| |
| |||||||
Log-Analyse und Auswertung: PUP.Optional.CrossRider.Generic nicht richtig zu entfernenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
23.09.2016, 21:59
| #1 |
 |  PUP.Optional.CrossRider.Generic nicht richtig zu entfernen Hallo, leider habe ich Probleme, meinen Rechner virenfrei zu bekommen. Nach MWByte-Scan ist IMMER ein PUP.Optional.CrossRider.Generic oder ähnlich da. Den isoliere und entferne ich umgehend. Wenn ich dann den Rechner runterfahre und nach Neustart gleich nochmal scanne, ist er wieder da...  Folgende Scans: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version: 21-09-2016 durchgeführt von Romer (Administrator) auf ROMER-PC (23-09-2016 21:56:05) Gestartet von C:\Users\Romer\Downloads Geladene Profile: Romer (Verfügbare Profile: Romer & Rainer-User & Marie-Sophie & Conny & Felix) Platform: Microsoft Windows 10 Home Version 1511 (X86) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (AMD) C:\Windows\System32\atiesrxx.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe (Malwarebytes) C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe (Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe (McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (Microsoft Corporation) C:\Windows\System32\wimserv.exe (AMD) C:\Windows\System32\atieclxx.exe (Malwarebytes) C:\Program Files\ Malwarebytes Anti-Malware \mbam.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Hewlett-Packard) C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (© 2015 Microsoft Corporation) C:\Users\Romer\AppData\Local\Microsoft\BingSvc\BingSvc.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.376\SSScheduler.exe (Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe (Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe (Farbar) C:\Users\Romer\Downloads\FRST(8).exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14476032 2015-10-01] (Realtek Semiconductor) HKLM\...\Run: [OrderReminder] => C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [98304 2006-01-30] (Hewlett-Packard) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [164152 2016-07-05] (Apple Inc.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3527880 2015-06-12] (Synaptics Incorporated) HKU\S-1-5-21-734981412-4070128847-1335923988-1000\...\Run: [BingSvc] => C:\Users\Romer\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2016-01-01] (© 2015 Microsoft Corporation) HKU\S-1-5-21-734981412-4070128847-1335923988-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6628056 2016-01-15] (Piriform Ltd) ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-08-09] ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.376\SSScheduler.exe (McAfee, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Winsol_Autostart.lnk [2016-03-04] ShortcutTarget: Winsol_Autostart.lnk -> C:\Program Files\Technische Alternative\Winsol\Winsol.exe (Technische Alternative GmbH) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.) Hosts: 0.0.0.1 mssplus.mcafee.com Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{6adde083-e5fc-41cb-801f-39a50de40cd0}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{83254866-51b2-4ded-a0f7-c4535522175c}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{a38c698b-149f-4dd2-923b-45ce6fc69f88}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{f1445627-88bd-4c5d-9eac-1dddce526762}: [DhcpNameServer] 192.168.178.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKU\S-1-5-21-734981412-4070128847-1335923988-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=SL5M&ocid=SL5MDHP&osmkt=de-de SearchScopes: HKLM -> {38AEB7B3-42CC-4C33-9290-BEA08B6FE742} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSEG; SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-734981412-4070128847-1335923988-1000 -> {38AEB7B3-42CC-4C33-9290-BEA08B6FE742} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSEG; SearchScopes: HKU\S-1-5-21-734981412-4070128847-1335923988-1000 -> {3B68BF06-4CA1-4767-A738-3B271E28FA21} URL = hxxps://de.search.yahoo.com/search?fr=mcafee&type=B011DE642D20141004&p={SearchTerms} BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-07-26] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation) Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2016-08-29] (McAfee, Inc.) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2016-08-29] (McAfee, Inc.) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl.dll [2016-07-07] (McAfee, Inc.) FireFox: ======== FF ProfilePath: C:\Users\Romer\AppData\Roaming\Mozilla\Firefox\Profiles\ouma2d78.default FF SearchEngineOrder.3: Bing FF SelectedSearchEngine: Bing FF Homepage: hxxp://www.msn.com/?pc=SL5M&ocid=SL5MDHP&osmkt=de-de FF Keyword.URL: hxxp://www.bing.com/search?FORM=SL5MDF&PC=SL5M&q= FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-14] () FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] () FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-07-07] () FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-26] (Microsoft Corporation) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF SearchPlugin: C:\Users\Romer\AppData\Roaming\Mozilla\Firefox\Profiles\ouma2d78.default\searchplugins\bing-.xml [2016-01-01] FF SearchPlugin: C:\Users\Romer\AppData\Roaming\Mozilla\Firefox\Profiles\ouma2d78.default\searchplugins\McSiteAdvisor.xml [2016-02-21] FF Extension: (McAfee WebAdvisor) - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi [2016-09-15] FF Extension: (Bing Search) - C:\Users\Romer\AppData\Roaming\Mozilla\Firefox\Profiles\ouma2d78.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-01-01] FF Extension: (Adblock Plus) - C:\Users\Romer\AppData\Roaming\Mozilla\Firefox\Profiles\ouma2d78.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-09-22] FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2016-07-27] [ist nicht signiert] FF HKU\S-1-5-21-734981412-4070128847-1335923988-1000\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => nicht gefunden FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2016-06-28] Chrome: ======= CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx [2016-04-20] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [2130160 2016-07-26] (Microsoft Corporation) R2 HomeNetSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) R2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes) R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [137328 2016-08-29] (McAfee, Inc.) R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [870688 2016-07-07] (McAfee, Inc.) S2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.376\McCHSvc.exe [270600 2016-07-19] (McAfee, Inc.) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1405264 2016-05-31] (McAfee, Inc.) R2 McMPFSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [630704 2016-06-21] (McAfee, Inc.) R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [196848 2016-04-26] (McAfee, Inc.) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [343304 2016-06-23] (McAfee, Inc.) R2 mfevtp; C:\Windows\system32\mfevtps.exe [265968 2016-04-26] (McAfee, Inc.) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1130272 2016-06-17] (McAfee, Inc.) R3 MSK80Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [858864 2016-05-25] (Intel Security, Inc.) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [216776 2015-06-12] (Synaptics Incorporated) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2016-09-07] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [71968 2016-04-27] (McAfee, Inc.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [107648 2016-07-22] (Samsung Electronics Co., Ltd.) S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [160064 2016-02-24] (McAfee, Inc.) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [24448 2016-03-10] (Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [170200 2016-09-23] (Malwarebytes) S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [53120 2016-03-10] (Malwarebytes Corporation) R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [321312 2016-04-27] (McAfee, Inc.) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [271144 2016-04-27] (McAfee, Inc.) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [72856 2016-04-27] (McAfee, Inc.) R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [379680 2016-04-27] (McAfee, Inc.) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [648480 2016-04-27] (McAfee, Inc.) R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [408864 2016-04-27] (McAfee, Inc.) S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [83752 2016-04-27] (McAfee, Inc.) R3 mfesapsn; C:\Program Files\McAfee\SiteAdvisor\mfesapsn.sys [41600 2016-06-06] (McAfee, Inc.) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [199464 2016-04-27] (McAfee, Inc.) R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2015-10-30] (Realtek ) R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [35528 2015-06-12] (Synaptics Incorporated) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [146048 2016-07-22] (Samsung Electronics Co., Ltd.) R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [41584 2015-10-01] (Toshiba Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation) S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation) U3 idsvc; kein ImagePath ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-09-23 21:55 - 2016-09-23 21:55 - 01753088 _____ (Farbar) C:\Users\Romer\Downloads\FRST(8).exe 2016-09-23 21:55 - 2016-09-23 21:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2016-09-23 21:45 - 2016-09-23 21:45 - 00000000 ____D C:\Users\Romer\Documents\Technische Alternative 2016-09-22 23:31 - 2016-09-23 00:03 - 00000000 ____D C:\Program Files\Mozilla Firefox 2016-09-22 22:54 - 2016-09-22 22:54 - 00571133 _____ C:\Users\Rainer-User\Downloads\eprimo_nachricht_3348973(1).pdf 2016-09-22 22:52 - 2016-09-22 22:52 - 00225415 _____ C:\Users\Rainer-User\Downloads\eprimo_nachricht_3826935.pdf 2016-09-22 21:20 - 2016-09-22 21:20 - 01753088 _____ (Farbar) C:\Users\Romer\Downloads\FRST(7).exe 2016-09-22 21:16 - 2016-09-22 21:16 - 00000000 ____D C:\Users\Romer\AppData\Local\ActiveSync 2016-09-20 23:28 - 2016-09-20 23:28 - 00000000 ____D C:\Users\Rainer-User\Documents\steuer 2016-09-19 22:41 - 2016-09-19 22:41 - 00002119 _____ C:\Users\Public\Desktop\WISO steuer Sparbuch 2016.lnk 2016-09-19 22:41 - 2016-09-19 22:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WISO steuer Sparbuch 2016 2016-09-19 22:37 - 2016-09-19 22:37 - 00000000 ____D C:\Program Files\WISO 2016-09-15 20:12 - 2016-09-07 07:39 - 01862000 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2016-09-15 20:12 - 2016-09-07 07:39 - 01051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2016-09-15 20:12 - 2016-09-07 07:39 - 00601744 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2016-09-15 20:12 - 2016-09-07 07:39 - 00138960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll 2016-09-15 20:12 - 2016-09-07 07:24 - 00355672 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll 2016-09-15 20:12 - 2016-09-07 07:22 - 01824264 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2016-09-15 20:12 - 2016-09-07 07:07 - 01951848 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll 2016-09-15 20:12 - 2016-09-07 06:31 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll 2016-09-15 20:12 - 2016-09-07 06:31 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2016-09-15 20:12 - 2016-09-07 06:30 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-09-15 20:12 - 2016-09-07 06:29 - 19350016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-09-15 20:12 - 2016-09-07 06:29 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll 2016-09-15 20:12 - 2016-09-07 06:28 - 01762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2016-09-15 20:12 - 2016-09-07 06:28 - 00385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2016-09-15 20:12 - 2016-09-07 06:27 - 00481792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx.dll 2016-09-15 20:12 - 2016-09-07 06:26 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2016-09-15 20:12 - 2016-09-07 06:26 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe 2016-09-15 20:12 - 2016-09-07 06:26 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2016-09-15 20:12 - 2016-09-07 06:26 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2016-09-15 20:12 - 2016-09-07 06:25 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2016-09-15 20:12 - 2016-09-07 06:25 - 00952320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2016-09-15 20:12 - 2016-09-07 06:24 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2016-09-15 20:12 - 2016-09-07 06:24 - 00785920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll 2016-09-15 20:12 - 2016-09-07 06:22 - 12134400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-09-15 20:12 - 2016-09-07 06:21 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll 2016-09-15 20:12 - 2016-09-07 06:19 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2016-09-15 20:12 - 2016-09-07 06:19 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe 2016-09-15 20:12 - 2016-09-07 06:18 - 01735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2016-09-15 20:12 - 2016-09-07 06:17 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2016-09-15 20:12 - 2016-09-07 06:17 - 00854016 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll 2016-09-15 20:12 - 2016-09-07 06:15 - 05659136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-09-15 20:12 - 2016-09-07 06:15 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2016-09-15 20:12 - 2016-09-07 06:14 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2016-09-15 20:12 - 2016-09-07 06:11 - 03065344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe 2016-09-15 20:11 - 2016-09-07 07:41 - 00229216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2016-09-15 20:11 - 2016-09-07 07:39 - 00545432 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2016-09-15 20:11 - 2016-09-07 07:37 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll 2016-09-15 20:11 - 2016-09-07 07:37 - 00100704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys 2016-09-15 20:11 - 2016-09-07 07:35 - 01174368 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2016-09-15 20:11 - 2016-09-07 07:33 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2016-09-15 20:11 - 2016-09-07 07:33 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2016-09-15 20:11 - 2016-09-07 07:25 - 00310112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe 2016-09-15 20:11 - 2016-09-07 07:24 - 01349632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2016-09-15 20:11 - 2016-09-07 07:24 - 01334680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2016-09-15 20:11 - 2016-09-07 07:24 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll 2016-09-15 20:11 - 2016-09-07 07:24 - 00496360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll 2016-09-15 20:11 - 2016-09-07 07:22 - 02937384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2016-09-15 20:11 - 2016-09-07 07:22 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2016-09-15 20:11 - 2016-09-07 07:21 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2016-09-15 20:11 - 2016-09-07 07:21 - 05240952 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2016-09-15 20:11 - 2016-09-07 07:21 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2016-09-15 20:11 - 2016-09-07 07:21 - 01300016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe 2016-09-15 20:11 - 2016-09-07 07:21 - 00613112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll 2016-09-15 20:11 - 2016-09-07 07:19 - 00505136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2016-09-15 20:11 - 2016-09-07 07:19 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2016-09-15 20:11 - 2016-09-07 07:12 - 00727752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2016-09-15 20:11 - 2016-09-07 07:11 - 00381784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2016-09-15 20:11 - 2016-09-07 07:11 - 00180064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2016-09-15 20:11 - 2016-09-07 07:08 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll 2016-09-15 20:11 - 2016-09-07 07:08 - 00042920 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe 2016-09-15 20:11 - 2016-09-07 06:47 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll 2016-09-15 20:11 - 2016-09-07 06:42 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2016-09-15 20:11 - 2016-09-07 06:42 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll 2016-09-15 20:11 - 2016-09-07 06:39 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll 2016-09-15 20:11 - 2016-09-07 06:39 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll 2016-09-15 20:11 - 2016-09-07 06:38 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll 2016-09-15 20:11 - 2016-09-07 06:38 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe 2016-09-15 20:11 - 2016-09-07 06:37 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll 2016-09-15 20:11 - 2016-09-07 06:37 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll 2016-09-15 20:11 - 2016-09-07 06:37 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll 2016-09-15 20:11 - 2016-09-07 06:36 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll 2016-09-15 20:11 - 2016-09-07 06:36 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll 2016-09-15 20:11 - 2016-09-07 06:35 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbemcomn.dll 2016-09-15 20:11 - 2016-09-07 06:35 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp 2016-09-15 20:11 - 2016-09-07 06:35 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbceip.dll 2016-09-15 20:11 - 2016-09-07 06:34 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll 2016-09-15 20:11 - 2016-09-07 06:33 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll 2016-09-15 20:11 - 2016-09-07 06:33 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll 2016-09-15 20:11 - 2016-09-07 06:33 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Geolocation.dll 2016-09-15 20:11 - 2016-09-07 06:32 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2016-09-15 20:11 - 2016-09-07 06:32 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll 2016-09-15 20:11 - 2016-09-07 06:32 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2016-09-15 20:11 - 2016-09-07 06:32 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2016-09-15 20:11 - 2016-09-07 06:32 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll 2016-09-15 20:11 - 2016-09-07 06:32 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroleui.dll 2016-09-15 20:11 - 2016-09-07 06:32 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll 2016-09-15 20:11 - 2016-09-07 06:32 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll 2016-09-15 20:11 - 2016-09-07 06:31 - 09920512 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2016-09-15 20:11 - 2016-09-07 06:31 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\system32\certmgr.dll 2016-09-15 20:11 - 2016-09-07 06:30 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\filemgmt.dll 2016-09-15 20:11 - 2016-09-07 06:30 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll 2016-09-15 20:11 - 2016-09-07 06:30 - 00395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll 2016-09-15 20:11 - 2016-09-07 06:30 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2016-09-15 20:11 - 2016-09-07 06:30 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL 2016-09-15 20:11 - 2016-09-07 06:29 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll 2016-09-15 20:11 - 2016-09-07 06:29 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2016-09-15 20:11 - 2016-09-07 06:28 - 04143104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll 2016-09-15 20:11 - 2016-09-07 06:28 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll 2016-09-15 20:11 - 2016-09-07 06:28 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll 2016-09-15 20:11 - 2016-09-07 06:28 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2016-09-15 20:11 - 2016-09-07 06:28 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll 2016-09-15 20:11 - 2016-09-07 06:28 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2016-09-15 20:11 - 2016-09-07 06:28 - 00604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2016-09-15 20:11 - 2016-09-07 06:28 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll 2016-09-15 20:11 - 2016-09-07 06:28 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll 2016-09-15 20:11 - 2016-09-07 06:28 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll 2016-09-15 20:11 - 2016-09-07 06:28 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll 2016-09-15 20:11 - 2016-09-07 06:28 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2016-09-15 20:11 - 2016-09-07 06:27 - 01746944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll 2016-09-15 20:11 - 2016-09-07 06:27 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll 2016-09-15 20:11 - 2016-09-07 06:27 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll 2016-09-15 20:11 - 2016-09-07 06:27 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2016-09-15 20:11 - 2016-09-07 06:27 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2016-09-15 20:11 - 2016-09-07 06:27 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll 2016-09-15 20:11 - 2016-09-07 06:27 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll 2016-09-15 20:11 - 2016-09-07 06:27 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll 2016-09-15 20:11 - 2016-09-07 06:27 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll 2016-09-15 20:11 - 2016-09-07 06:27 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll 2016-09-15 20:11 - 2016-09-07 06:27 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll 2016-09-15 20:11 - 2016-09-07 06:27 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2016-09-15 20:11 - 2016-09-07 06:26 - 01537536 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll 2016-09-15 20:11 - 2016-09-07 06:26 - 01508352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll 2016-09-15 20:11 - 2016-09-07 06:26 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe 2016-09-15 20:11 - 2016-09-07 06:26 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2016-09-15 20:11 - 2016-09-07 06:26 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll 2016-09-15 20:11 - 2016-09-07 06:26 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2016-09-15 20:11 - 2016-09-07 06:26 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2016-09-15 20:11 - 2016-09-07 06:26 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll 2016-09-15 20:11 - 2016-09-07 06:26 - 00645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll 2016-09-15 20:11 - 2016-09-07 06:25 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2016-09-15 20:11 - 2016-09-07 06:25 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll 2016-09-15 20:11 - 2016-09-07 06:25 - 01043456 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe 2016-09-15 20:11 - 2016-09-07 06:25 - 00759808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2016-09-15 20:11 - 2016-09-07 06:25 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2016-09-15 20:11 - 2016-09-07 06:24 - 01070592 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll 2016-09-15 20:11 - 2016-09-07 06:23 - 01562112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe 2016-09-15 20:11 - 2016-09-07 06:23 - 01364480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2016-09-15 20:11 - 2016-09-07 06:23 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll 2016-09-15 20:11 - 2016-09-07 06:23 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll 2016-09-15 20:11 - 2016-09-07 06:22 - 02106368 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll 2016-09-15 20:11 - 2016-09-07 06:22 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll 2016-09-15 20:11 - 2016-09-07 06:22 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2016-09-15 20:11 - 2016-09-07 06:21 - 02527232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll 2016-09-15 20:11 - 2016-09-07 06:20 - 03196928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2016-09-15 20:11 - 2016-09-07 06:20 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll 2016-09-15 20:11 - 2016-09-07 06:20 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe 2016-09-15 20:11 - 2016-09-07 06:19 - 01801216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2016-09-15 20:11 - 2016-09-07 06:19 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2016-09-15 20:11 - 2016-09-07 06:19 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll 2016-09-15 20:11 - 2016-09-07 06:18 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2016-09-15 20:11 - 2016-09-07 06:18 - 01635840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll 2016-09-15 20:11 - 2016-09-07 06:17 - 02880512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll 2016-09-15 20:11 - 2016-09-07 06:17 - 02679808 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll 2016-09-15 20:11 - 2016-09-07 06:17 - 01931776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2016-09-15 20:11 - 2016-09-07 06:17 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2016-09-15 20:11 - 2016-09-07 06:17 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2016-09-15 20:11 - 2016-09-07 06:16 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2016-09-15 20:11 - 2016-09-07 06:16 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2016-09-15 20:11 - 2016-09-07 06:16 - 02361856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll 2016-09-15 20:11 - 2016-09-07 06:16 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll 2016-09-15 20:11 - 2016-09-07 06:16 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2016-09-15 20:11 - 2016-09-07 06:16 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2016-09-15 20:11 - 2016-09-07 06:16 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2016-09-15 20:11 - 2016-09-07 06:16 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2016-09-15 20:11 - 2016-09-07 06:15 - 02772480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2016-09-15 20:11 - 2016-09-07 06:15 - 01900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2016-09-15 20:11 - 2016-09-07 06:15 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll 2016-09-15 20:11 - 2016-09-07 06:15 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll 2016-09-15 20:11 - 2016-09-07 06:14 - 02553856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2016-09-15 20:11 - 2016-09-07 06:14 - 02177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2016-09-15 20:11 - 2016-09-07 06:14 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2016-09-15 20:11 - 2016-09-07 06:14 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll 2016-09-15 20:11 - 2016-09-07 06:12 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2016-09-15 20:11 - 2016-09-07 06:11 - 01106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll 2016-09-15 20:11 - 2016-09-07 06:10 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll 2016-09-15 20:11 - 2016-09-07 06:09 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll 2016-09-15 20:11 - 2016-09-07 06:09 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msobjs.dll 2016-09-15 20:11 - 2016-09-07 06:09 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll 2016-09-15 20:11 - 2016-09-07 03:15 - 00445765 _____ C:\WINDOWS\system32\ApnDatabase.xml 2016-09-15 20:10 - 2016-09-07 07:40 - 01561392 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2016-09-15 20:10 - 2016-09-07 07:40 - 00876504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2016-09-15 20:10 - 2016-09-07 07:40 - 00771120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2016-09-15 20:10 - 2016-09-07 07:39 - 05794144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-09-15 20:10 - 2016-09-07 07:39 - 00927080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2016-09-15 20:10 - 2016-09-07 07:39 - 00845568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll 2016-09-15 20:10 - 2016-09-07 07:39 - 00628440 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2016-09-15 20:10 - 2016-09-07 07:35 - 00433504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2016-09-15 20:10 - 2016-09-07 07:33 - 02026736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2016-09-15 20:10 - 2016-09-07 07:24 - 02180128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2016-09-15 20:10 - 2016-09-07 07:24 - 01118200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll 2016-09-15 20:10 - 2016-09-07 07:24 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2016-09-15 20:10 - 2016-09-07 07:24 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2016-09-15 20:10 - 2016-09-07 07:24 - 00709176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2016-09-15 20:10 - 2016-09-07 07:24 - 00511312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2016-09-15 20:10 - 2016-09-07 07:24 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2016-09-15 20:10 - 2016-09-07 07:23 - 00104800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys 2016-09-15 20:10 - 2016-09-07 07:21 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2016-09-15 20:10 - 2016-09-07 07:20 - 05598832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2016-09-15 20:10 - 2016-09-07 07:20 - 01355336 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll 2016-09-15 20:10 - 2016-09-07 07:20 - 01337680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2016-09-15 20:10 - 2016-09-07 07:20 - 00836752 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2016-09-15 20:10 - 2016-09-07 07:20 - 00633192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2016-09-15 20:10 - 2016-09-07 07:20 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll 2016-09-15 20:10 - 2016-09-07 07:20 - 00036136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrameHost.exe 2016-09-15 20:10 - 2016-09-07 07:19 - 00995296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2016-09-15 20:10 - 2016-09-07 07:19 - 00549728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys 2016-09-15 20:10 - 2016-09-07 07:19 - 00510872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll 2016-09-15 20:10 - 2016-09-07 07:13 - 02186856 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2016-09-15 20:10 - 2016-09-07 07:13 - 01865584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll 2016-09-15 20:10 - 2016-09-07 07:12 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2016-09-15 20:10 - 2016-09-07 07:12 - 01712992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2016-09-15 20:10 - 2016-09-07 07:12 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2016-09-15 20:10 - 2016-09-07 07:12 - 01174008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2016-09-15 20:10 - 2016-09-07 07:10 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe 2016-09-15 20:10 - 2016-09-07 07:08 - 01861984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2016-09-15 20:10 - 2016-09-07 07:07 - 00403920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll 2016-09-15 20:10 - 2016-09-07 07:07 - 00253080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll 2016-09-15 20:10 - 2016-09-07 06:43 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcl.dll 2016-09-15 20:10 - 2016-09-07 06:40 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2016-09-15 20:10 - 2016-09-07 06:40 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll 2016-09-15 20:10 - 2016-09-07 06:39 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll 2016-09-15 20:10 - 2016-09-07 06:38 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll 2016-09-15 20:10 - 2016-09-07 06:37 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\fodhelper.exe 2016-09-15 20:10 - 2016-09-07 06:36 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll 2016-09-15 20:10 - 2016-09-07 06:36 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll 2016-09-15 20:10 - 2016-09-07 06:36 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll 2016-09-15 20:10 - 2016-09-07 06:36 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll 2016-09-15 20:10 - 2016-09-07 06:35 - 09324032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL 2016-09-15 20:10 - 2016-09-07 06:35 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll 2016-09-15 20:10 - 2016-09-07 06:35 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcshext.dll 2016-09-15 20:10 - 2016-09-07 06:35 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll 2016-09-15 20:10 - 2016-09-07 06:34 - 00300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll 2016-09-15 20:10 - 2016-09-07 06:34 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll 2016-09-15 20:10 - 2016-09-07 06:34 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll 2016-09-15 20:10 - 2016-09-07 06:34 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll 2016-09-15 20:10 - 2016-09-07 06:33 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2016-09-15 20:10 - 2016-09-07 06:33 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll 2016-09-15 20:10 - 2016-09-07 06:33 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll 2016-09-15 20:10 - 2016-09-07 06:33 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll 2016-09-15 20:10 - 2016-09-07 06:33 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll 2016-09-15 20:10 - 2016-09-07 06:33 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll 2016-09-15 20:10 - 2016-09-07 06:32 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll 2016-09-15 20:10 - 2016-09-07 06:31 - 01496064 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2016-09-15 20:10 - 2016-09-07 06:31 - 00753664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll 2016-09-15 20:10 - 2016-09-07 06:31 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe 2016-09-15 20:10 - 2016-09-07 06:31 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2016-09-15 20:10 - 2016-09-07 06:31 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll 2016-09-15 20:10 - 2016-09-07 06:31 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll 2016-09-15 20:10 - 2016-09-07 06:31 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll 2016-09-15 20:10 - 2016-09-07 06:31 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll 2016-09-15 20:10 - 2016-09-07 06:31 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll 2016-09-15 20:10 - 2016-09-07 06:30 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2016-09-15 20:10 - 2016-09-07 06:30 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll 2016-09-15 20:10 - 2016-09-07 06:30 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll 2016-09-15 20:10 - 2016-09-07 06:30 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe 2016-09-15 20:10 - 2016-09-07 06:29 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll 2016-09-15 20:10 - 2016-09-07 06:29 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll 2016-09-15 20:10 - 2016-09-07 06:29 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll 2016-09-15 20:10 - 2016-09-07 06:29 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll 2016-09-15 20:10 - 2016-09-07 06:28 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll 2016-09-15 20:10 - 2016-09-07 06:28 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc_ssp.dll 2016-09-15 20:10 - 2016-09-07 06:28 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll 2016-09-15 20:10 - 2016-09-07 06:28 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll 2016-09-15 20:10 - 2016-09-07 06:28 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2016-09-15 20:10 - 2016-09-07 06:28 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2016-09-15 20:10 - 2016-09-07 06:28 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll 2016-09-15 20:10 - 2016-09-07 06:28 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys 2016-09-15 20:10 - 2016-09-07 06:28 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl 2016-09-15 20:10 - 2016-09-07 06:28 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2016-09-15 20:10 - 2016-09-07 06:27 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll 2016-09-15 20:10 - 2016-09-07 06:27 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2016-09-15 20:10 - 2016-09-07 06:27 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll 2016-09-15 20:10 - 2016-09-07 06:27 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll 2016-09-15 20:10 - 2016-09-07 06:27 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmsdk.dll 2016-09-15 20:10 - 2016-09-07 06:27 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll 2016-09-15 20:10 - 2016-09-07 06:27 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2016-09-15 20:10 - 2016-09-07 06:27 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll 2016-09-15 20:10 - 2016-09-07 06:26 - 01915392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll 2016-09-15 20:10 - 2016-09-07 06:26 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2016-09-15 20:10 - 2016-09-07 06:26 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll 2016-09-15 20:10 - 2016-09-07 06:26 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll 2016-09-15 20:10 - 2016-09-07 06:26 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2016-09-15 20:10 - 2016-09-07 06:26 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll 2016-09-15 20:10 - 2016-09-07 06:26 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll 2016-09-15 20:10 - 2016-09-07 06:26 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll 2016-09-15 20:10 - 2016-09-07 06:26 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll 2016-09-15 20:10 - 2016-09-07 06:26 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2016-09-15 20:10 - 2016-09-07 06:26 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys 2016-09-15 20:10 - 2016-09-07 06:25 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll 2016-09-15 20:10 - 2016-09-07 06:25 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2016-09-15 20:10 - 2016-09-07 06:25 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2016-09-15 20:10 - 2016-09-07 06:25 - 01401856 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2016-09-15 20:10 - 2016-09-07 06:25 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2016-09-15 20:10 - 2016-09-07 06:25 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll 2016-09-15 20:10 - 2016-09-07 06:25 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2016-09-15 20:10 - 2016-09-07 06:25 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll 2016-09-15 20:10 - 2016-09-07 06:25 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll 2016-09-15 20:10 - 2016-09-07 06:25 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2016-09-15 20:10 - 2016-09-07 06:25 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe 2016-09-15 20:10 - 2016-09-07 06:24 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll 2016-09-15 20:10 - 2016-09-07 06:24 - 01276928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll 2016-09-15 20:10 - 2016-09-07 06:24 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll 2016-09-15 20:10 - 2016-09-07 06:24 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2016-09-15 20:10 - 2016-09-07 06:24 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll 2016-09-15 20:10 - 2016-09-07 06:24 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2016-09-15 20:10 - 2016-09-07 06:24 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll 2016-09-15 20:10 - 2016-09-07 06:22 - 12585472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2016-09-15 20:10 - 2016-09-07 06:22 - 01987072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2016-09-15 20:10 - 2016-09-07 06:22 - 01552896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll 2016-09-15 20:10 - 2016-09-07 06:21 - 01183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll 2016-09-15 20:10 - 2016-09-07 06:21 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll 2016-09-15 20:10 - 2016-09-07 06:21 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2016-09-15 20:10 - 2016-09-07 06:20 - 01044992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll 2016-09-15 20:10 - 2016-09-07 06:20 - 00900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe 2016-09-15 20:10 - 2016-09-07 06:20 - 00742400 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL 2016-09-15 20:10 - 2016-09-07 06:20 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll 2016-09-15 20:10 - 2016-09-07 06:19 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe 2016-09-15 20:10 - 2016-09-07 06:19 - 05325824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2016-09-15 20:10 - 2016-09-07 06:19 - 04078592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll 2016-09-15 20:10 - 2016-09-07 06:19 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2016-09-15 20:10 - 2016-09-07 06:19 - 02102272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll 2016-09-15 20:10 - 2016-09-07 06:19 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll 2016-09-15 20:10 - 2016-09-07 06:19 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2016-09-15 20:10 - 2016-09-07 06:18 - 02973696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2016-09-15 20:10 - 2016-09-07 06:18 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll 2016-09-15 20:10 - 2016-09-07 06:18 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll 2016-09-15 20:10 - 2016-09-07 06:17 - 03459584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll 2016-09-15 20:10 - 2016-09-07 06:17 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2016-09-15 20:10 - 2016-09-07 06:16 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2016-09-15 20:10 - 2016-09-07 06:16 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2016-09-15 20:10 - 2016-09-07 06:16 - 01194496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll 2016-09-15 20:10 - 2016-09-07 06:16 - 01123328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll 2016-09-15 20:10 - 2016-09-07 06:16 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll 2016-09-15 20:10 - 2016-09-07 06:16 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe 2016-09-15 20:10 - 2016-09-07 06:16 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe 2016-09-15 20:10 - 2016-09-07 06:15 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll 2016-09-15 20:10 - 2016-09-07 06:15 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll 2016-09-15 20:10 - 2016-09-07 06:15 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll 2016-09-15 20:10 - 2016-09-07 06:15 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2016-09-15 20:10 - 2016-09-07 06:15 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2016-09-15 20:10 - 2016-09-07 06:15 - 00748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2016-09-15 20:10 - 2016-09-07 06:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll 2016-09-15 20:10 - 2016-09-07 06:15 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll 2016-09-15 20:10 - 2016-09-07 06:14 - 03483648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2016-09-15 20:10 - 2016-09-07 06:14 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll 2016-09-15 20:10 - 2016-09-07 06:14 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2016-09-15 20:10 - 2016-09-07 06:12 - 02632192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll 2016-09-15 20:10 - 2016-09-07 06:12 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll 2016-09-15 20:10 - 2016-09-07 06:12 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2016-09-15 20:10 - 2016-09-07 06:12 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll 2016-09-15 20:10 - 2016-09-07 06:10 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2016-09-15 20:10 - 2016-09-07 06:10 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll 2016-09-15 20:10 - 2016-09-07 06:10 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll 2016-09-15 20:09 - 2016-09-07 07:39 - 00354144 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll 2016-09-15 20:09 - 2016-09-07 07:39 - 00354144 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2016-09-15 20:09 - 2016-09-07 07:33 - 02885680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll 2016-09-15 20:09 - 2016-09-07 07:22 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2016-09-15 20:09 - 2016-09-07 07:19 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll 2016-09-15 20:09 - 2016-09-07 06:47 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2016-09-15 20:09 - 2016-09-07 06:46 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll 2016-09-15 20:09 - 2016-09-07 06:41 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll 2016-09-15 20:09 - 2016-09-07 06:41 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll 2016-09-15 20:09 - 2016-09-07 06:39 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll 2016-09-15 20:09 - 2016-09-07 06:38 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MTConfig.sys 2016-09-15 20:09 - 2016-09-07 06:37 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll 2016-09-15 20:09 - 2016-09-07 06:36 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwcfg.dll 2016-09-15 20:09 - 2016-09-07 06:35 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CheckNetIsolation.exe 2016-09-15 20:09 - 2016-09-07 06:34 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2016-09-15 20:09 - 2016-09-07 06:34 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll 2016-09-15 20:09 - 2016-09-07 06:33 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys 2016-09-15 20:09 - 2016-09-07 06:33 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll 2016-09-15 20:09 - 2016-09-07 06:32 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll 2016-09-15 20:09 - 2016-09-07 06:31 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\authfwcfg.dll 2016-09-15 20:09 - 2016-09-07 06:29 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll 2016-09-15 20:09 - 2016-09-07 06:28 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll 2016-09-15 20:09 - 2016-09-07 06:28 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2016-09-15 20:09 - 2016-09-07 06:28 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll 2016-09-15 20:09 - 2016-09-07 06:27 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2016-09-15 20:09 - 2016-09-07 06:27 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll 2016-09-15 20:09 - 2016-09-07 06:27 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll 2016-09-15 20:09 - 2016-09-07 06:27 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll 2016-09-15 20:09 - 2016-09-07 06:26 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll 2016-09-15 20:09 - 2016-09-07 06:26 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2016-09-15 20:09 - 2016-09-07 06:25 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2016-09-15 20:09 - 2016-09-07 06:25 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe 2016-09-15 20:09 - 2016-09-07 06:24 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll 2016-09-15 20:09 - 2016-09-07 06:22 - 00628224 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe 2016-09-15 20:09 - 2016-09-07 06:16 - 00925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2016-09-15 20:09 - 2016-09-07 06:16 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll 2016-09-15 20:09 - 2016-09-07 06:09 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys 2016-09-10 09:28 - 2016-09-10 09:28 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2016-09-09 15:02 - 2016-09-09 15:02 - 00000000 ____D C:\Users\Marie-Sophie\AppData\Local\NetworkTiles 2016-09-09 15:01 - 2016-09-09 15:01 - 00000000 ____D C:\Users\Marie-Sophie\AppData\Local\Comms 2016-09-07 22:05 - 2016-09-07 22:05 - 00106815 _____ C:\Users\Rainer-User\Downloads\Mitteilung_DE63_6009_0800_0103_9044_21_Nr_2_2016-07-02.pdf 2016-09-07 22:05 - 2016-09-07 22:05 - 00106815 _____ C:\Users\Rainer-User\Downloads\Mitteilung_DE19_6009_0800_0003_9044_21_Nr_13_2016-07-02.pdf 2016-09-07 22:05 - 2016-09-07 22:05 - 00104647 _____ C:\Users\Rainer-User\Downloads\Mitteilung_Kundenmitteilung_Nr_11_2016-07-27.pdf 2016-09-07 22:04 - 2016-09-07 22:04 - 00085807 _____ C:\Users\Rainer-User\Downloads\Kontoauszug_DE19_6009_0800_0003_9044_21_Nr_6_2016-06-30.pdf 2016-09-07 22:04 - 2016-09-07 22:04 - 00085539 _____ C:\Users\Rainer-User\Downloads\Kontoauszug_DE19_6009_0800_0003_9044_21_Nr_7_2016-07-31.pdf 2016-09-07 22:04 - 2016-09-07 22:04 - 00085377 _____ C:\Users\Rainer-User\Downloads\Kontoauszug_DE19_6009_0800_0003_9044_21_Nr_8_2016-08-31.pdf 2016-09-07 22:04 - 2016-09-07 22:04 - 00084217 _____ C:\Users\Rainer-User\Downloads\Kontoauszug_DE78_6009_0800_3003_9044_21_Nr_3_2016-06-30.pdf 2016-09-07 22:04 - 2016-09-07 22:04 - 00084100 _____ C:\Users\Rainer-User\Downloads\Kontoauszug_DE63_6009_0800_0103_9044_21_Nr_5_2016-06-30.pdf 2016-09-07 22:04 - 2016-09-07 22:04 - 00083728 _____ C:\Users\Rainer-User\Downloads\Kontoauszug_DE63_6009_0800_0103_9044_21_Nr_6_2016-07-31.pdf 2016-09-07 22:04 - 2016-09-07 22:04 - 00083727 _____ C:\Users\Rainer-User\Downloads\Kontoauszug_DE63_6009_0800_0103_9044_21_Nr_7_2016-08-31.pdf 2016-09-07 22:01 - 2016-09-07 22:01 - 00108351 _____ C:\Users\Rainer-User\Downloads\Mitteilung_DE39_6009_0800_0003_9044_49_Nr_18_2016-06-02.pdf 2016-09-07 22:01 - 2016-09-07 22:01 - 00108349 _____ C:\Users\Rainer-User\Downloads\Mitteilung_DE39_6009_0800_0003_9044_49_Nr_17_2016-06-02.pdf 2016-09-07 22:01 - 2016-09-07 22:01 - 00106094 _____ C:\Users\Rainer-User\Downloads\Mitteilung_DE39_6009_0800_0003_9044_49_Nr_19_2016-07-02.pdf 2016-09-07 22:01 - 2016-09-07 22:01 - 00104135 _____ C:\Users\Rainer-User\Downloads\Mitteilung_Kundenmitteilung_Nr_17_2016-07-27.pdf 2016-09-07 22:01 - 2016-09-07 22:01 - 00103986 _____ C:\Users\Rainer-User\Downloads\Mitteilung_DE45_6009_0800_3103_9044_49_Nr_1_2016-06-27.pdf 2016-09-07 22:01 - 2016-09-07 22:01 - 00098754 _____ C:\Users\Rainer-User\Downloads\Kontoauszug_DE39_6009_0800_0003_9044_49_Nr_7_2016-07-31.pdf 2016-09-07 22:01 - 2016-09-07 22:01 - 00093777 _____ C:\Users\Rainer-User\Downloads\Kontoauszug_DE39_6009_0800_0003_9044_49_Nr_8_2016-08-31.pdf 2016-09-07 22:01 - 2016-09-07 22:01 - 00085084 _____ C:\Users\Rainer-User\Downloads\Kontoauszug_7103904449_Nr_3_2016-08-31.pdf 2016-09-07 22:01 - 2016-09-07 22:01 - 00084276 _____ C:\Users\Rainer-User\Downloads\Kontoauszug_7103904449_Nr_2_2016-07-31.pdf 2016-09-07 21:23 - 2016-09-07 21:23 - 00347838 _____ C:\Users\Rainer-User\Downloads\Stresemann-Stiftung-PM-Diskussionspapier-Menschenrecht-Meinungsfreiheit2013-09-11.pdf 2016-09-05 22:48 - 2016-09-05 22:48 - 00000020 ___SH C:\Users\Romer\ntuser.ini 2016-09-05 22:46 - 2016-09-05 22:46 - 00014480 _____ C:\Users\Rainer-User\Downloads\EuroPlate.ttf 2016-09-05 18:17 - 2016-09-05 18:18 - 00000000 ____D C:\Users\Felix\AppData\Local\Comms 2016-09-05 18:04 - 2016-09-05 18:04 - 00000000 ____D C:\Users\Felix\AppData\Roaming\Skype 2016-09-05 18:02 - 2016-09-05 18:02 - 00000000 ____D C:\Users\Felix\AppData\Local\ActiveSync 2016-09-05 17:58 - 2016-09-05 17:58 - 00000020 ___SH C:\Users\Felix\ntuser.ini 2016-09-03 14:50 - 2016-09-03 14:50 - 00000000 ____D C:\Users\Marie-Sophie\AppData\Local\ActiveSync 2016-09-03 14:47 - 2016-09-03 14:47 - 00000020 ___SH C:\Users\Marie-Sophie\ntuser.ini 2016-09-02 00:14 - 2016-09-02 00:14 - 01028821 _____ C:\Users\Rainer-User\Downloads\Schoo_et_al_Freising_2013.pdf ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-09-23 21:56 - 2014-08-10 22:03 - 00016718 _____ C:\Users\Romer\Downloads\FRST.txt 2016-09-23 21:56 - 2013-11-11 00:10 - 00000000 ____D C:\FRST 2016-09-23 21:45 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-09-23 21:44 - 2015-01-20 23:10 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2016-09-23 00:03 - 2016-02-21 19:19 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2016-09-22 23:59 - 2016-07-27 14:24 - 00000000 ____D C:\Users\Rainer-User 2016-09-22 23:59 - 2015-03-12 20:17 - 1807393792 _____ C:\Users\Rainer-User\Rainer-User Outlook-Datendatei(1).pst 2016-09-22 23:20 - 2014-12-27 02:49 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2016-09-22 22:39 - 2016-07-27 15:16 - 00000000 ___DC C:\WINDOWS\Panther 2016-09-22 22:34 - 2016-07-16 20:02 - 00000000 ___HD C:\$WINDOWS.~BT 2016-09-22 21:35 - 2015-10-12 23:59 - 00000000 ____D C:\Users\Romer\AppData\Local\Packages 2016-09-22 21:33 - 2014-08-10 22:09 - 00033168 _____ C:\Users\Romer\Downloads\Addition.txt 2016-09-22 21:18 - 2015-10-13 00:07 - 00002396 _____ C:\Users\Romer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-09-22 21:18 - 2015-10-13 00:07 - 00000000 ___RD C:\Users\Romer\OneDrive 2016-09-22 21:14 - 2016-04-27 06:40 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-09-22 17:28 - 2015-10-30 07:13 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM 2016-09-22 14:06 - 2015-10-30 07:48 - 00000000 ___HD C:\Program Files\WindowsApps 2016-09-21 17:12 - 2015-10-22 16:51 - 00000000 ____D C:\Users\Felix\AppData\Local\Packages 2016-09-21 17:09 - 2015-10-22 16:58 - 00002425 _____ C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-09-21 17:09 - 2015-10-22 16:58 - 00000000 ___RD C:\Users\Felix\OneDrive 2016-09-20 23:42 - 2016-04-27 06:33 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-09-20 23:41 - 2015-10-30 07:13 - 01048576 ___SH C:\WINDOWS\system32\config\BBI 2016-09-20 21:02 - 2015-10-30 07:48 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-09-20 21:01 - 2014-12-26 13:42 - 00000000 ____D C:\Program Files\Microsoft Office 15 2016-09-19 23:04 - 2015-10-07 22:40 - 00000769 _____ C:\WINDOWS\wiso.ini 2016-09-19 22:43 - 2015-10-07 22:41 - 00000000 ____D C:\Users\Rainer-User\AppData\Local\Buhl 2016-09-19 22:41 - 2015-10-07 22:40 - 00000000 ____D C:\Users\Romer\AppData\Local\Buhl 2016-09-19 22:41 - 2015-10-07 22:36 - 00000000 ____D C:\ProgramData\Buhl Data Service GmbH 2016-09-19 22:37 - 2014-12-27 12:49 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2016-09-18 12:15 - 2015-10-30 07:47 - 00000000 ____D C:\WINDOWS\INF 2016-09-18 12:13 - 2016-01-01 22:42 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2016-09-17 18:25 - 2015-10-30 07:48 - 00000000 ___SD C:\WINDOWS\system32\F12 2016-09-17 18:25 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\PrintDialog 2016-09-17 18:25 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2016-09-17 18:25 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\DevicesFlow 2016-09-17 18:25 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\oobe 2016-09-17 18:25 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\migwiz 2016-09-17 18:25 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2016-09-17 18:25 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Defender 2016-09-17 18:25 - 2015-10-30 07:15 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2016-09-17 18:05 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\rescache 2016-09-17 17:51 - 2015-10-30 07:39 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-09-16 19:48 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\appraiser 2016-09-16 19:47 - 2014-12-21 23:06 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-09-16 19:43 - 2016-07-27 14:24 - 00000000 ____D C:\Users\Felix 2016-09-16 19:38 - 2014-12-21 23:06 - 141747376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-09-16 19:37 - 2016-01-01 22:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2016-09-14 21:38 - 2015-10-01 22:47 - 00000000 ____D C:\Users\Rainer-User\AppData\Local\Packages 2016-09-14 12:20 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\Macromed 2016-09-14 12:15 - 2015-10-01 22:32 - 00000000 ____D C:\Users\Conny\AppData\Local\Packages 2016-09-11 21:55 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\tracing 2016-09-09 16:44 - 2016-04-26 21:29 - 00360640 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-09-09 15:06 - 2016-07-27 14:23 - 02039076 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-09-09 15:06 - 2016-04-27 06:08 - 00871564 _____ C:\WINDOWS\system32\perfh007.dat 2016-09-09 15:06 - 2016-04-27 06:08 - 00189752 _____ C:\WINDOWS\system32\perfc007.dat 2016-09-09 15:01 - 2015-10-22 21:24 - 00002446 _____ C:\Users\Marie-Sophie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-09-09 15:01 - 2015-10-22 21:24 - 00000000 ___RD C:\Users\Marie-Sophie\OneDrive 2016-09-09 15:01 - 2015-10-22 21:19 - 00000000 ____D C:\Users\Marie-Sophie\AppData\Local\Packages 2016-09-07 08:10 - 2009-06-09 09:00 - 00400614 __RSH C:\bootmgr 2016-09-07 03:00 - 2015-10-30 07:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2016-09-07 03:00 - 2015-10-30 07:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2016-09-05 22:48 - 2016-07-27 14:24 - 00000000 ____D C:\Users\Romer 2016-09-03 14:47 - 2016-07-27 14:24 - 00000000 ____D C:\Users\Marie-Sophie 2016-08-29 21:17 - 2015-10-01 22:52 - 00002443 _____ C:\Users\Rainer-User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-08-29 21:17 - 2015-10-01 22:52 - 00000000 ___RD C:\Users\Rainer-User\OneDrive 2016-08-28 16:39 - 2016-07-27 14:25 - 00000000 ____D C:\Users\Conny ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2016-07-27 14:19 - 2016-07-27 14:19 - 0000000 ____H () C:\ProgramData\DP45977C.lfl ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-09-17 17:43 ==================== Ende vom FRST.txt ============================ |
| Themen zu PUP.Optional.CrossRider.Generic nicht richtig zu entfernen |
| bonjour, defender, desktop, entfernen, explorer, firefox, flash player, home, homepage, installation, mozilla, neustart, prozesse, realtek, registry, security, services.exe, siteadvisor, software, sparbuch, svchost.exe, system, webadvisor, windows, winlogon.exe, wiso |
Baum-Darstellung