C:\WINDOWS\System32\Tasks\EPSON XP-610 Series Update {229C7B40-79E8-41C8-8EBE-0DE79613F010}
2016-08-04 18:09 - 2016-08-04 18:09 - 00003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-08-04 18:09 - 2016-08-04 18:09 - 00003474 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d0d9f35b7f3b7c
2016-08-04 18:09 - 2016-08-04 18:09 - 00003318 _____ C:\WINDOWS\System32\Tasks\EPSON XP-610 Series Invitation {229C7B40-79E8-41C8-8EBE-0DE79613F010}
2016-08-04 18:09 - 2016-08-04 18:09 - 00003308 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2016-08-04 18:09 - 2016-08-04 18:09 - 00003300 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-08-04 18:09 - 2016-08-04 18:09 - 00003272 _____ C:\WINDOWS\System32\Tasks\EPSON XP-610 Series Update {FCB9B395-BD41-487E-83F4-E5EDC1023F67}
2016-08-04 18:09 - 2016-08-04 18:09 - 00003220 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-08-04 18:09 - 2016-08-04 18:09 - 00003098 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-08-04 18:09 - 2016-08-04 18:09 - 00003086 _____ C:\WINDOWS\System32\Tasks\EPSON XP-610 Series Invitation {FCB9B395-BD41-487E-83F4-E5EDC1023F67}
2016-08-04 18:09 - 2016-08-04 18:09 - 00003080 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2016-08-04 18:09 - 2016-08-04 18:09 - 00002810 _____ C:\WINDOWS\System32\Tasks\MySQLNotifierTask
2016-08-04 18:09 - 2016-08-04 18:09 - 00002808 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-528608177-3768278189-544877735-1001
2016-08-04 18:09 - 2016-08-04 18:09 - 00002316 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-528608177-3768278189-544877735-500
2016-08-04 18:09 - 2016-08-04 18:09 - 00002292 _____ C:\WINDOWS\System32\Tasks\{2BA78B0B-9FE5-4555-B3DA-63AF616A7EE5}
2016-08-04 18:09 - 2016-08-04 18:09 - 00002286 _____ C:\WINDOWS\System32\Tasks\{AC26FD83-02AC-48C9-B1EC-943F64688AE4}
2016-08-04 18:09 - 2016-08-04 18:09 - 00002216 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-08-04 18:09 - 2016-08-04 18:09 - 00002180 _____ C:\WINDOWS\System32\Tasks\{9D1D3036-8091-4543-A35F-F893AE231A6C}
2016-08-04 18:09 - 2016-08-04 18:09 - 00002110 _____ C:\WINDOWS\System32\Tasks\USER_ESRV_SVC_WILLAMETTE
2016-08-04 18:09 - 2016-08-04 18:09 - 00000000 ____D C:\WINDOWS\System32\Tasks\MySQL
2016-08-04 18:09 - 2016-08-04 18:09 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2016-08-04 18:09 - 2016-08-04 18:09 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2016-08-04 18:09 - 2016-08-04 18:09 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel
2016-08-04 18:09 - 2014-04-03 20:35 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1050727674-2070356693-977449066-500
2016-08-04 18:07 - 2016-08-04 18:07 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-08-04 18:07 - 2016-08-04 18:07 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2016-08-04 18:07 - 2016-08-04 18:07 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki
2016-08-04 18:07 - 2016-08-04 18:07 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-08-04 18:07 - 2016-08-04 18:07 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2016-08-04 18:07 - 2016-08-04 18:07 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki
2016-08-04 18:07 - 2016-08-04 18:07 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-08-04 17:55 - 2016-08-04 18:07 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-08-04 17:54 - 2016-08-16 09:13 - 03350822 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-04 17:54 - 2016-08-16 09:07 - 00000000 ____D C:\Users\dbirn_000
2016-08-04 17:54 - 2016-08-04 17:54 - 02441288 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-08-04 17:54 - 2016-08-04 17:54 - 00000000 _SHDL C:\Users\dbirn_000\Vorlagen
2016-08-04 17:54 - 2016-08-04 17:54 - 00000000 _SHDL C:\Users\dbirn_000\Startmenü
2016-08-04 17:54 - 2016-08-04 17:54 - 00000000 _SHDL C:\Users\dbirn_000\Netzwerkumgebung
2016-08-04 17:54 - 2016-08-04 17:54 - 00000000 _SHDL C:\Users\dbirn_000\Lokale Einstellungen
2016-08-04 17:54 - 2016-08-04 17:54 - 00000000 _SHDL C:\Users\dbirn_000\Eigene Dateien
2016-08-04 17:54 - 2016-08-04 17:54 - 00000000 _SHDL C:\Users\dbirn_000\Druckumgebung
2016-08-04 17:54 - 2016-08-04 17:54 - 00000000 _SHDL C:\Users\dbirn_000\Documents\Eigene Videos
2016-08-04 17:54 - 2016-08-04 17:54 - 00000000 _SHDL C:\Users\dbirn_000\Documents\Eigene Musik
2016-08-04 17:54 - 2016-08-04 17:54 - 00000000 _SHDL C:\Users\dbirn_000\Documents\Eigene Bilder
2016-08-04 17:54 - 2016-08-04 17:54 - 00000000 _SHDL C:\Users\dbirn_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-08-04 17:54 - 2016-08-04 17:54 - 00000000 _SHDL C:\Users\dbirn_000\AppData\Local\Verlauf
2016-08-04 17:54 - 2016-08-04 17:54 - 00000000 _SHDL C:\Users\dbirn_000\AppData\Local\Anwendungsdaten
2016-08-04 17:54 - 2016-08-04 17:54 - 00000000 _SHDL C:\Users\dbirn_000\Anwendungsdaten
2016-08-04 17:53 - 2016-08-16 09:07 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-08-04 17:53 - 2016-08-05 01:23 - 00000000 ____D C:\Program Files\Intel
2016-08-04 17:53 - 2016-08-05 00:27 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-08-04 17:53 - 2016-08-04 17:53 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2016-08-04 17:53 - 2016-08-04 17:53 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2016-08-04 17:53 - 2016-08-04 17:53 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_DptfManager_01011.Wdf
2016-08-04 17:53 - 2016-08-04 17:53 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-08-04 17:53 - 2016-08-04 17:53 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-08-04 17:53 - 2016-08-04 17:53 - 00000000 ____D C:\Program Files\Synaptics
2016-08-04 17:53 - 2016-08-04 17:53 - 00000000 ____D C:\Program Files\Realtek
2016-08-04 17:53 - 2016-08-04 17:53 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2016-08-04 17:53 - 2016-07-14 05:34 - 00103960 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-08-04 17:53 - 2016-07-14 05:34 - 00099864 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-08-04 17:52 - 2016-08-16 09:33 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-08-04 17:52 - 2016-08-10 15:52 - 01397392 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-04 17:52 - 2016-08-04 17:52 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-08-04 17:52 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-07-28 19:34 - 2016-07-28 19:34 - 00000000 ____D C:\Users\dbirn_000\AppData\LocalLow\Temp
2016-07-28 19:17 - 2016-07-28 19:17 - 00000000 ____D C:\Program Files\Common Files\Intel
2016-07-28 19:17 - 2016-07-28 19:17 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-07-28 18:34 - 2016-07-28 18:34 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\MySQL
2016-07-28 18:19 - 2016-07-28 18:23 - 00000000 ____D C:\Program Files\MySQL
2016-07-28 13:51 - 2016-07-28 13:51 - 00002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk
2016-07-28 13:51 - 2016-07-28 13:51 - 00000000 ____D C:\Program Files (x86)\Belarc
2016-07-28 01:29 - 2016-07-28 18:22 - 00000469 _____ C:\WINDOWS\ODBCINST.INI
2016-07-28 00:50 - 2016-07-28 00:51 - 00000000 ____D C:\Users\dbirn_000\Documents\Visual Studio 2015
2016-07-28 00:45 - 2016-07-28 00:45 - 00000000 ____D C:\Program Files (x86)\AppInsights
2016-07-28 00:41 - 2016-08-04 18:23 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
2016-07-28 00:36 - 2016-07-28 00:36 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2016-07-28 00:36 - 2016-07-28 00:36 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-07-28 00:35 - 2016-07-28 00:35 - 00000000 ____D C:\ProgramData\PreEmptive Solutions
2016-07-28 00:35 - 2016-07-28 00:35 - 00000000 ____D C:\Program Files (x86)\ShellDir
2016-07-28 00:34 - 2016-07-28 00:41 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
2016-07-28 00:32 - 2016-07-28 00:32 - 00000000 ____D C:\ProgramData\Microsoft DNX
2016-07-28 00:32 - 2016-07-28 00:32 - 00000000 ____D C:\Program Files\Microsoft DNX
2016-07-28 00:28 - 2016-07-28 00:31 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools
2016-07-28 00:25 - 2016-07-28 00:26 - 00000000 ____D C:\Program Files\IIS Express
2016-07-28 00:25 - 2016-07-28 00:26 - 00000000 ____D C:\Program Files (x86)\IIS Express
2016-07-28 00:24 - 2016-07-28 00:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Office365 Tools
2016-07-28 00:22 - 2016-08-04 17:59 - 00000000 ____D C:\Program Files\IIS
2016-07-28 00:22 - 2016-07-28 00:22 - 00000000 ____D C:\ProgramData\NuGet
2016-07-28 00:22 - 2016-07-28 00:22 - 00000000 ____D C:\Program Files (x86)\NuGet
2016-07-28 00:22 - 2016-07-28 00:22 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services
2016-07-28 00:22 - 2016-07-28 00:22 - 00000000 ____D C:\Program Files (x86)\IIS
2016-07-28 00:21 - 2016-08-04 17:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2016-07-28 00:20 - 2016-08-04 18:23 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2016-07-28 00:20 - 2016-07-28 00:20 - 00001509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2015.lnk
2016-07-28 00:20 - 2016-07-28 00:20 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 12.0
2016-07-28 00:18 - 2016-08-04 17:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
2016-07-28 00:17 - 2016-07-28 00:17 - 00000000 ____D C:\WINDOWS\symbols
2016-07-28 00:17 - 2016-07-28 00:17 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2016-07-28 00:16 - 2016-08-04 18:07 - 00000000 ____D C:\WINDOWS\SysWOW64\1033
2016-07-28 00:16 - 2016-07-28 00:43 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2016-07-28 00:16 - 2016-07-28 00:43 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-07-28 00:16 - 2016-07-28 00:16 - 00001518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015.lnk
2016-07-28 00:15 - 2016-08-04 18:23 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2016-07-28 00:15 - 2016-08-04 18:07 - 00000000 ____D C:\WINDOWS\system32\1033
2016-07-28 00:15 - 2016-07-28 00:15 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf
2016-07-28 00:14 - 2016-07-28 00:41 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-07-28 00:14 - 2016-07-28 00:17 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-07-27 14:25 - 2016-08-04 18:07 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.5
2016-07-27 14:25 - 2016-07-27 14:25 - 00000000 ____D C:\Users\dbirn_000\AppData\Local\Package Cache
2016-07-27 14:16 - 2016-08-04 18:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
2016-07-27 14:16 - 2016-07-28 18:29 - 00000000 ____D C:\ProgramData\MySQL
2016-07-27 14:16 - 2016-07-28 18:23 - 00000000 ____D C:\Program Files (x86)\MySQL
2016-07-27 00:27 - 2016-07-27 00:27 - 00000000 ____D C:\Users\dbirn_000\MediathekView
2016-07-25 15:39 - 2016-07-27 14:14 - 00000000 ____D C:\Users\dbirn_000\Downloads\CIDCO_CRM
2016-07-21 08:40 - 2016-07-21 08:40 - 00083200 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2016-07-18 00:11 - 2016-07-18 00:13 - 123576081 _____ C:\Users\dbirn_000\Downloads\eXist-db-setup-2.2.jar
2016-07-18 00:11 - 2016-07-18 00:12 - 109598839 _____ C:\Users\dbirn_000\Downloads\eXist-db-2.2.dmg
2016-07-17 01:55 - 2016-08-04 16:59 - 00000000 ___HD C:\$WINDOWS.~BT
2016-07-17 00:58 - 2016-07-17 00:58 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\quickassist.exe
2016-07-17 00:57 - 2016-07-16 13:43 - 00033498 _____ C:\WINDOWS\Core.xml
2016-07-17 00:52 - 2016-08-04 18:47 - 00000000 ____D C:\WINDOWS\OCR
2016-07-17 00:51 - 2016-08-16 09:13 - 00622244 _____ C:\WINDOWS\system32\perfh007.dat
2016-07-17 00:51 - 2016-08-16 09:13 - 00198304 _____ C:\WINDOWS\system32\perfc007.dat
2016-07-17 00:51 - 2016-07-17 00:51 - 00000000 ____D C:\WINDOWS\SKB
2016-07-17 00:51 - 2016-07-17 00:50 - 00305594 _____ C:\WINDOWS\system32\perfi007.dat
2016-07-17 00:51 - 2016-07-17 00:50 - 00040390 _____ C:\WINDOWS\system32\perfd007.dat
2016-07-17 00:50 - 2016-08-04 18:37 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-07-17 00:50 - 2016-08-04 18:37 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-07-17 00:50 - 2016-08-04 18:00 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-07-17 00:50 - 2016-08-04 18:00 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-07-17 00:50 - 2016-08-04 18:00 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-07-17 00:50 - 2016-08-04 18:00 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-07-17 00:50 - 2016-08-04 18:00 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-07-17 00:50 - 2016-08-04 18:00 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-07-17 00:50 - 2016-07-17 00:50 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-07-17 00:50 - 2016-07-17 00:50 - 00000000 ____D C:\WINDOWS\SysWOW64\de
2016-07-17 00:50 - 2016-07-17 00:50 - 00000000 ____D C:\WINDOWS\SysWOW64\0409
2016-07-17 00:50 - 2016-07-17 00:50 - 00000000 ____D C:\WINDOWS\system32\de
2016-07-17 00:50 - 2016-07-17 00:50 - 00000000 ____D C:\WINDOWS\system32\0409
2016-07-17 00:50 - 2016-07-17 00:50 - 00000000 ____D C:\WINDOWS\DigitalLocker

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-08-16 09:14 - 2015-08-19 00:49 - 00000000 ___RD C:\Users\dbirn_000\Dropbox
2016-08-16 09:07 - 2015-08-18 17:28 - 00000000 __SHD C:\Users\dbirn_000\IntelGraphicsProfiles
2016-08-15 17:49 - 2016-02-12 16:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-08-15 17:49 - 2016-01-14 18:33 - 00000000 ____D C:\Users\dbirn_000\Documents\Anki
2016-08-15 17:48 - 2015-08-20 13:42 - 00000000 ___HD C:\Users\dbirn_000\AppData\Roaming\Nitro PDF
2016-08-15 17:47 - 2015-08-18 22:15 - 00002481 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-15 17:47 - 2015-08-18 21:58 - 00001437 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-08-15 17:39 - 2016-01-14 11:38 - 00000000 ____D C:\Users\dbirn_000\Documents\Citavi 5
2016-08-15 13:15 - 2016-04-07 00:54 - 00000000 ____D C:\Users\dbirn_000\Downloads\DowloadsAcademia
2016-08-15 11:26 - 2015-08-18 17:35 - 00000000 ___RD C:\Users\dbirn_000\OneDrive
2016-08-15 11:14 - 2016-07-16 08:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-08-14 20:52 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2016-08-14 20:13 - 2016-04-07 00:54 - 00000000 ____D C:\Users\dbirn_000\Downloads\DownloadsLibGen
2016-08-14 16:38 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-13 12:55 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-12 11:00 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2016-08-11 21:08 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-10 21:41 - 2015-08-18 17:28 - 00000000 ____D C:\Users\dbirn_000\AppData\Local\Packages
2016-08-10 17:45 - 2015-08-19 00:24 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-10 15:51 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-10 15:51 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-08-10 15:51 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-08-10 15:51 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-08-10 15:51 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-08-10 15:51 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-08-10 15:51 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-08-10 15:51 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-10 15:51 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-08-10 14:32 - 2016-01-14 01:19 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-10 14:20 - 2016-01-14 01:19 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-10 13:20 - 2015-08-18 21:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-08-09 18:45 - 2016-03-18 16:22 - 00000000 ____D C:\ProgramData\Skype
2016-08-09 18:38 - 2016-04-30 21:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2016-08-09 17:37 - 2016-05-05 18:40 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\MyPhoneExplorer
2016-08-08 18:14 - 2016-01-14 11:37 - 00000000 ____D C:\ProgramData\Swiss Academic Software
2016-08-08 18:14 - 2016-01-14 11:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citavi 5
2016-08-08 18:13 - 2016-01-14 11:36 - 00000000 ____D C:\Users\dbirn_000\AppData\Local\Downloaded Installations
2016-08-07 22:08 - 2015-08-18 22:42 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-08-05 01:23 - 2014-12-19 06:47 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-05 00:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-08-04 23:11 - 2016-05-20 00:40 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-08-04 19:58 - 2016-04-30 21:04 - 00000000 ____D C:\ProgramData\ProductData
2016-08-04 18:51 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-08-04 18:37 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-08-04 18:37 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-08-04 18:37 - 2016-07-16 13:47 - 00000000 ___RD C:\Program Files\Windows Defender
2016-08-04 18:37 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-08-04 18:37 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-08-04 18:37 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-08-04 18:37 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-08-04 18:37 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-08-04 18:37 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Help
2016-08-04 18:37 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-08-04 18:37 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\System
2016-08-04 18:37 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-08-04 18:37 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-08-04 18:37 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\servicing
2016-08-04 18:32 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-08-04 18:32 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-08-04 18:32 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2016-08-04 18:32 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Com
2016-08-04 18:26 - 2016-02-29 00:36 - 00002386 _____ C:\Users\dbirn_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-04 18:16 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-08-04 18:15 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT
2016-08-04 18:15 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-08-04 18:14 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-08-04 18:14 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration
2016-08-04 18:14 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-08-04 18:09 - 2016-02-28 18:41 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-08-04 18:08 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-08-04 18:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-08-04 18:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-08-04 18:07 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-04 18:07 - 2016-07-08 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
2016-08-04 18:07 - 2016-07-03 01:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2016-08-04 18:07 - 2016-07-03 01:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\כלי Office 2016
2016-08-04 18:07 - 2016-06-18 21:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeMind
2016-08-04 18:07 - 2016-06-11 02:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.1
2016-08-04 18:07 - 2016-05-05 18:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer
2016-08-04 18:07 - 2016-04-09 02:10 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flixster Video
2016-08-04 18:07 - 2016-04-05 14:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\المكتبة الشاملة
2016-08-04 18:07 - 2016-04-04 09:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xiphos
2016-08-04 18:07 - 2016-04-03 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The SWORD Project
2016-08-04 18:07 - 2016-03-28 16:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WALKMAN Guide
2016-08-04 18:07 - 2016-03-27 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-04 18:07 - 2016-03-27 16:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-08-04 18:07 - 2016-03-12 23:44 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-04 18:07 - 2016-03-12 23:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-04 18:07 - 2016-02-27 13:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMind
2016-08-04 18:07 - 2016-02-27 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2016-08-04 18:07 - 2016-02-02 13:20 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\InfraRecorder
2016-08-04 18:07 - 2016-02-02 12:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2016-08-04 18:07 - 2016-01-19 12:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2016-08-04 18:07 - 2016-01-19 12:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2016-08-04 18:07 - 2016-01-16 16:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-08-04 18:07 - 2016-01-14 18:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDjView
2016-08-04 18:07 - 2016-01-14 11:25 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-08-04 18:07 - 2016-01-14 03:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2016-08-04 18:07 - 2015-10-30 20:44 - 00000000 ____D C:\WINDOWS\ShellNew
2016-08-04 18:07 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated
2016-08-04 18:07 - 2015-08-18 22:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-08-04 18:07 - 2015-08-18 22:15 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-04 18:07 - 2015-08-18 22:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-04 18:07 - 2015-08-18 22:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-08-04 18:07 - 2015-08-18 21:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-08-04 18:07 - 2015-08-18 20:51 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PhotoDirector 4
2016-08-04 18:07 - 2015-08-18 20:44 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2016-08-04 18:07 - 2014-12-19 07:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo Photo Master
2016-08-04 18:07 - 2014-12-19 07:09 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 10
2016-08-04 18:07 - 2014-12-19 07:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2016-08-04 18:07 - 2014-12-19 06:47 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-08-04 18:07 - 2014-12-19 06:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\InputMethod
2016-08-04 18:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\IME
2016-08-04 18:00 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-08-04 18:00 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-08-04 18:00 - 2016-05-24 13:27 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-08-04 18:00 - 2016-05-23 01:21 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2016-08-04 18:00 - 2016-03-23 14:38 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2016-08-04 18:00 - 2016-02-27 13:14 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2016-08-04 18:00 - 2014-12-19 06:51 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2016-08-04 18:00 - 2014-12-19 06:47 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-08-04 18:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2016-08-04 18:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2016-08-04 17:59 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-04 17:59 - 2016-04-01 13:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2016-08-04 17:59 - 2016-03-28 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2016-08-04 17:59 - 2016-02-27 13:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
2016-08-04 17:59 - 2014-12-19 07:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hightail
2016-08-04 17:55 - 2016-04-11 17:48 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Android
2016-08-04 17:54 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-08-04 17:53 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-08-04 17:53 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-08-04 17:17 - 2016-02-22 18:13 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-08-04 16:47 - 2015-08-18 22:42 - 00000940 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-08-04 16:42 - 2015-08-18 17:42 - 00000945 _____ C:\WINDOWS\Tasks\EPSON XP-610 Series Update {FCB9B395-BD41-487E-83F4-E5EDC1023F67}.job
2016-08-04 16:42 - 2015-08-18 17:42 - 00000759 _____ C:\WINDOWS\Tasks\EPSON XP-610 Series Invitation {FCB9B395-BD41-487E-83F4-E5EDC1023F67}.job
2016-08-04 16:30 - 2015-08-18 22:20 - 00000932 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0d9f35b7f3b7c.job
2016-08-04 16:25 - 2015-08-18 22:15 - 00000932 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-04 16:20 - 2016-05-04 00:20 - 00000945 _____ C:\WINDOWS\Tasks\EPSON XP-610 Series Update {229C7B40-79E8-41C8-8EBE-0DE79613F010}.job
2016-08-04 16:20 - 2016-05-04 00:20 - 00000759 _____ C:\WINDOWS\Tasks\EPSON XP-610 Series Invitation {229C7B40-79E8-41C8-8EBE-0DE79613F010}.job
2016-08-04 12:30 - 2015-08-18 22:15 - 00000928 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-03 22:47 - 2015-08-18 22:42 - 00000936 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-08-03 15:08 - 2016-06-16 10:08 - 00000000 ____D C:\Users\dbirn_000\Documents\Custom Office Templates
2016-08-03 11:03 - 2016-04-05 00:02 - 00464000 _____ C:\WINDOWS\system32\perfh001.dat
2016-08-03 11:03 - 2016-04-05 00:02 - 00078708 _____ C:\WINDOWS\system32\perfc001.dat
2016-08-03 11:03 - 2016-02-28 18:10 - 00435280 _____ C:\WINDOWS\system32\perfh00D.dat
2016-08-03 11:03 - 2016-02-28 18:10 - 00078450 _____ C:\WINDOWS\system32\perfc00D.dat
2016-08-02 15:27 - 2016-01-22 13:59 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\vlc
2016-07-30 14:32 - 2016-07-03 01:28 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\Oracle
2016-07-28 19:36 - 2016-01-19 12:50 - 00000000 ____D C:\Users\dbirn_000\AppData\Roaming\Epson
2016-07-28 19:17 - 2014-12-19 06:44 - 00000000 ____D C:\ProgramData\Intel
2016-07-28 19:17 - 2014-12-19 06:43 - 00000000 ____D C:\Program Files (x86)\Intel
2016-07-28 18:57 - 2016-03-27 16:41 - 00000000 ____D C:\ProgramData\Oracle
2016-07-28 18:55 - 2016-03-27 16:41 - 00000000 ____D C:\Program Files (x86)\Java
2016-07-28 18:54 - 2016-02-27 13:44 - 00000000 ___HD C:\Users\dbirn_000\.oracle_jre_usage
2016-07-28 18:53 - 2016-03-27 16:41 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-07-27 21:25 - 2016-01-14 19:00 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-27 14:16 - 2016-07-03 01:38 - 00000000 ____D C:\Users\dbirn_000\Software
2016-07-27 00:27 - 2016-03-27 16:50 - 00000000 ___HD C:\Users\dbirn_000\.mediathek3
2016-07-26 18:55 - 2016-05-28 18:50 - 00000000 ____D C:\Users\dbirn_000\Downloads\OtherDownloads
2016-07-23 17:56 - 2016-02-02 12:09 - 00000000 ____D C:\Users\dbirn_000\Downloads\NewBookScan
2016-07-22 15:17 - 2015-08-18 17:31 - 00000000 ___HD C:\Users\dbirn_000\AppData\Local\Lenovo
2016-07-22 12:13 - 2014-12-19 07:06 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-07-21 08:40 - 2016-05-05 18:42 - 00350464 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rtux64w10.sys
2016-07-19 18:16 - 2016-03-12 23:29 - 00000000 ____D C:\Program Files (x86)\Steam
2016-07-19 13:06 - 2016-07-03 02:00 - 00000000 ____D C:\Users\dbirn_000\.VirtualBox
2016-07-17 00:57 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SystemApps
2016-07-17 00:56 - 2016-07-16 13:44 - 02549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll
2016-07-17 00:56 - 2016-07-16 13:44 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2016-07-17 00:56 - 2016-07-16 13:44 - 00268552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2016-07-17 00:56 - 2016-07-16 13:44 - 00177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2016-07-17 00:56 - 2016-07-16 13:44 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfdts.dll
2016-07-17 00:56 - 2016-07-16 13:44 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rfxvmt.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 03584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsCpl.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsCpl.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mblctr.exe
2016-07-17 00:56 - 2016-07-16 13:43 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SnippingTool.exe
2016-07-17 00:56 - 2016-07-16 13:43 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2016-07-17 00:56 - 2016-07-16 13:43 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00298536 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrreg.exe
2016-07-17 00:56 - 2016-07-16 13:43 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2016-07-17 00:56 - 2016-07-16 13:43 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsClassExtension.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DFDWiz.exe
2016-07-17 00:56 - 2016-07-16 13:43 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RotMgr.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrcomp.exe
2016-07-17 00:56 - 2016-07-16 13:43 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetppui.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00029536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2016-07-17 00:56 - 2016-07-16 13:43 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorPerformanceEvents.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorCustomAdbAlgorithm.dll
2016-07-17 00:56 - 2016-07-16 13:43 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2016-07-17 00:56 - 2016-07-16 13:41 - 00038752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\terminpt.sys
2016-07-17 00:56 - 2016-07-16 13:41 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpbus.sys
2016-07-17 00:51 - 2016-07-16 13:44 - 12039168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0007.dll
2016-07-17 00:51 - 2016-07-16 13:44 - 12039168 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0007.dll
2016-07-17 00:51 - 2016-07-16 13:44 - 02083328 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0007.dll
2016-07-17 00:51 - 2016-07-16 13:44 - 01997312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0007.dll
2016-07-17 00:51 - 2016-07-16 13:43 - 11602432 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0007.dll
2016-07-17 00:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-07-17 00:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-07-17 00:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\setup

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-08-16 09:14 - 2016-08-08 03:54 - 1611776 _____ () C:\Users\dbirn_000\AppData\Roaming\ucdlr.exe
2016-08-15 18:16 - 2016-02-18 10:10 - 5267952 _____ () C:\Users\dbirn_000\AppData\Roaming\ziptool_wc-9015_setup.exe
2016-04-21 12:34 - 2016-04-21 12:34 - 0003584 _____ () C:\Users\dbirn_000\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-06-15 21:20 - 2016-06-15 21:20 - 0000017 _____ () C:\Users\dbirn_000\AppData\Local\resmon.resmoncfg
2016-08-04 17:53 - 2016-08-04 17:53 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\dbirn_000\AppData\Local\Temp\2UJUgehsRH.exe
C:\Users\dbirn_000\AppData\Local\Temp\4PbGHxNmSi.exe
C:\Users\dbirn_000\AppData\Local\Temp\B1B.tmp.exe
C:\Users\dbirn_000\AppData\Local\Temp\BI5R6F2ELP.exe
C:\Users\dbirn_000\AppData\Local\Temp\fL4dYHfHaS.exe
C:\Users\dbirn_000\AppData\Local\Temp\ludashisetup.exe
C:\Users\dbirn_000\AppData\Local\Temp\nsf212F.tmp.exe
C:\Users\dbirn_000\AppData\Local\Temp\PqY4Go5L1S.exe
C:\Users\dbirn_000\AppData\Local\Temp\sdf8CA8.exe
C:\Users\dbirn_000\AppData\Local\Temp\sdfFBD2.exe
C:\Users\dbirn_000\AppData\Local\Temp\X8ON6CB31V.exe
C:\Users\dbirn_000\AppData\Local\Temp\XDYY1Y9Z8P.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-08-14 21:16

==================== Ende von FRST.txt

 

Themen zu Windows 10 / Installation von unerwünschten Programmen hört nicht auf/Defender geht nicht
account, besten, computer, defender, einfach, englisch, installation, internet, löschen, manager, nichts, online, probleme, programme, quarantäne, rechner, sachen, scan, scannen, schnell, task manager, taskmanager, trojaner, update, windows


« Malware oder Fehlerhafter Headset-Treiber? | Ich bräuchte Hilfe zum Thema CryptoWall. »


Ähnliche Themen: Windows 10 / Installation von unerwünschten Programmen hört nicht auf/Defender geht nicht


  1. Ständiger Befall von unerwünschten Programmen und Treiberprobleme unter Windows 7
    Plagegeister aller Art und deren Bekämpfung - 21.11.2015 (42)
  2. Booten langsam, Drucker geht...geht nicht,Programme öffnen geht...geht nicht
    Plagegeister aller Art und deren Bekämpfung - 25.06.2015 (19)
  3. Windows 7, System langsam und Installation von Adobe Flash Player geht nicht
    Plagegeister aller Art und deren Bekämpfung - 09.04.2015 (10)
  4. Avira Desktop lässt sich nicht aktivieren & Windows Updates geht nicht mehr: Schlüssel im angegebenen Status nicht gültig!
    Antiviren-, Firewall- und andere Schutzprogramme - 08.11.2014 (16)
  5. Problem mit potentiell unerwünschten Programmen
    Log-Analyse und Auswertung - 29.10.2014 (2)
  6. Windows 8.1 interner Fehler 2203, Installation von Programmen nicht möglich
    Alles rund um Windows - 04.10.2014 (1)
  7. Avira Antivir, Windows Defender und Windows Update nicht aktivierbar bzw. nicht durchführbar.
    Antiviren-, Firewall- und andere Schutzprogramme - 14.08.2014 (1)
  8. Ton geht nicht nach Windows 7 Installation
    Alles rund um Windows - 25.06.2014 (1)
  9. Windows Virenschutz Installation geht nicht
    Alles rund um Windows - 11.04.2014 (2)
  10. Vista. Defender + Internet geht nicht mehr. Zaccess und Java Lamar gefunden.
    Log-Analyse und Auswertung - 13.10.2013 (11)
  11. Windows Fensterfarbe geändert und Windows defender aktiviren geht nicht
    Log-Analyse und Auswertung - 14.07.2013 (33)
  12. Windows 8 startet nicht, da Anmeldung nicht moeglich! Tastatur geht nicht.
    Plagegeister aller Art und deren Bekämpfung - 13.07.2013 (25)
  13. Ask-Suche nicht löschbar+Windows Defender funktioniert nicht
    Plagegeister aller Art und deren Bekämpfung - 22.03.2013 (1)
  14. Windows-Sicherheitscenterdienst wird nicht angezeigt, Windows Defender lässt sich nicht starten
    Log-Analyse und Auswertung - 10.04.2012 (5)
  15. Win7 herunterfahren Button reagiert nicht, strg+alt+entf geht nicht mehr & cmd.exe geht nicht auf
    Plagegeister aller Art und deren Bekämpfung - 15.12.2011 (25)
  16. Probleme mit unerwünschten Programmen
    Plagegeister aller Art und deren Bekämpfung - 25.02.2006 (5)
  17. IE und OE -> OE startet nicht / beide Installation geht nicht
    Alles rund um Windows - 18.08.2005 (7)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 10 / Installation von unerwünschten Programmen hört nicht auf/Defender geht nicht - Teil 2: Code: Alles auswählen Aufklappen ATTFilter ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-08-16 09:43 - Windows 10 / Installation von unerwünschten Programmen hört nicht auf/Defender geht nicht...
Archiv
Du betrachtest: Windows 10 / Installation von unerwünschten Programmen hört nicht auf/Defender geht nicht auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19