| |
| |||||||
Log-Analyse und Auswertung: Win10: Eset findet Variante von Win32/systweak.L - LogsWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
25.09.2016, 17:50
| #3 |
 |  Win10: Eset findet Variante von Win32/systweak.L - LogsCode:
ATTFilter 2016-09-15 01:33 - 2016-09-07 06:20 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-09-15 01:33 - 2016-09-07 06:20 - 00513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetcfg.dll
2016-09-15 01:33 - 2016-09-07 06:20 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-09-15 01:33 - 2016-09-07 06:19 - 03589120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-09-15 01:33 - 2016-09-07 06:19 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2016-09-15 01:33 - 2016-09-07 06:19 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-09-15 01:33 - 2016-09-07 06:19 - 01997312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-09-15 01:33 - 2016-09-07 06:19 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2016-09-15 01:33 - 2016-09-07 06:19 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-09-15 01:33 - 2016-09-07 06:18 - 05503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-09-15 01:33 - 2016-09-07 06:17 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-09-15 01:33 - 2016-09-07 06:16 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-09-15 01:33 - 2016-09-07 06:16 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-09-15 01:33 - 2016-09-07 06:16 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-09-15 01:33 - 2016-09-07 06:15 - 02772480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-09-15 01:33 - 2016-09-07 06:15 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2016-09-15 01:33 - 2016-09-07 06:14 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-09-15 01:33 - 2016-09-07 06:14 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-09-15 01:33 - 2016-09-07 06:12 - 00899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-09-15 01:33 - 2016-09-07 06:12 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-09-15 01:33 - 2016-09-07 06:10 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-09-15 01:33 - 2016-09-07 06:10 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2016-09-15 01:33 - 2016-09-07 06:09 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2016-09-15 01:33 - 2016-09-07 06:09 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-09-15 01:33 - 2016-09-07 06:09 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msobjs.dll
2016-09-15 01:33 - 2016-09-07 06:09 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-09-15 01:32 - 2016-09-07 07:39 - 07468896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-09-15 01:32 - 2016-09-07 07:39 - 01997832 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-09-15 01:32 - 2016-09-07 07:39 - 01862000 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-09-15 01:32 - 2016-09-07 07:39 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-09-15 01:32 - 2016-09-07 07:39 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-09-15 01:32 - 2016-09-07 07:34 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-09-15 01:32 - 2016-09-07 07:26 - 01552104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-09-15 01:32 - 2016-09-07 07:26 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-09-15 01:32 - 2016-09-07 07:24 - 00652312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-09-15 01:32 - 2016-09-07 07:23 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-09-15 01:32 - 2016-09-07 07:23 - 01540216 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-09-15 01:32 - 2016-09-07 07:23 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-09-15 01:32 - 2016-09-07 07:23 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-09-15 01:32 - 2016-09-07 07:23 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-15 01:32 - 2016-09-07 07:23 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-09-15 01:32 - 2016-09-07 07:23 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-09-15 01:32 - 2016-09-07 07:22 - 01824264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-09-15 01:32 - 2016-09-07 07:22 - 00742192 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-09-15 01:32 - 2016-09-07 07:22 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-09-15 01:32 - 2016-09-07 07:22 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-09-15 01:32 - 2016-09-07 07:22 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-09-15 01:32 - 2016-09-07 07:22 - 00431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-09-15 01:32 - 2016-09-07 07:21 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-09-15 01:32 - 2016-09-07 07:21 - 05240952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-09-15 01:32 - 2016-09-07 07:20 - 00836752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2016-09-15 01:32 - 2016-09-07 07:19 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-09-15 01:32 - 2016-09-07 07:15 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-15 01:32 - 2016-09-07 07:14 - 00430944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-09-15 01:32 - 2016-09-07 07:14 - 00216416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-09-15 01:32 - 2016-09-07 07:13 - 02186856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-09-15 01:32 - 2016-09-07 07:12 - 28851224 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-09-15 01:32 - 2016-09-07 07:11 - 02187408 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-09-15 01:32 - 2016-09-07 07:11 - 00388888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-09-15 01:32 - 2016-09-07 07:11 - 00305296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-09-15 01:32 - 2016-09-07 07:08 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2016-09-15 01:32 - 2016-09-07 07:07 - 00253080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-09-15 01:32 - 2016-09-07 06:46 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-09-15 01:32 - 2016-09-07 06:46 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll
2016-09-15 01:32 - 2016-09-07 06:46 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2016-09-15 01:32 - 2016-09-07 06:44 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoipRT.dll
2016-09-15 01:32 - 2016-09-07 06:44 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll
2016-09-15 01:32 - 2016-09-07 06:44 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2016-09-15 01:32 - 2016-09-07 06:43 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2016-09-15 01:32 - 2016-09-07 06:42 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-09-15 01:32 - 2016-09-07 06:41 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-09-15 01:32 - 2016-09-07 06:41 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-09-15 01:32 - 2016-09-07 06:40 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-09-15 01:32 - 2016-09-07 06:40 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-09-15 01:32 - 2016-09-07 06:40 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-09-15 01:32 - 2016-09-07 06:40 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2016-09-15 01:32 - 2016-09-07 06:40 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2016-09-15 01:32 - 2016-09-07 06:40 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcshext.dll
2016-09-15 01:32 - 2016-09-07 06:40 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-09-15 01:32 - 2016-09-07 06:39 - 09324032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-09-15 01:32 - 2016-09-07 06:39 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2016-09-15 01:32 - 2016-09-07 06:39 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2016-09-15 01:32 - 2016-09-07 06:39 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FingerprintEnrollment.dll
2016-09-15 01:32 - 2016-09-07 06:38 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-09-15 01:32 - 2016-09-07 06:38 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2016-09-15 01:32 - 2016-09-07 06:38 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-09-15 01:32 - 2016-09-07 06:38 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2016-09-15 01:32 - 2016-09-07 06:38 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2016-09-15 01:32 - 2016-09-07 06:37 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsecsnp.dll
2016-09-15 01:32 - 2016-09-07 06:37 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-09-15 01:32 - 2016-09-07 06:37 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-09-15 01:32 - 2016-09-07 06:37 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvc.dll
2016-09-15 01:32 - 2016-09-07 06:37 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2016-09-15 01:32 - 2016-09-07 06:36 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-09-15 01:32 - 2016-09-07 06:36 - 00600064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-09-15 01:32 - 2016-09-07 06:36 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-09-15 01:32 - 2016-09-07 06:36 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-09-15 01:32 - 2016-09-07 06:36 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2016-09-15 01:32 - 2016-09-07 06:36 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-09-15 01:32 - 2016-09-07 06:36 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2016-09-15 01:32 - 2016-09-07 06:35 - 09324032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-09-15 01:32 - 2016-09-07 06:35 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2016-09-15 01:32 - 2016-09-07 06:35 - 00714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-09-15 01:32 - 2016-09-07 06:35 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-09-15 01:32 - 2016-09-07 06:35 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-09-15 01:32 - 2016-09-07 06:35 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-09-15 01:32 - 2016-09-07 06:35 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2016-09-15 01:32 - 2016-09-07 06:35 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-09-15 01:32 - 2016-09-07 06:35 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-09-15 01:32 - 2016-09-07 06:35 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2016-09-15 01:32 - 2016-09-07 06:35 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usbceip.dll
2016-09-15 01:32 - 2016-09-07 06:34 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-09-15 01:32 - 2016-09-07 06:34 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-09-15 01:32 - 2016-09-07 06:34 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\filemgmt.dll
2016-09-15 01:32 - 2016-09-07 06:34 - 00507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-09-15 01:32 - 2016-09-07 06:34 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-09-15 01:32 - 2016-09-07 06:34 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-09-15 01:32 - 2016-09-07 06:34 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-09-15 01:32 - 2016-09-07 06:34 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-09-15 01:32 - 2016-09-07 06:34 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2016-09-15 01:32 - 2016-09-07 06:34 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2016-09-15 01:32 - 2016-09-07 06:34 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-09-15 01:32 - 2016-09-07 06:33 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-09-15 01:32 - 2016-09-07 06:33 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-09-15 01:32 - 2016-09-07 06:33 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-09-15 01:32 - 2016-09-07 06:33 - 00602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2016-09-15 01:32 - 2016-09-07 06:33 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-09-15 01:32 - 2016-09-07 06:33 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2016-09-15 01:32 - 2016-09-07 06:33 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-09-15 01:32 - 2016-09-07 06:33 - 00276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-09-15 01:32 - 2016-09-07 06:33 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2016-09-15 01:32 - 2016-09-07 06:33 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-09-15 01:32 - 2016-09-07 06:33 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-09-15 01:32 - 2016-09-07 06:32 - 00892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-09-15 01:32 - 2016-09-07 06:32 - 00689664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-09-15 01:32 - 2016-09-07 06:32 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-09-15 01:32 - 2016-09-07 06:32 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-09-15 01:32 - 2016-09-07 06:32 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-09-15 01:32 - 2016-09-07 06:32 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-09-15 01:32 - 2016-09-07 06:32 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3ui.dll
2016-09-15 01:32 - 2016-09-07 06:32 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-09-15 01:32 - 2016-09-07 06:32 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-09-15 01:32 - 2016-09-07 06:31 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-09-15 01:32 - 2016-09-07 06:31 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-09-15 01:32 - 2016-09-07 06:31 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-09-15 01:32 - 2016-09-07 06:31 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-09-15 01:32 - 2016-09-07 06:31 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-09-15 01:32 - 2016-09-07 06:31 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-09-15 01:32 - 2016-09-07 06:31 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-09-15 01:32 - 2016-09-07 06:31 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-09-15 01:32 - 2016-09-07 06:31 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-09-15 01:32 - 2016-09-07 06:31 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-09-15 01:32 - 2016-09-07 06:31 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-09-15 01:32 - 2016-09-07 06:31 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-09-15 01:32 - 2016-09-07 06:30 - 14251520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-09-15 01:32 - 2016-09-07 06:30 - 02012672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2016-09-15 01:32 - 2016-09-07 06:30 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2016-09-15 01:32 - 2016-09-07 06:30 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-09-15 01:32 - 2016-09-07 06:30 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-09-15 01:32 - 2016-09-07 06:30 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-09-15 01:32 - 2016-09-07 06:30 - 01037824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2016-09-15 01:32 - 2016-09-07 06:30 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-09-15 01:32 - 2016-09-07 06:30 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-09-15 01:32 - 2016-09-07 06:30 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-09-15 01:32 - 2016-09-07 06:30 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-09-15 01:32 - 2016-09-07 06:30 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx.dll
2016-09-15 01:32 - 2016-09-07 06:30 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2016-09-15 01:32 - 2016-09-07 06:30 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-09-15 01:32 - 2016-09-07 06:30 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-09-15 01:32 - 2016-09-07 06:29 - 01487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2016-09-15 01:32 - 2016-09-07 06:29 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-09-15 01:32 - 2016-09-07 06:29 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-09-15 01:32 - 2016-09-07 06:29 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-09-15 01:32 - 2016-09-07 06:29 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroles.dll
2016-09-15 01:32 - 2016-09-07 06:29 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-09-15 01:32 - 2016-09-07 06:29 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2016-09-15 01:32 - 2016-09-07 06:29 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-09-15 01:32 - 2016-09-07 06:29 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2016-09-15 01:32 - 2016-09-07 06:29 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-09-15 01:32 - 2016-09-07 06:28 - 02731008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-09-15 01:32 - 2016-09-07 06:28 - 01671168 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-09-15 01:32 - 2016-09-07 06:28 - 01466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Pimstore.dll
2016-09-15 01:32 - 2016-09-07 06:28 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-09-15 01:32 - 2016-09-07 06:28 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-09-15 01:32 - 2016-09-07 06:28 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-09-15 01:32 - 2016-09-07 06:27 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-09-15 01:32 - 2016-09-07 06:27 - 03415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-09-15 01:32 - 2016-09-07 06:27 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-09-15 01:32 - 2016-09-07 06:27 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-09-15 01:32 - 2016-09-07 06:27 - 00961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-09-15 01:32 - 2016-09-07 06:27 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-09-15 01:32 - 2016-09-07 06:27 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-09-15 01:32 - 2016-09-07 06:27 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-09-15 01:32 - 2016-09-07 06:27 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-09-15 01:32 - 2016-09-07 06:27 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-09-15 01:32 - 2016-09-07 06:27 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-09-15 01:32 - 2016-09-07 06:27 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2016-09-15 01:32 - 2016-09-07 06:26 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-09-15 01:32 - 2016-09-07 06:25 - 02445312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-09-15 01:32 - 2016-09-07 06:25 - 01965568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2016-09-15 01:32 - 2016-09-07 06:25 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-09-15 01:32 - 2016-09-07 06:25 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-09-15 01:32 - 2016-09-07 06:25 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-09-15 01:32 - 2016-09-07 06:25 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-09-15 01:32 - 2016-09-07 06:25 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2016-09-15 01:32 - 2016-09-07 06:25 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-09-15 01:32 - 2016-09-07 06:24 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-09-15 01:32 - 2016-09-07 06:24 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-09-15 01:32 - 2016-09-07 06:24 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-09-15 01:32 - 2016-09-07 06:24 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-09-15 01:32 - 2016-09-07 06:23 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-09-15 01:32 - 2016-09-07 06:22 - 12585472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-09-15 01:32 - 2016-09-07 06:22 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2016-09-15 01:32 - 2016-09-07 06:22 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2016-09-15 01:32 - 2016-09-07 06:21 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-09-15 01:32 - 2016-09-07 06:21 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2016-09-15 01:32 - 2016-09-07 06:21 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-09-15 01:32 - 2016-09-07 06:20 - 06976000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-09-15 01:32 - 2016-09-07 06:20 - 06675968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-09-15 01:32 - 2016-09-07 06:20 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-15 01:32 - 2016-09-07 06:20 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-09-15 01:32 - 2016-09-07 06:20 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2016-09-15 01:32 - 2016-09-07 06:19 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-09-15 01:32 - 2016-09-07 06:19 - 04078592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-09-15 01:32 - 2016-09-07 06:19 - 02902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2016-09-15 01:32 - 2016-09-07 06:19 - 02610176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-15 01:32 - 2016-09-07 06:19 - 02563584 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-09-15 01:32 - 2016-09-07 06:19 - 01141248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2016-09-15 01:32 - 2016-09-07 06:19 - 00527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-09-15 01:32 - 2016-09-07 06:19 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2016-09-15 01:32 - 2016-09-07 06:17 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-09-15 01:32 - 2016-09-07 06:16 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-09-15 01:32 - 2016-09-07 06:16 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-09-15 01:32 - 2016-09-07 06:16 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-09-15 01:32 - 2016-09-07 06:15 - 01755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2016-09-15 01:32 - 2016-09-07 06:15 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-09-15 01:32 - 2016-09-07 06:14 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-09-15 01:32 - 2016-09-07 06:14 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-09-15 01:32 - 2016-09-07 06:14 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-09-15 01:32 - 2016-09-07 06:13 - 01390592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-09-15 01:32 - 2016-09-07 06:13 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-09-15 01:32 - 2016-09-07 06:13 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-09-15 01:32 - 2016-09-07 06:12 - 02632192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-09-15 01:32 - 2016-09-07 06:12 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-15 01:32 - 2016-09-07 06:11 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-09-15 01:32 - 2016-09-07 06:11 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2016-09-15 01:32 - 2016-09-07 06:11 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-09-15 01:32 - 2016-09-07 06:10 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2016-09-15 01:32 - 2016-09-07 06:10 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-09-15 01:32 - 2016-09-07 06:09 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2016-09-15 01:32 - 2016-09-07 06:09 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msobjs.dll
2016-09-15 01:32 - 2016-09-07 05:57 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-09-15 01:31 - 2016-09-07 06:38 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-09-15 01:31 - 2016-09-07 06:36 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2016-09-15 01:31 - 2016-09-07 06:35 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2016-09-15 01:31 - 2016-09-07 06:31 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppinst.dll
2016-09-15 01:31 - 2016-09-07 06:28 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2016-09-15 01:31 - 2016-09-07 06:19 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2016-09-13 11:35 - 2016-09-13 11:35 - 00142868 _____ C:\Users\Ingrid\Downloads\quittung.pdf
2016-09-11 16:38 - 2016-09-11 16:38 - 00174370 _____ C:\Users\Ingrid\Downloads\20160824BES0000695261F.pdf
2016-09-11 16:38 - 2016-09-11 16:38 - 00174226 _____ C:\Users\Ingrid\Downloads\20160831BES0000695295F.pdf
2016-09-10 09:44 - 2016-09-10 09:44 - 00000000 ____D C:\Users\Ingrid\Documents\wetransfer-fc049a
2016-09-10 09:42 - 2016-09-10 09:43 - 195871881 _____ C:\Users\Ingrid\Downloads\wetransfer-fc049a.zip
2016-09-05 05:32 - 2016-09-05 05:32 - 00056346 _____ C:\Users\Ingrid\Downloads\Wissenschaft_trifft_Jin_Shin_Jyutsu.pdf
2016-09-04 05:57 - 2016-09-04 05:57 - 00291913 _____ C:\Users\Ingrid\Downloads\JSJ_STRÖMGRUPPEN_BRD_8_8_16.pdf
2016-09-01 20:31 - 2016-09-01 20:31 - 00070328 _____ C:\Users\Ingrid\Downloads\RG150291959067.pdf
2016-09-01 20:29 - 2016-09-01 20:29 - 00151287 _____ C:\Users\Ingrid\Downloads\2016-1016.pdf
2016-09-01 06:32 - 2016-09-01 06:32 - 00000568 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-09-01 06:32 - 2016-09-01 06:32 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2016-08-29 20:13 - 2016-08-29 20:13 - 00102862 _____ C:\Users\Ingrid\Downloads\tagesqualitaeten_09_2016_Tabelle.pdf
2016-08-29 16:33 - 2016-08-29 16:34 - 01906586 _____ C:\Users\Ingrid\Downloads\JSJbrosch_2017.pdf
2016-08-29 09:05 - 2016-08-29 09:05 - 01645601 _____ C:\Users\Ingrid\Downloads\Antwortblatt.pdf
2016-08-27 12:28 - 2016-08-27 12:28 - 00003332 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
2016-08-26 23:12 - 2016-08-26 23:12 - 05651240 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 03320664 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 03319968 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 03126240 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 02739248 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 01991776 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 01804936 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 01613720 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 01530872 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 01403096 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 01381120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 01358064 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 01354800 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 01233072 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 01185184 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 01059680 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 01017432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00982248 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00979280 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00940640 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00889888 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00759200 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00742536 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00723232 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00704688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00693024 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00692512 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00632352 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00615160 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00588632 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00545816 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00527824 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00517464 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00513712 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00460440 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00459832 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00458016 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00453848 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00440736 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00399456 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00355496 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00342272 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00339128 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00333288 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00333280 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00283920 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00264968 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00264896 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00263944 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00242768 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00232704 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00225496 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00220136 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00203440 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00176480 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00168936 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00161952 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00144184 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00128504 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00120720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00100544 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00097976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00097912 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00094168 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00093144 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2016-08-26 23:12 - 2016-08-26 23:12 - 00085096 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2016-08-26 23:09 - 2016-08-26 23:09 - 72529432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2016-08-26 23:09 - 2016-08-26 23:09 - 07181616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2016-08-26 23:09 - 2016-08-26 23:09 - 07104888 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2016-08-26 23:09 - 2016-08-26 23:09 - 03208440 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-08-26 23:09 - 2016-08-26 23:09 - 02903800 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-08-26 23:09 - 2016-08-26 23:09 - 02119288 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2016-08-26 23:09 - 2016-08-26 23:09 - 02081792 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-08-26 23:09 - 2016-08-26 23:09 - 02058872 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-08-26 23:09 - 2016-08-26 23:09 - 00267560 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2016-08-26 23:09 - 2016-08-26 23:09 - 00131016 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-08-26 23:09 - 2016-08-26 23:09 - 00127288 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-08-26 23:09 - 2016-08-26 23:09 - 00114008 _____ C:\WINDOWS\system32\audioLibVc.dll
2016-08-26 07:15 - 2016-09-14 22:59 - 00000000 ____D C:\Users\Ingrid\AppData\Local\Amazon Drive
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-09-25 13:59 - 2014-09-06 00:35 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-25 13:57 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-25 13:53 - 2016-07-28 18:52 - 00000682 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3100962678-1329486772-3619113211-1001.job
2016-09-25 13:51 - 2015-06-10 08:53 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-09-25 13:50 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-25 13:42 - 2016-07-28 18:52 - 00000586 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3100962678-1329486772-3619113211-1001.job
2016-09-25 11:57 - 2016-07-17 01:55 - 00000000 ___HD C:\$WINDOWS.~BT
2016-09-25 11:04 - 2015-05-26 09:47 - 00000000 ____D C:\Users\Ingrid\AppData\Local\ESET
2016-09-25 09:38 - 2015-05-26 10:04 - 00004160 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1846100A-57E8-495E-B29D-240E0D818B01}
2016-09-24 13:57 - 2015-11-18 18:03 - 00000000 __SHD C:\Users\Ingrid\IntelGraphicsProfiles
2016-09-24 13:57 - 2015-11-18 17:29 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-09-24 13:57 - 2014-09-06 00:35 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-24 12:14 - 2015-05-26 11:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-24 07:53 - 2015-11-18 17:56 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-24 07:53 - 2015-11-18 17:21 - 00349576 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-09-24 07:51 - 2015-10-30 08:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2016-09-23 17:29 - 2015-12-19 17:53 - 00000000 ____D C:\WINDOWS\Minidump
2016-09-23 16:44 - 2015-10-30 09:24 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-09-23 16:44 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-09-23 16:35 - 2015-11-18 17:52 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-09-23 16:35 - 2015-10-30 20:35 - 00776766 _____ C:\WINDOWS\system32\perfh007.dat
2016-09-23 16:35 - 2015-10-30 20:35 - 00155544 _____ C:\WINDOWS\system32\perfc007.dat
2016-09-23 16:35 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-09-22 19:12 - 2015-05-26 12:59 - 00000000 ____D C:\Users\Ingrid\.gimp-2.8
2016-09-22 19:11 - 2016-01-25 21:22 - 00000000 ____D C:\Users\Ingrid\AppData\Local\gtk-2.0
2016-09-21 06:51 - 2016-05-03 11:14 - 00000000 ____D C:\Users\Ingrid\Documents\Mechthild Arendt
2016-09-20 17:19 - 2016-07-28 18:52 - 00003840 _____ C:\WINDOWS\System32\Tasks\G2MUploadTask-S-1-5-21-3100962678-1329486772-3619113211-1001
2016-09-20 17:19 - 2016-07-28 18:52 - 00003744 _____ C:\WINDOWS\System32\Tasks\G2MUpdateTask-S-1-5-21-3100962678-1329486772-3619113211-1001
2016-09-18 09:14 - 2015-05-26 09:05 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-09-18 03:35 - 2015-11-07 17:23 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-09-18 03:35 - 2015-11-07 17:23 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-09-18 03:32 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-09-18 03:32 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-09-18 03:32 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-09-18 03:32 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-09-18 03:32 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-09-18 03:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-09-18 03:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\setup
2016-09-18 03:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-09-18 03:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-09-18 03:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-09-18 03:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2016-09-18 03:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-09-18 03:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-09-18 03:32 - 2015-10-30 08:31 - 00000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2016-09-18 03:32 - 2015-10-30 08:31 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-09-18 03:32 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-09-18 03:32 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-09-17 14:02 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-09-17 10:01 - 2015-05-26 13:36 - 00002275 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-17 10:01 - 2015-05-26 13:36 - 00002263 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-16 07:24 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-09-16 07:24 - 2015-05-26 10:37 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-09-16 07:19 - 2015-10-30 20:44 - 00000000 ____D C:\WINDOWS\ShellNew
2016-09-16 07:19 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-09-16 07:18 - 2015-11-07 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-09-16 07:18 - 2015-05-29 20:14 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-09-16 07:14 - 2015-05-29 20:14 - 144199024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-09-16 07:13 - 2013-08-22 15:25 - 00000199 _____ C:\WINDOWS\win.ini
2016-09-14 19:59 - 2016-06-30 14:22 - 00000000 ____D C:\Users\Ingrid\AppData\Roaming\Amazon Cloud Drive
2016-09-14 19:33 - 2015-10-30 09:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-09-14 19:33 - 2015-10-30 09:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-09-14 19:33 - 2015-10-30 09:18 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2016-09-14 07:16 - 2016-01-09 15:32 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-09-14 06:51 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-09-14 06:51 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-09-13 07:26 - 2015-05-26 09:23 - 00000000 ____D C:\Users\Ingrid\AppData\Local\Packages
2016-09-08 08:27 - 2016-06-30 14:22 - 00001271 _____ C:\Users\Ingrid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Drive.lnk
2016-09-08 08:27 - 2016-06-30 14:22 - 00001259 _____ C:\Users\Ingrid\Desktop\Amazon Drive.lnk
2016-09-07 08:04 - 2015-11-18 17:23 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-09-07 03:00 - 2015-10-30 09:26 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-09-07 03:00 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-09-01 20:39 - 2016-05-16 08:21 - 00000000 ____D C:\Users\Ingrid\AppData\Roaming\vlc
2016-09-01 06:32 - 2015-11-18 17:29 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-08-30 09:33 - 2015-11-18 17:34 - 00000000 ____D C:\Users\Ingrid
2016-08-27 14:01 - 2015-11-18 17:27 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-08-27 12:28 - 2015-11-18 18:09 - 00002440 _____ C:\Users\Ingrid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-27 12:28 - 2015-05-26 09:28 - 00000000 ___RD C:\Users\Ingrid\OneDrive
2016-08-26 23:12 - 2015-01-27 16:14 - 02231696 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2016-08-26 23:09 - 2015-01-27 16:14 - 05217792 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-08-26 23:09 - 2015-01-27 16:14 - 00032392 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-05-26 09:15 - 2015-05-26 09:15 - 6420480 _____ () C:\Program Files (x86)\GUTE404.tmp
2016-08-16 08:57 - 2016-08-20 16:42 - 0001158 _____ () C:\Users\Ingrid\AppData\Roaming\ShiftN.ini
2016-09-22 19:11 - 2016-09-22 19:11 - 0120438 _____ () C:\Users\Ingrid\AppData\Local\recently-used.xbel
2015-11-18 17:27 - 2015-11-18 17:27 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\Ingrid\AppData\Local\Temp\AmazonDriveSetup.exe
C:\Users\Ingrid\AppData\Local\Temp\AmazonDriveSetupQ.exe
C:\Users\Ingrid\AppData\Local\Temp\jre-8u101-windows-au.exe
C:\Users\Ingrid\AppData\Local\Temp\jre-8u66-windows-au.exe
C:\Users\Ingrid\AppData\Local\Temp\jre-8u73-windows-au.exe
C:\Users\Ingrid\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\Ingrid\AppData\Local\Temp\jre-8u91-windows-au.exe
C:\Users\Ingrid\AppData\Local\Temp\vlc-2.2.4-win32.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-09-14 19:53
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 24-09-2016 02
durchgeführt von Ingrid (25-09-2016 14:13:42)
Gestartet von C:\Users\Ingrid\Desktop
Windows 10 Home Version 1511 (X64) (2015-11-18 16:03:05)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3100962678-1329486772-3619113211-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3100962678-1329486772-3619113211-503 - Limited - Disabled)
Gast (S-1-5-21-3100962678-1329486772-3619113211-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3100962678-1329486772-3619113211-1003 - Limited - Enabled)
Ingrid (S-1-5-21-3100962678-1329486772-3619113211-1001 - Administrator - Enabled) => C:\Users\Ingrid
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: ESET Smart Security 9.0.386.1 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 9.0.386.1 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personal Firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Amazon 1Button App (HKLM-x32\...\{4D875057-4353-4B8F-93E5-8C3DC7F34EA9}) (Version: 1.0.8 - Amazon) <==== ACHTUNG
Amazon Drive (HKU\S-1-5-21-3100962678-1329486772-3619113211-1001\...\Amazon Drive) (Version: 3.6.4.65 - Amazon.com, Inc.)
Amazon Kindle (HKU\S-1-5-21-3100962678-1329486772-3619113211-1001\...\Amazon Kindle) (Version: 1.16.0.44025 - Amazon)
Amazon Music (HKU\S-1-5-21-3100962678-1329486772-3619113211-1001\...\Amazon Amazon Music) (Version: 3.9.5.820 - Amazon Services LLC)
AMD Catalyst Install Manager (HKLM\...\{5E0D499D-0FE8-5EE9-1B12-76252D435572}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
astrovitalis (HKLM-x32\...\astrovitalis) (Version: - )
Bejeweled 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
Citrix Online Launcher (HKLM-x32\...\{09DA5EE2-7E46-4DC4-96F9-BFEE50D40659}) (Version: 1.0.408 - Citrix)
CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1321 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5110.05 - CyberLink Corp.)
Dell C1765 Color MFP (HKLM-x32\...\InstallShield_{B03A2793-A8FF-4242-B23D-88D2D5FAE56A}) (Version: 1.039.0 - Dell Inc.)
Dell C1765 Color MFP (x32 Version: 1.039.0 - Dell Inc.) Hidden
DENOISE projects standard (64-Bit) (HKLM\...\DENOISE_PROJECTS_1_2_FBC348A0_is1) (Version: 1.17 - Franzis Verlag GmbH)
DTS Sound (HKLM-x32\...\{793B70D2-41E9-46AB-9DDC-B34C99D07DB5}) (Version: 1.02.4100 - DTS, Inc.)
DxO Optics Pro 9 (HKLM\...\{B6815DAB-F4BB-4859-84B3-1E86E5F85DAC}) (Version: 9.5.2 - DxO Labs)
Enchanted Cavern 2 (x32 Version: 2.2.0.110 - WildTangent) Hidden
ESET Smart Security (HKLM\...\{A6F36CF6-73C0-454D-A95C-5613B146B3D4}) (Version: 9.0.386.1 - ESET, spol. s r.o.)
Evernote v. 5.4 (HKLM-x32\...\{59071464-DAEE-11E3-9080-00163E98E7D0}) (Version: 5.4.0.3698 - Evernote Corp.)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GoToMeeting 7.23.0.5573 (HKU\S-1-5-21-3100962678-1329486772-3619113211-1001\...\GoToMeeting) (Version: 7.23.0.5573 - CitrixOnline)
HDR Projects platin (64-Bit) (HKLM\...\HDR Projects platin_is1) (Version: 1.23 - Franzis Verlag GmbH)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4474 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{C1DD4078-51FD-42CC-91DA-AD4369D5F973}) (Version: 6.0.57.0 - Intel Corporation)
Intel(R) WiDi Software Asset Manager (x32 Version: 3.2.1184 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{182D4D1C-F9C5-4758-9B8C-157655C9F29B}) (Version: 17.1.1512.0771 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{6535d76a-59fb-4935-b2c5-cd61917c4a4b}) (Version: 17.16.0 - Intel Corporation)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
King Oddball (x32 Version: 3.0.2.48 - WildTangent) Hidden
Lidl-Fotos (HKLM-x32\...\Lidl-Fotos_is1) (Version: - )
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Mahjongg Artifacts (x32 Version: 2.2.0.110 - WildTangent) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50709.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Movavi Photo Editor 2 (HKLM-x32\...\Movavi Photo Editor 2) (Version: 2.1.0 - Movavi) <==== ACHTUNG
Mozilla Firefox 49.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 49.0.1 (x86 de)) (Version: 49.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.1.6109 - Mozilla)
My Kingdom for the Princess 3 (x32 Version: 2.2.0.110 - WildTangent) Hidden
NetObjects Fusion 2013 (HKLM-x32\...\{72813B06-5277-4758-8C0F-85B921D65BEB}) (Version: 13.0 - NetObjects)
NetObjects Fusion 2013 (x32 Version: 13.00.0000.5508 - NetObjects) Hidden
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.59 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29077 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7885 - Realtek Semiconductor Corp.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden
ShiftN 4.0 (HKLM-x32\...\ShiftN_is1) (Version: 4.0.0.1 - Marcus Hebel)
Skype™ 7.13 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.5.1333.g822e0de8 - Spotify AB)
Symbaloo (HKLM-x32\...\Symbaloo) (Version: 1.0.0 - Symbaloo Launcher by Toshiba Europe GmbH)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.16.6 - Synaptics Incorporated)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer)
The Journal 7 (HKLM-x32\...\The Journal 7_is1) (Version: 7.00 - DavidRM Software)
TOSHIBA Battery Check Utility (HKLM-x32\...\{5468E297-7EF8-4CB3-A091-F8714147793F}) (Version: 1.00.01.01 - Toshiba Corporation)
TOSHIBA Display Utility (HKLM\...\{0B39C39A-3ECE-4582-9C91-842D22819A24}) (Version: 2.0.1.0 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{72EFCFA8-3923-451D-AF52-7CE9D87BC2A1}) (Version: 3.0.0.6406 - Toshiba Corporation)
TOSHIBA Function Key (HKLM\...\{1844CFE2-EBA3-490A-8A5E-9BFC646342FD}) (Version: 1.1.5.6402 - Toshiba Corporation)
TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.19 - TOSHIBA)
TOSHIBA Password Utility (HKLM-x32\...\{B02384B3-8C5B-4927-A190-E767C8FCFD25}) (Version: v3.0.0.1 - Toshiba Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{B507386D-1F61-4E55-B05B-F56ACB0086B3}) (Version: 4.02.00.6400 - Toshiba Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.2.00.56006005 - Toshiba Corporation)
TOSHIBA Service Station (HKLM\...\{E3FCDCBE-0A13-4F73-95C1-000A51CF1C8C}) (Version: 2.6.16.0 - Toshiba Corporation)
TOSHIBA Start Screen Option (HKLM\...\{06B71035-F19F-4F76-9875-FFCCD4FC3F83}) (Version: 1.00.01.6402 - Toshiba Corporation)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0033 - Toshiba Corporation)
TOSHIBA System Settings (HKLM-x32\...\{4D57ED72-6B01-40BD-9CA9-012B8FC09CEB}) (Version: 2.0.1.32003 - Toshiba Corporation)
Toshiba TEMPRO (HKLM-x32\...\{E4C7D9D7-19D4-4623-AF0C-EA313C466411}) (Version: 5.0.0 - Toshiba Europe GmbH)
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{5D2260D6-DB16-41DC-915B-A39BF4F66362}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3118281) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E34F92E8-F338-4749-BE58-E77D605FE648}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3118281) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E34F92E8-F338-4749-BE58-E77D605FE648}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3118281) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{E34F92E8-F338-4749-BE58-E77D605FE648}) (Version: - Microsoft)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Virtual Villagers 5 - New Believers (x32 Version: 3.0.2.32 - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (Toshiba Games) (x32 Version: 4.0.11.9 - WildTangent) Hidden
WinZip 20.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240EF}) (Version: 20.0.11659 - WinZip Computing, S.L. )
XnView 2.35 (HKLM-x32\...\XnView_is1) (Version: 2.35 - Gougelet Pierre-e)
Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3100962678-1329486772-3619113211-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Ingrid\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3100962678-1329486772-3619113211-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Ingrid\AppData\Local\Citrix\GoToMeeting\5174\G2MOutlookAddin64.dll (Citrix Online, a division of Citrix Systems, Inc.)
CustomCLSID: HKU\S-1-5-21-3100962678-1329486772-3619113211-1001_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.dll ()
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {07F05313-EF0F-4642-965B-146081EC8741} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {09CCB359-0CA3-4814-B5E5-39C5626D0DAB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-14] (Adobe Systems Incorporated)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0C93DEF9-CC0E-4B98-83CE-BFF1A72A3899} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {0F1D072E-7C00-42FD-9FCC-D3A68CDE5ED5} - System32\Tasks\Resolution+ Setting Task => C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe [2015-06-12] (TOSHIBA Corporation)
Task: {17DD8702-7BEA-4E34-81AE-7A3F3D5B468F} - System32\Tasks\G2MUploadTask-S-1-5-21-3100962678-1329486772-3619113211-1001 => C:\Users\Ingrid\AppData\Local\Citrix\GoToMeeting\5573\g2mupload.exe [2016-09-20] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {1DF32515-3473-472A-801A-6CC5C50924A8} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {246D4F66-D5BB-4238-81DC-418C56B8BE74} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {24FEF3C2-E16E-428A-BF2B-E3505C5D382A} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-09-17] (Intel Corporation)
Task: {32281B75-3A4D-4B36-BA3C-21B139896D4D} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-10-29] (Synaptics Incorporated)
Task: {530E6F2E-0FE2-4E83-9D14-48A5C1CA4CBD} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {5CF3899A-5B83-485F-BE56-C90DEEE375D3} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {5D887CE1-1651-4B99-8B79-CA7CD707F38E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {6FFE74A4-CB9A-4D3B-AF28-CA99FE66DFC4} - System32\Tasks\G2MUpdateTask-S-1-5-21-3100962678-1329486772-3619113211-1001 => C:\Users\Ingrid\AppData\Local\Citrix\GoToMeeting\5573\g2mupdate.exe [2016-09-20] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {7072FAC1-2B2E-4915-B238-32300D46195D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {76E3FB08-0E01-4424-B378-ED1C0B44198F} - System32\Tasks\dts_apo_service_task => C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_task.exe [2015-05-27] ()
Task: {86856703-9B6B-4398-A7FB-C6AC5A63F667} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {868957BD-1803-4366-BB4A-741A1CB9D4AC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {87CCFBC9-2E66-4120-86CF-26770F944D28} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Ingrid\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-27] (Microsoft Corporation)
Task: {A93548C9-706A-444F-8C68-C92B26C46E15} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {A9F6B810-FFBE-4189-9687-AB21637963CE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-08] (Adobe Systems Incorporated)
Task: {B17E7A48-A719-43DA-9F77-DC1F31B3A773} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {C03FC46D-37D1-48A4-AAD7-4398D3F6CC4E} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2014-04-03] (TOSHIBA Corporation)
Task: {C0A270AA-FA7E-49C9-98D5-332AB9206684} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {C8E1C23F-895B-4DCB-AA17-3600075BC941} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-09-17] (Intel Corporation)
Task: {CC3FBAFB-2D5D-4E62-B29D-DE56BCEF9715} - System32\Tasks\WRU => C:\Program Files\Intel Corporation\Intel WiDi\WRU.exe [2015-12-04] ()
Task: {D76E300A-23EF-4290-996E-1140CB7D153E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-09-16] (Microsoft Corporation)
Task: {D8157BB6-E3A9-43D9-90CD-B3E77135461C} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2015-11-17] (Toshiba Europe GmbH)
Task: {DB5479EE-9A51-4217-B2B8-98AFDBD923EE} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2015-06-05] (Intel Corporation)
Task: {EB81167F-AB9D-41E5-A926-80AEA2342911} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {F52EE76E-A959-466A-A28D-2CBB71092DDF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {F98F229B-BB03-48DD-B528-51FA155619CD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {FE190586-E495-4A02-A3E5-D62CAB65D871} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3100962678-1329486772-3619113211-1001.job => C:\Users\Ingrid\AppData\Local\Citrix\GoToMeeting\5573\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3100962678-1329486772-3619113211-1001.job => C:\Users\Ingrid\AppData\Local\Citrix\GoToMeeting\5573\g2mupload.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Code:
ATTFilter ==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-11-18 17:22 - 2012-06-20 15:15 - 00032768 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\dltfm1zPP.dll
2013-02-06 17:40 - 2013-02-06 17:40 - 00244712 _____ () C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1db.exe
2015-05-26 09:54 - 2012-08-16 20:28 - 00049664 _____ () C:\WINDOWS\system32\dltsm1zwia.dll
2015-05-27 13:46 - 2015-05-27 13:46 - 00019960 _____ () C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-09-15 01:35 - 2016-09-07 07:39 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-07-18 01:35 - 2016-08-19 01:38 - 00410600 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-09-15 01:35 - 2016-09-07 07:39 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-08-27 12:27 - 2016-08-27 12:27 - 01864384 _____ () C:\Users\Ingrid\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2016-09-15 01:32 - 2016-09-07 06:15 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-09-15 01:32 - 2016-09-07 06:10 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-15 01:32 - 2016-09-07 06:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-09-15 01:32 - 2016-09-07 06:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2012-07-19 04:38 - 2012-07-19 04:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll
2015-12-04 16:54 - 2015-12-04 16:54 - 00093184 _____ () C:\Program Files\Intel Corporation\Intel WiDi\WRU.exe
2016-08-08 10:45 - 2016-08-08 10:45 - 00497664 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Foundation\0c168de19f2576f13020da2bdb2a6d56\Windows.Foundation.ni.dll
2015-05-30 09:43 - 2015-05-07 21:12 - 05886784 _____ () C:\Users\Ingrid\AppData\Local\Amazon Music\Amazon Music Helper.exe
2013-02-01 16:08 - 2013-02-01 16:08 - 12875264 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\dlthm1zRC.DLL
2016-04-19 08:10 - 2016-04-19 08:11 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-12-18 15:24 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-14 12:30 - 2016-07-01 05:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-08-16 02:57 - 2016-08-16 02:58 - 00017408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-08-16 02:57 - 2016-08-16 02:58 - 13475840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-03 06:59 - 2016-06-03 06:59 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-03-04 08:45 - 2016-03-04 08:45 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2015-01-27 16:07 - 2013-12-10 01:26 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-08-27 12:27 - 2016-08-27 12:27 - 01383616 _____ () C:\Users\Ingrid\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll
2016-08-27 12:27 - 2016-08-27 12:27 - 00118976 _____ () C:\Users\Ingrid\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncViews.dll
2016-04-19 08:10 - 2016-04-19 08:11 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 08:10 - 2016-04-19 08:11 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3100962678-1329486772-3619113211-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ingrid\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{B34A2E27-0759-45D8-B089-8421F2301A6A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{18476E78-69BF-441E-A97D-63EB832777AE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C572570E-E942-4F5B-AC0B-3BC2EAE3AD07}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
FirewallRules: [{A81F245D-B172-4C15-97ED-BC5A96DBF8CB}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{C434DAA3-E554-48E9-828F-AEE9EAC5CAED}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0DD7D61F-4717-4F3F-8BC6-CBB1B14A4F12}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E85F039C-BE09-483B-9368-2128B08E05D7}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{700DC545-C7F7-4448-AE06-492D37347316}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{C0E120BF-8193-482B-AE01-6AE59C802240}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{87599015-F145-4900-92AD-C4215BACB2AB}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{1F37004E-F1FD-444A-87C5-ADD960809CD9}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{35A6D478-438B-4E4E-A092-B31005FCAA45}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{0EDB371D-0D4D-4D82-AF2F-40224367792C}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{EDAA55AE-8E01-466D-B584-AF87449ECDC1}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{343A06C0-1801-4F66-B1B6-F6112CF0C85A}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{B29FA7D3-AF8C-47BA-A779-4FDC466E6178}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiAppOld.exe
FirewallRules: [{9689BD5B-3272-4A12-BD4B-25E2E2968DF6}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\Next\WirelessDisplay.exe
FirewallRules: [{1966F8A3-5189-4732-AAB7-0676895AEDB0}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\SmartAgentTest.exe
FirewallRules: [{3E64F018-A350-4B14-BD73-62F4D0AC0B1B}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{E5D36735-AE1C-4979-877C-003D56DEBE4B}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{E4CE22E0-D505-4AEA-AA31-F842AC6BB9C9}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{25293821-86C8-44BC-BF05-3B1B9D6E8E6A}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{717EE97E-A23C-4D18-807B-CEB877BD8365}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{FF09A2F5-263C-4A49-8AE2-97BB31F43770}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{3698C200-DEBD-497E-B68B-402C7AE9FA95}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{7A728D30-91F1-49D4-A197-086A3A5F7F82}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{778B3BD6-6163-4C17-ACAC-6846FD4AC15A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Wiederherstellungspunkte =========================
01-09-2016 06:26:27 Windows Update
08-09-2016 08:09:16 Geplanter Prüfpunkt
14-09-2016 19:53:44 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/25/2016 02:05:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ESETOnlineScanner_DEU.exe, Version: 2.0.12.0, Zeitstempel: 0x57ac3e02
Name des fehlerhaften Moduls: ESETOnlineScanner_DEU.exe, Version: 2.0.12.0, Zeitstempel: 0x57ac3e02
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000361d1
ID des fehlerhaften Prozesses: 0x20ec
Startzeit der fehlerhaften Anwendung: 0x01d2170bc7d13471
Pfad der fehlerhaften Anwendung: C:\Users\Ingrid\Desktop\ESETOnlineScanner_DEU.exe
Pfad des fehlerhaften Moduls: C:\Users\Ingrid\Desktop\ESETOnlineScanner_DEU.exe
Berichtskennung: 7e315c7c-f7d8-4f13-9c3f-2206102e0c9f
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (09/25/2016 12:43:47 PM) (Source: SideBySide) (EventID: 9) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\WinZip\adxloader.dll.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files\WinZip\adxloader.dll.Manifest" in Zeile 2.
Das Stammelement der Manifestdatei muss assembliert sein.
Error: (09/25/2016 10:28:06 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\WinZip\adxloader.dll.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files\WinZip\adxloader.dll.Manifest" in Zeile 2.
Das Stammelement der Manifestdatei muss assembliert sein.
Error: (09/24/2016 02:00:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: TPCHSrv.exe, Version: 1.0.0.31, Zeitstempel: 0x54729b5e
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10586.306, Zeitstempel: 0x571af2eb
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000ee6fc
ID des fehlerhaften Prozesses: 0x8b4
Startzeit der fehlerhaften Anwendung: 0x01d2165b4a7d5e53
Pfad der fehlerhaften Anwendung: C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: fdb36a3c-db44-4553-9a7d-bde26f1c919a
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (09/24/2016 10:15:49 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SUDUNONA)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (09/24/2016 09:02:40 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SUDUNONA)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (09/24/2016 07:59:05 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: TPCHSrv.exe, Version: 1.0.0.31, Zeitstempel: 0x54729b5e
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10586.306, Zeitstempel: 0x571af2eb
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000ee6fc
ID des fehlerhaften Prozesses: 0x1974
Startzeit der fehlerhaften Anwendung: 0x01d21628bbf0f20b
Pfad der fehlerhaften Anwendung: C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: abf7e2fd-3b0c-4af4-8a84-a2806bfe6e66
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (09/23/2016 04:58:46 PM) (Source: SideBySide) (EventID: 9) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\WinZip\adxloader.dll.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files\WinZip\adxloader.dll.Manifest" in Zeile 2.
Das Stammelement der Manifestdatei muss assembliert sein.
Error: (09/23/2016 04:36:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: TPCHSrv.exe, Version: 1.0.0.31, Zeitstempel: 0x54729b5e
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10586.306, Zeitstempel: 0x571af2eb
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000ee6fc
ID des fehlerhaften Prozesses: 0x2fec
Startzeit der fehlerhaften Anwendung: 0x01d215a7ce3aceb6
Pfad der fehlerhaften Anwendung: C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: 37e0a961-4a74-4869-8733-7a0a24fc2679
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (09/23/2016 04:33:33 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SUDUNONA)
Description: Bei der Aktivierung der App „Microsoft.Getstarted_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Systemfehler:
=============
Error: (09/25/2016 02:16:48 PM) (Source: DCOM) (EventID: 10016) (User: SUDUNONA)
Description: Durch die Berechtigungseinstellungen für "Computerstandard" wird dem Benutzer "Sudunona\Ingrid" (SID: S-1-5-21-3100962678-1329486772-3619113211-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
und der APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
im Anwendungscontainer "Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy" (SID: S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (09/25/2016 02:16:48 PM) (Source: DCOM) (EventID: 10016) (User: SUDUNONA)
Description: Durch die Berechtigungseinstellungen für "Computerstandard" wird dem Benutzer "Sudunona\Ingrid" (SID: S-1-5-21-3100962678-1329486772-3619113211-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
und der APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
im Anwendungscontainer "Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy" (SID: S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (09/25/2016 02:07:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (09/25/2016 02:07:44 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Ingrid\AppData\Local\Temp\ehdrv.sys
Error: (09/25/2016 02:07:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (09/25/2016 02:07:43 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Ingrid\AppData\Local\Temp\ehdrv.sys
Error: (09/25/2016 02:07:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (09/25/2016 02:07:43 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Ingrid\AppData\Local\Temp\ehdrv.sys
Error: (09/25/2016 02:07:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (09/25/2016 02:07:43 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Ingrid\AppData\Local\Temp\ehdrv.sys
CodeIntegrity:
===================================
Date: 2016-09-18 16:43:32.012
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-09-18 03:38:15.314
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-09-16 10:20:53.294
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-09-02 06:07:06.179
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-08-10 15:48:55.120
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-19 16:21:22.526
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-15 03:36:45.410
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-14 17:29:25.635
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-28 20:36:09.575
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-24 00:37:11.026
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-4720HQ CPU @ 2.60GHz
Prozentuale Nutzung des RAM: 28%
Installierter physikalischer RAM: 16296.09 MB
Verfügbarer physikalischer RAM: 11617.73 MB
Summe virtueller Speicher: 18728.09 MB
Verfügbarer virtueller Speicher: 13811.37 MB
==================== Laufwerke ================================
Drive c: (TI31379300A) (Fixed) (Total:917.82 GB) (Free:455.17 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
| Themen zu Win10: Eset findet Variante von Win32/systweak.L - Logs |
| appdata, beschädigt, code, einstellungen, entdeck, eset, forum, gelöscht, gen, keine updates, langsamer, laufwerke, log, lösung, malware, malwarebytes, neu, ordner, pcs, scan, suche, temp, uhrzeit, updates, win |
Baum-Darstellung