| |
| |||||||
Log-Analyse und Auswertung: Windows 10: TrojanDownloader: Win32/Esaprof!rfnWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
09.01.2017, 00:46
| #16 |
 |  Windows 10: TrojanDownloader: Win32/Esaprof!rfnCode:
ATTFilter 2016-12-18 01:34 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2016-12-18 01:34 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2016-12-18 01:34 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2016-12-18 01:34 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2016-12-18 01:34 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2016-12-18 01:34 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-12-18 01:34 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2016-12-18 01:34 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2016-12-18 01:34 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2016-12-18 01:34 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2016-12-18 01:34 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2016-12-18 01:34 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2016-12-18 01:34 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2016-12-18 01:34 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2016-12-18 01:34 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2016-12-18 01:34 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2016-12-18 01:34 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2016-12-18 01:34 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2016-12-18 01:34 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2016-12-18 01:34 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2016-12-18 01:34 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2016-12-18 01:34 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2016-12-18 01:34 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2016-12-18 01:34 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2016-12-18 01:34 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2016-12-18 01:34 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2016-12-18 01:34 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2016-12-18 01:34 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2016-12-18 01:34 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2016-12-18 01:34 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2016-12-18 01:34 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2016-12-18 01:34 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-12-18 01:34 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2016-12-18 01:34 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-12-18 01:34 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2016-12-18 01:34 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-12-18 01:34 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2016-12-18 01:34 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2016-12-18 01:34 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2016-12-18 01:34 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2016-12-18 01:34 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2016-12-18 01:34 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2016-12-18 01:34 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2016-12-18 01:34 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2016-12-18 01:34 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2016-12-18 01:34 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2016-12-18 01:34 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2016-12-18 01:34 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2016-12-18 01:34 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2016-12-18 01:34 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2016-12-18 01:34 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2016-12-18 01:34 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2016-12-18 01:34 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2016-12-18 01:34 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2016-12-18 01:34 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2016-12-18 01:34 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2016-12-18 01:34 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2016-12-18 01:34 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2016-12-18 01:34 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2016-12-18 01:34 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2016-12-18 01:34 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2016-12-18 01:34 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2016-12-18 01:34 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2016-12-18 01:34 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2016-12-18 01:34 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2016-12-18 01:34 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2016-12-18 01:34 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2016-12-18 01:34 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2016-12-18 01:34 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2016-12-18 01:34 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2016-12-18 01:34 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2016-12-18 01:34 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2016-12-18 01:34 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2016-12-18 01:34 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2016-12-18 01:34 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2016-12-18 01:34 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2016-12-18 01:34 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2016-12-18 01:34 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2016-12-18 01:34 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2016-12-18 01:34 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2016-12-18 01:34 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2016-12-18 01:34 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2016-12-18 01:34 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2016-12-18 01:34 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2016-12-18 01:34 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2016-12-18 01:34 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2016-12-18 01:34 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2016-12-18 01:34 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2016-12-18 01:34 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2016-12-18 01:34 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2016-12-18 01:34 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-12-18 01:34 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2016-12-18 01:34 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2016-12-18 01:34 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2016-12-18 01:34 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2016-12-18 01:34 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2016-12-18 01:34 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2016-12-18 01:34 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2016-12-18 01:34 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2016-12-18 01:34 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2016-12-18 01:34 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2016-12-18 01:34 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2016-12-18 01:34 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2016-12-18 01:34 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2016-12-18 01:33 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2016-12-18 01:33 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2016-12-18 01:33 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2016-12-18 01:33 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2016-12-18 01:33 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2016-12-18 01:33 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2016-12-18 01:33 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2016-12-18 01:33 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2016-12-18 01:33 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2016-12-18 01:33 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2016-12-18 01:33 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2016-12-18 01:33 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2016-12-18 01:33 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2016-12-18 01:33 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2016-12-18 01:33 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-12-18 01:33 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-12-18 01:33 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-12-18 01:33 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2016-12-18 01:33 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-12-18 01:33 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2016-12-18 01:33 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2016-12-18 01:33 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2016-12-18 01:33 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2016-12-18 01:33 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2016-12-18 01:33 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-12-18 01:33 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2016-12-18 01:33 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2016-12-18 01:33 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2016-12-18 01:33 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2016-12-18 01:33 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2016-12-18 01:33 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2016-12-18 01:33 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2016-12-18 01:33 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2016-12-18 01:33 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2016-12-18 01:33 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2016-12-18 01:33 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2016-12-18 01:31 - 2016-12-18 02:03 - 00524288 ___SH C:\Users\alex-\ntuser.dat{50cea8d2-c4b9-11e6-b0cd-448a5b5f2eb2}.TMContainer00000000000000000002.regtrans-ms
2016-12-18 01:31 - 2016-12-18 02:03 - 00524288 ___SH C:\Users\alex-\ntuser.dat{50cea8d2-c4b9-11e6-b0cd-448a5b5f2eb2}.TMContainer00000000000000000001.regtrans-ms
2016-12-18 01:31 - 2016-12-18 02:03 - 00065536 ___SH C:\Users\alex-\ntuser.dat{50cea8d2-c4b9-11e6-b0cd-448a5b5f2eb2}.TM.blf
2016-12-18 01:28 - 2016-12-19 12:07 - 00524288 ___SH C:\Windows\system32\config\drivers{eb7ab12b-c4b8-11e6-b0cc-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
2016-12-18 01:28 - 2016-12-19 12:07 - 00065536 ___SH C:\Windows\system32\config\drivers{eb7ab12b-c4b8-11e6-b0cc-806e6f6e6963}.TM.blf
2016-12-18 01:28 - 2016-12-18 01:28 - 00524288 ___SH C:\Windows\system32\config\drivers{eb7ab12b-c4b8-11e6-b0cc-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
2016-12-18 01:25 - 2016-12-18 01:25 - 00000000 _____ C:\Recovery.txt
2016-12-18 00:35 - 2016-12-18 00:35 - 00262144 _____ C:\Users\alex-\Desktop\0.rom
2016-12-18 00:28 - 2016-12-18 01:27 - 00000000 ____D C:\atiflash
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\VVVVVV
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Unwritten Tales - Critter Chronicles
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\UnrealTournament
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\TS4 Mod Manager
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Telltale Games
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Square Enix
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Skyrim
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\SimCity
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Respawn
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\PVZ Garden Warfare
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Overwatch
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Need For Speed
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\My Games
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Might & Magic Heroes VI
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Heroes of the Storm
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Guild Wars 2
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Giana Sisters - Rise of the Owlverlord
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Bout2
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Book of Unwritten Tales
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\BNE
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\Bioshock2
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\ArcaniA - Gothic 4
2016-12-17 21:48 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\Documents\ArcaniA - AddOn
2016-12-17 21:47 - 2016-12-17 21:47 - 00000000 ____D C:\Users\alex-\Documents\Electronic Arts
2016-12-17 21:46 - 2016-12-17 21:48 - 00000000 ____D C:\Users\alex-\AppData\Roaming\.minecraft
2016-12-17 21:46 - 2016-12-17 21:46 - 00000000 ____D C:\Users\alex-\AppData\Roaming\WB Games
2016-12-17 21:46 - 2016-12-17 21:46 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Riot Games
2016-12-17 21:46 - 2016-12-17 21:46 - 00000000 ____D C:\Users\alex-\AppData\Roaming\OBS
2016-12-17 21:46 - 2016-12-17 21:46 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Guild Wars 2
2016-12-17 21:46 - 2016-12-17 21:46 - 00000000 ____D C:\Users\alex-\AppData\Roaming\CorsixTH
2016-12-17 21:46 - 2016-12-17 21:46 - 00000000 ____D C:\Users\alex-\AppData\Roaming\com.shirogames.evoland2
2016-12-17 21:46 - 2016-12-17 21:46 - 00000000 ____D C:\Users\alex-\AppData\Roaming\com.shirogames.evoland
2016-12-17 21:45 - 2016-12-17 21:45 - 00000000 ____D C:\Users\alex-\AppData\Local\SquareEnix
2016-12-17 21:45 - 2016-12-17 21:45 - 00000000 ____D C:\Users\alex-\AppData\Local\Skyrim
2016-12-17 21:45 - 2016-12-17 21:45 - 00000000 ____D C:\Users\alex-\AppData\Local\Risen3
2016-12-17 21:45 - 2016-12-17 21:45 - 00000000 ____D C:\Users\alex-\AppData\Local\My Games
2016-12-17 21:45 - 2016-12-17 21:45 - 00000000 ____D C:\Users\alex-\AppData\Local\GeometryDash
2016-12-17 21:45 - 2016-12-17 21:45 - 00000000 ____D C:\Users\alex-\AppData\Local\FF4
2016-12-17 21:45 - 2016-12-17 21:45 - 00000000 ____D C:\Users\alex-\AppData\Local\Daedalic Entertainment GmbH
2016-12-17 21:45 - 2016-12-17 21:45 - 00000000 ____D C:\Users\alex-\AppData\Local\Daedalic Entertainment
2016-12-17 21:45 - 2016-10-28 21:38 - 00000000 ____D C:\Users\alex-\AppData\Local\Skyrim Special Edition
2016-12-17 21:40 - 2016-12-17 21:40 - 00000000 ____D C:\Users\alex-\.cisco
2016-12-17 21:40 - 2016-12-17 21:40 - 00000000 ____D C:\ProgramData\ROCCAT
2016-12-17 21:35 - 2017-01-05 23:29 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Origin
2016-12-17 21:35 - 2016-12-17 21:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-12-17 21:30 - 2016-12-17 21:30 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Hewlett-Packard
2016-12-17 21:30 - 2016-12-17 21:30 - 00000000 ____D C:\Users\alex-\AppData\Local\Hewlett-Packard
2016-12-17 21:28 - 2017-01-05 23:30 - 00000000 ____D C:\ProgramData\Origin
2016-12-17 21:28 - 2016-12-17 21:36 - 00000000 ____D C:\Users\alex-\AppData\Local\Origin
2016-12-17 21:28 - 2016-12-17 21:28 - 00000000 ____D C:\Users\alex-\.QtWebEngineProcess
2016-12-17 21:28 - 2016-12-17 21:28 - 00000000 ____D C:\Users\alex-\.Origin
2016-12-17 21:25 - 2016-12-28 17:17 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2016-12-17 21:25 - 2016-12-17 21:25 - 00000000 ____D C:\Users\alex-\AppData\Roaming\hpqLog
2016-12-17 21:25 - 2016-12-17 21:25 - 00000000 ____D C:\System.sav
2016-12-17 21:21 - 2016-12-17 21:21 - 00002592 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2016-12-17 21:21 - 2016-12-17 21:21 - 00002589 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-12-17 21:21 - 2016-12-17 21:21 - 00002585 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-12-17 21:21 - 2016-12-17 21:21 - 00002564 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-12-17 21:21 - 2016-12-17 21:21 - 00002542 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2016-12-17 21:21 - 2016-12-17 21:21 - 00002539 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-12-17 21:21 - 2016-12-17 21:21 - 00002506 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-12-17 21:21 - 2016-12-17 21:21 - 00002503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-12-17 21:21 - 2016-12-17 21:21 - 00002475 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-12-17 21:21 - 2016-12-17 21:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2016-12-17 21:16 - 2016-12-28 17:14 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-12-17 21:16 - 2016-12-17 21:16 - 00000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard
2016-12-17 21:13 - 2016-12-17 21:13 - 00000801 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2016-12-17 21:13 - 2016-12-17 21:13 - 00000000 ____D C:\Users\alex-\AppData\Roaming\TeamViewer
2016-12-17 21:11 - 2016-12-17 21:11 - 00000781 _____ C:\Users\alex-\Desktop\SpeedFan.lnk
2016-12-17 21:11 - 2016-12-17 21:11 - 00000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2016-12-17 21:11 - 2016-12-17 21:11 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2016-12-17 21:09 - 2016-12-17 21:09 - 00000925 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2016-12-17 21:09 - 2016-12-17 21:09 - 00000000 ____D C:\Users\alex-\AppData\Local\paint.net
2016-12-17 21:07 - 2016-12-17 21:07 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-12-17 21:05 - 2016-12-17 21:05 - 00000000 ____D C:\Users\alex-\AppData\Local\Cisco
2016-12-17 21:05 - 2016-12-17 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco
2016-12-17 21:05 - 2016-12-17 21:05 - 00000000 ____D C:\ProgramData\Cisco
2016-12-17 21:05 - 2016-12-17 21:05 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-12-17 21:05 - 2016-07-10 07:00 - 00234704 ____R (Cisco Systems, Inc.) C:\Windows\system32\Drivers\acsock64.sys
2016-12-17 21:01 - 2016-12-18 17:24 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Notepad++
2016-12-17 21:01 - 2016-12-17 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-12-17 20:55 - 2016-12-17 20:55 - 00000000 ____D C:\Users\alex-\AppData\Local\Logitech
2016-12-17 20:55 - 2016-12-17 20:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2016-12-17 20:55 - 2016-12-17 20:55 - 00000000 ____D C:\ProgramData\LogiShrd
2016-12-17 20:54 - 2016-12-17 20:55 - 00000000 ____D C:\Program Files\Logitech Gaming Software
2016-12-17 20:52 - 2016-12-17 20:53 - 00000000 ____D C:\ProgramData\Oracle
2016-12-17 20:52 - 2016-12-17 20:52 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-12-17 20:52 - 2016-12-17 20:52 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Sun
2016-12-17 20:52 - 2016-12-17 20:52 - 00000000 ____D C:\Users\alex-\AppData\LocalLow\Sun
2016-12-17 20:52 - 2016-12-17 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-12-17 20:51 - 2016-12-17 20:51 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Logitech
2016-12-17 20:51 - 2016-12-17 20:51 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Logishrd
2016-12-17 20:45 - 2016-12-17 20:45 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2016-12-17 20:45 - 2016-12-06 16:01 - 00153904 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2016-12-17 20:45 - 2016-12-06 16:01 - 00151352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2016-12-17 20:45 - 2016-12-06 16:01 - 00078208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2016-12-17 20:45 - 2016-12-06 16:01 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2016-12-17 20:45 - 2016-12-06 16:01 - 00028272 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys
2016-12-17 20:44 - 2017-01-06 15:44 - 00000000 ____D C:\Users\alex-\AppData\Roaming\DAEMON Tools Lite
2016-12-17 20:44 - 2016-12-17 20:44 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2016-12-17 20:44 - 2016-12-17 20:44 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2016-12-17 20:44 - 2016-12-17 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-12-17 20:43 - 2017-01-02 22:16 - 00000000 ____D C:\Users\alex-\AppData\Roaming\discord
2016-12-17 20:43 - 2016-12-17 20:43 - 00002239 _____ C:\Users\alex-\Desktop\Discord.lnk
2016-12-17 20:43 - 2016-12-17 20:43 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2016-12-17 20:43 - 2016-12-17 20:43 - 00000000 ____D C:\Users\alex-\AppData\Local\SquirrelTemp
2016-12-17 20:43 - 2016-12-17 20:43 - 00000000 ____D C:\Users\alex-\AppData\Local\Discord
2016-12-17 20:43 - 2016-12-17 20:43 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-12-17 20:42 - 2016-12-17 20:43 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Apple Computer
2016-12-17 20:42 - 2016-12-17 20:42 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-12-17 20:42 - 2016-12-17 20:42 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2016-12-17 20:42 - 2016-12-17 20:42 - 00000000 ____D C:\Users\alex-\AppData\Local\Apple Computer
2016-12-17 20:42 - 2016-12-17 20:42 - 00000000 ____D C:\Users\alex-\AppData\Local\Apple
2016-12-17 20:42 - 2016-12-17 20:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-12-17 20:42 - 2016-12-17 20:42 - 00000000 ____D C:\ProgramData\Apple Computer
2016-12-17 20:42 - 2016-12-17 20:42 - 00000000 ____D C:\Program Files\iPod
2016-12-17 20:42 - 2016-12-17 20:42 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-12-17 20:42 - 2016-12-17 20:42 - 00000000 ____D C:\Program Files\Bonjour
2016-12-17 20:42 - 2016-12-17 20:42 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-12-17 20:42 - 2016-12-17 20:42 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-12-17 20:41 - 2016-12-17 20:42 - 00000000 ____D C:\ProgramData\Apple
2016-12-17 20:39 - 2016-12-17 20:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-12-17 20:39 - 2016-12-17 20:55 - 00000000 ____D C:\ProgramData\Avira
2016-12-17 20:39 - 2016-12-17 20:55 - 00000000 ____D C:\Program Files (x86)\Avira
2016-12-17 20:39 - 2016-12-17 20:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ROCCAT
2016-12-17 20:39 - 2016-12-17 20:39 - 00000000 ____D C:\Users\alex-\AppData\Local\Avira
2016-12-17 20:35 - 2016-12-18 01:28 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-17 20:35 - 2016-12-17 20:35 - 00003860 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-12-17 20:33 - 2016-12-17 20:33 - 00000808 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2016-12-17 20:33 - 2016-12-17 20:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-12-17 19:42 - 2017-01-08 19:32 - 00004170 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{FE0FC2D6-76D3-4557-B007-1412928242B6}
2016-12-17 19:39 - 2016-12-18 19:20 - 00000000 ____D C:\ProgramData\Alcohol Soft
2016-12-17 19:32 - 2016-12-17 19:32 - 00000202 _____ C:\Users\alex-\Desktop\South Park The Stick of Truth.url
2016-12-17 19:32 - 2016-12-17 19:32 - 00000000 ____D C:\Users\alex-\AppData\Local\ashampoo
2016-12-17 19:32 - 2016-12-17 19:32 - 00000000 ____D C:\ProgramData\ashampoo
2016-12-17 19:31 - 2016-12-17 19:31 - 00000202 _____ C:\Users\alex-\Desktop\Shiftlings.url
2016-12-17 19:30 - 2016-12-17 19:30 - 00000202 _____ C:\Users\alex-\Desktop\Randal's Monday.url
2016-12-17 19:30 - 2016-12-17 19:30 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-12-17 19:30 - 2016-12-17 19:30 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-12-17 19:30 - 2016-12-17 19:30 - 00000000 ____D C:\Program Files\MSBuild
2016-12-17 19:30 - 2016-12-17 19:30 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-12-17 19:30 - 2016-12-17 19:30 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-12-17 19:29 - 2017-01-08 14:12 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-12-17 19:29 - 2016-12-17 19:29 - 00196152 _____ (Duplex Secure Ltd) C:\Windows\system32\Drivers\sptd2.sys
2016-12-17 19:29 - 2016-05-25 14:31 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2016-12-17 19:29 - 2016-05-25 14:31 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-12-17 19:29 - 2016-05-25 14:31 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2016-12-17 19:29 - 2016-05-25 11:03 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2016-12-17 19:29 - 2016-05-25 11:03 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-12-17 19:29 - 2016-05-25 11:03 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2016-12-17 19:22 - 2016-12-17 19:22 - 00000202 _____ C:\Users\alex-\Desktop\ONE PIECE PIRATE WARRIORS 3.url
2016-12-17 19:20 - 2016-12-17 19:20 - 00000201 _____ C:\Users\alex-\Desktop\Might & Magic Heroes VI.url
2016-12-17 19:19 - 2016-12-17 19:19 - 00000202 _____ C:\Users\alex-\Desktop\klocki.url
2016-12-17 19:19 - 2016-12-17 19:19 - 00000202 _____ C:\Users\alex-\Desktop\Giana Sisters Twisted Dreams - Rise of the Owlverlord.url
2016-12-17 19:18 - 2016-12-17 19:18 - 00000202 _____ C:\Users\alex-\Desktop\FINAL FANTASY IV.url
2016-12-17 19:11 - 2016-12-17 19:11 - 00000201 _____ C:\Users\alex-\Desktop\FINAL FANTASY VIII.url
2016-12-17 19:08 - 2016-12-17 19:08 - 00000202 _____ C:\Users\alex-\Desktop\The Elder Scrolls V Skyrim Special Edition.url
2016-12-17 19:04 - 2016-12-17 19:04 - 00000137 _____ C:\Users\alex-\Desktop\Edna & Harvey Harvey's New Eyes.url
2016-12-17 18:16 - 2016-12-17 18:16 - 00000000 ____D C:\Users\alex-\AppData\LocalLow\Adobe
2016-12-17 18:15 - 2016-12-17 19:57 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-12-17 18:15 - 2016-12-17 19:53 - 00004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-12-17 18:15 - 2016-12-17 19:49 - 00000000 ____D C:\ProgramData\Adobe
2016-12-17 18:15 - 2016-12-17 18:15 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-12-17 18:14 - 2016-12-17 20:36 - 00000000 ____D C:\Users\alex-\AppData\Local\Adobe
2016-12-17 18:00 - 2016-12-17 18:00 - 00000199 _____ C:\Users\alex-\Desktop\Counter-Strike Global Offensive.url
2016-12-17 18:00 - 2016-12-17 18:00 - 00000199 _____ C:\Users\alex-\Desktop\Counter-Strike Global Offensive - SDK.url
2016-12-17 18:00 - 2016-12-17 18:00 - 00000198 _____ C:\Users\alex-\Desktop\Counter-Strike.url
2016-12-17 17:59 - 2016-12-17 17:59 - 00000000 ____D C:\Steam
2016-12-17 17:41 - 2016-12-17 17:41 - 00000202 _____ C:\Users\alex-\Desktop\FINAL FANTASY XIII-2.url
2016-12-17 17:28 - 2016-12-17 17:28 - 00000000 ____D C:\Users\alex-\Desktop\SLAM_v1.2.2
2016-12-17 17:28 - 2016-09-11 20:59 - 00148743 _____ C:\Users\alex-\Desktop\no-god-please-no-noooooooooo.mp3
2016-12-17 17:27 - 2017-01-06 18:48 - 00000000 ____D C:\Users\alex-\Desktop\Arbeitszeiterfassung
2016-12-17 17:27 - 2017-01-05 17:20 - 00000000 ____D C:\Users\alex-\Desktop\Prüfungen
2016-12-17 17:27 - 2016-12-17 17:27 - 00000000 ____D C:\Users\alex-\Desktop\Sims 4
2016-12-17 16:17 - 2016-12-17 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-12-17 16:11 - 2016-12-17 16:11 - 00000000 ____D C:\Windows\system32\DAX2
2016-12-17 16:11 - 2016-12-17 16:11 - 00000000 ____D C:\Program Files\Realtek
2016-12-17 16:10 - 2016-12-17 16:11 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-12-17 16:10 - 2016-10-21 13:16 - 72520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-12-17 16:10 - 2016-10-21 13:16 - 23547552 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRenderAVX64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 23447360 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRender64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 17398624 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioCapture64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 15202040 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE3.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 14057256 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 13122584 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 12988352 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 10532056 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 07310217 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-12-17 16:10 - 2016-10-21 13:16 - 07172920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 07096192 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 06264640 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 06198144 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV3apo.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2016-12-17 16:10 - 2016-10-21 13:16 - 05793528 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 05593616 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 05371912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-12-17 16:10 - 2016-10-21 13:16 - 05341360 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 03299824 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 03295072 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 03283248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 03203584 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 03190560 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 03014152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-12-17 16:10 - 2016-10-21 13:16 - 02825104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 02819632 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 02706864 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 02439048 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 02203752 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 02201096 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 02190984 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 02110600 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 02050184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01965816 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01959608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01921016 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2016-12-17 16:10 - 2016-10-21 13:16 - 01780624 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01618264 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01591064 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01529144 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64Proxy.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01508936 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01435144 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01422928 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01382240 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01360528 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01337648 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01334384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01213664 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01186824 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01166168 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01115144 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01041744 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01003864 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 01003336 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00999864 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00965032 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00962128 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00931624 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00923744 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00873464 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00865920 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00859232 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00850416 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00743968 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00727440 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00721808 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00708312 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00678184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00677672 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00618192 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00601152 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00571384 _____ (Intel Corporation) C:\Windows\system32\tbb_waves.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00514528 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00504312 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00500560 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00499160 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00472312 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00467168 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00447720 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00447184 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00445400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00441272 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00438696 _____ (Conexant Systems, Inc.) C:\Windows\system32\CAF64APO2.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00428232 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00416512 _____ (Harman) C:\Windows\system32\HMUI.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00381416 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00372744 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00366128 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00362056 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00360352 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00341152 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00341152 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00327456 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00310424 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00272720 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00258864 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00253904 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00253864 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00252880 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00231920 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00221968 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00214832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00209536 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00203848 _____ (Harman) C:\Windows\system32\HMHVS.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00192984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00190944 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00190936 _____ (Harman) C:\Windows\system32\HMEQ.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00179608 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00158704 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00154368 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00151792 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00134200 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00112496 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf64api.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00110984 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00105312 _____ C:\Windows\system32\audioLibVc.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00090920 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00088328 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00075544 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00023696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-12-17 16:10 - 2016-10-21 13:16 - 00005604 _____ C:\Windows\system32\cxapo.lncs
2016-12-17 16:10 - 2016-10-21 13:16 - 00000736 _____ C:\Windows\system32\cxapo.prop
2016-12-17 16:10 - 2016-09-22 14:55 - 02839520 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-12-17 16:09 - 2017-01-03 14:44 - 00946696 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2016-12-17 16:07 - 2014-04-30 16:23 - 00011248 _____ (Windows (R) Win 7 DDK provider) C:\Windows\acpimof.dll
2016-12-17 16:06 - 2016-12-17 16:06 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-17 16:06 - 2016-12-17 16:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-17 15:59 - 2017-01-02 11:56 - 00000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2016-12-17 15:53 - 2016-12-17 03:40 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-12-17 15:47 - 2016-12-17 15:47 - 00000915 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-12-17 15:42 - 2016-12-17 15:58 - 00524288 ___SH C:\Users\alex-\ntuser.dat{0f14efa3-c467-11e6-b0c4-448a5b5f2eb2}.TMContainer00000000000000000002.regtrans-ms
2016-12-17 15:42 - 2016-12-17 15:58 - 00524288 ___SH C:\Users\alex-\ntuser.dat{0f14efa3-c467-11e6-b0c4-448a5b5f2eb2}.TMContainer00000000000000000001.regtrans-ms
2016-12-17 15:42 - 2016-12-17 15:58 - 00065536 ___SH C:\Users\alex-\ntuser.dat{0f14efa3-c467-11e6-b0c4-448a5b5f2eb2}.TM.blf
2016-12-17 15:42 - 2016-12-17 15:48 - 00524288 ___SH C:\Windows\system32\config\drivers{0f14ef3d-c467-11e6-b0c4-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
2016-12-17 15:42 - 2016-12-17 15:48 - 00524288 ___SH C:\Windows\system32\config\drivers{0f14ef3d-c467-11e6-b0c4-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
2016-12-17 15:42 - 2016-12-17 15:48 - 00065536 ___SH C:\Windows\system32\config\drivers{0f14ef3d-c467-11e6-b0c4-806e6f6e6963}.TM.blf
2016-12-17 15:42 - 2016-12-17 15:42 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-12-17 15:19 - 2017-01-02 12:05 - 00000000 ____D C:\ProgramData\AMD
2016-12-17 15:13 - 2016-12-17 15:14 - 00000000 ____D C:\Program Files (x86)\MSI
2016-12-17 15:13 - 2016-12-17 15:13 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-12-17 15:12 - 2016-12-17 16:11 - 00002833 _____ C:\RHDSetup.log
2016-12-17 15:12 - 2016-12-17 16:11 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-12-17 15:11 - 2016-12-17 21:26 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-12-17 15:11 - 2016-12-17 16:10 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-12-17 15:11 - 2016-12-17 16:09 - 00000189 _____ C:\mylog.log
2016-12-17 15:08 - 2016-12-17 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2016-12-17 14:49 - 2016-12-17 16:11 - 00000000 ____D C:\MSI
2016-12-17 14:49 - 2016-12-17 14:49 - 00000000 ____D C:\Users\alex-\AppData\Local\Programs
2016-12-17 14:33 - 2016-12-17 14:33 - 00000202 _____ C:\Users\alex-\Desktop\LYNE.url
2016-12-17 14:33 - 2016-12-17 14:33 - 00000202 _____ C:\Users\alex-\Desktop\Hexcells Infinite.url
2016-12-17 14:33 - 2016-12-17 14:33 - 00000201 _____ C:\Users\alex-\Desktop\VVVVVV.url
2016-12-17 14:32 - 2016-12-18 14:44 - 00000000 ____D C:\ProgramData\Samsung
2016-12-17 14:28 - 2016-12-17 14:28 - 00000000 ____D C:\Users\alex-\AppData\Roaming\WinRAR
2016-12-17 14:20 - 2016-12-17 14:20 - 00000202 _____ C:\Users\alex-\Desktop\FINAL FANTASY XIII.url
2016-12-17 14:19 - 2016-12-17 14:21 - 00000000 ____D C:\Users\alex-\AppData\Roaming\TS3Client
2016-12-17 14:16 - 2017-01-07 21:30 - 00000000 ____D C:\Overwatch
2016-12-17 14:14 - 2017-01-09 00:29 - 00000000 ____D C:\Users\alex-\AppData\Local\Battle.net
2016-12-17 14:14 - 2016-12-18 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-12-17 14:14 - 2016-12-17 14:14 - 00000000 ____D C:\Users\alex-\AppData\Local\Blizzard Entertainment
2016-12-17 14:14 - 2016-12-17 14:14 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2016-12-17 14:12 - 2016-12-17 16:11 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Battle.net
2016-12-17 14:12 - 2016-12-17 14:12 - 00000000 ____D C:\ProgramData\Battle.net
2016-12-17 03:51 - 2016-12-20 16:37 - 00000000 ____D C:\Windows\system32\MRT
2016-12-17 03:42 - 2017-01-08 22:49 - 00000000 ____D C:\Users\alex-\AppData\LocalLow\Mozilla
2016-12-17 03:42 - 2016-12-17 03:52 - 00000000 ____D C:\Users\alex-\AppData\Local\Mozilla
2016-12-17 03:42 - 2016-12-17 03:42 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Mozilla
2016-12-17 03:41 - 2016-12-17 15:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-17 03:41 - 2016-12-17 15:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-17 03:37 - 2016-12-19 22:19 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-12-17 03:37 - 2016-12-17 03:37 - 00000000 ____D C:\Program Files (x86)\MSECache
2016-12-17 03:32 - 2016-12-17 04:08 - 00524288 ___SH C:\Users\alex-\ntuser.dat{0db0dfcd-c401-11e6-b0c3-448a5b5f2eb2}.TMContainer00000000000000000001.regtrans-ms
2016-12-17 03:32 - 2016-12-17 04:08 - 00065536 ___SH C:\Users\alex-\ntuser.dat{0db0dfcd-c401-11e6-b0c3-448a5b5f2eb2}.TM.blf
2016-12-17 03:32 - 2016-12-17 04:03 - 00524288 ___SH C:\Windows\system32\config\drivers{0db0dfa5-c401-11e6-b0c3-448a5b5f2eb2}.TMContainer00000000000000000001.regtrans-ms
2016-12-17 03:32 - 2016-12-17 04:03 - 00065536 ___SH C:\Windows\system32\config\drivers{0db0dfa5-c401-11e6-b0c3-448a5b5f2eb2}.TM.blf
2016-12-17 03:32 - 2016-12-17 03:57 - 00524288 ___SH C:\Users\alex-\ntuser.dat{0db0dfcd-c401-11e6-b0c3-448a5b5f2eb2}.TMContainer00000000000000000002.regtrans-ms
2016-12-17 03:32 - 2016-12-17 03:46 - 00524288 ___SH C:\Windows\system32\config\drivers{0db0dfa5-c401-11e6-b0c3-448a5b5f2eb2}.TMContainer00000000000000000002.regtrans-ms
2016-12-17 02:41 - 2016-12-17 02:41 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Macromedia
2016-12-17 02:37 - 2017-01-03 00:52 - 00000000 ____D C:\ProgramData\ProductData
2016-12-17 02:37 - 2016-12-17 02:37 - 00027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2016-12-17 02:37 - 2016-12-17 02:37 - 00000000 ____D C:\Users\alex-\AppData\Roaming\IObit
2016-12-17 02:37 - 2016-12-17 02:37 - 00000000 ____D C:\Users\alex-\AppData\LocalLow\IObit
2016-12-17 02:37 - 2016-12-17 02:37 - 00000000 ____D C:\ProgramData\IObit
2016-12-17 02:25 - 2016-12-17 02:25 - 00000000 ____D C:\Users\alex-\AppData\Local\Steam
2016-12-17 02:25 - 2016-12-17 02:25 - 00000000 ____D C:\Users\alex-\AppData\Local\Chromium
2016-12-17 02:25 - 2016-12-17 02:25 - 00000000 ____D C:\Users\alex-\AppData\Local\CEF
2016-12-17 02:23 - 2016-12-17 02:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-12-17 02:21 - 2016-12-17 03:35 - 00000000 ____D C:\Users\alex-\AppData\Local\MicrosoftEdge
2016-12-17 02:20 - 2017-01-02 11:52 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-17 02:19 - 2017-01-08 22:41 - 03073166 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-17 02:19 - 2016-12-17 02:19 - 00000000 ____D C:\Temp
2016-12-17 02:12 - 2017-01-06 15:49 - 00000000 __SHD C:\Config.Msi
2016-12-17 02:09 - 2017-01-03 14:30 - 00000000 ____D C:\Program Files\AMD
2016-12-17 02:09 - 2017-01-03 00:42 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-17 02:09 - 2016-12-17 02:09 - 00000000 ___HD C:\OneDriveTemp
2016-12-17 02:08 - 2016-12-17 02:08 - 00003290 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task v2
2016-12-17 02:08 - 2016-12-17 02:08 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Skype
2016-12-17 02:07 - 2016-12-17 02:09 - 00000000 ___RD C:\Users\alex-\OneDrive
2016-12-17 02:07 - 2016-12-17 02:08 - 00002383 _____ C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-12-17 02:07 - 2016-12-17 02:07 - 00001047 _____ C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2016-12-17 02:07 - 2016-12-17 02:07 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-12-17 02:07 - 2016-07-15 19:29 - 05739008 _____ (Microsoft Corporation) C:\Windows\system32\prm0009.dll
2016-12-17 02:07 - 2016-07-15 19:29 - 02629120 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0009.dll
2016-12-17 02:07 - 2016-07-15 19:14 - 06354944 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0009.dll
2016-12-17 02:07 - 2016-07-15 18:45 - 02629120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsLexicons0009.dll
2016-12-17 02:07 - 2016-07-15 18:29 - 05489664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0009.dll
2016-12-17 02:06 - 2017-01-08 22:37 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-12-17 02:06 - 2017-01-06 18:45 - 00000000 ____D C:\Users\alex-\AppData\Local\Packages
2016-12-17 02:06 - 2017-01-06 15:36 - 00000000 ____D C:\Users\alex-\AppData\Local\VirtualStore
2016-12-17 02:06 - 2017-01-02 12:07 - 00000000 ___RD C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2016-12-17 02:06 - 2016-12-19 12:10 - 00000402 ___SH C:\Users\alex-\Documents\desktop.ini
2016-12-17 02:06 - 2016-12-19 12:10 - 00000282 ___SH C:\Users\alex-\Downloads\desktop.ini
2016-12-17 02:06 - 2016-12-19 12:10 - 00000282 ___SH C:\Users\alex-\Desktop\desktop.ini
2016-12-17 02:06 - 2016-12-19 12:10 - 00000174 ___SH C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-17 02:06 - 2016-12-19 12:10 - 00000174 ___SH C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
2016-12-17 02:06 - 2016-12-19 12:10 - 00000000 ___RD C:\Users\alex-\Searches
2016-12-17 02:06 - 2016-12-19 12:10 - 00000000 ___RD C:\Users\alex-\Contacts
2016-12-17 02:06 - 2016-12-19 12:10 - 00000000 ___RD C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-17 02:06 - 2016-12-18 13:23 - 00000000 ___SD C:\Users\alex-\AppData\LocalLow\Microsoft
2016-12-17 02:06 - 2016-12-17 18:16 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Adobe
2016-12-17 02:06 - 2016-12-17 02:17 - 00000000 ____D C:\Users\alex-\AppData\Local\ConnectedDevicesPlatform
2016-12-17 02:06 - 2016-12-17 02:06 - 00000000 ____D C:\Users\alex-\AppData\Local\TileDataLayer
2016-12-17 02:06 - 2016-12-17 02:06 - 00000000 ____D C:\Users\alex-\AppData\Local\Publishers
2016-12-17 02:06 - 2016-12-17 02:06 - 00000000 ____D C:\Users\alex-\AppData\Local\Comms
2016-12-17 02:05 - 2017-01-09 00:37 - 00000000 ____D C:\Users\alex-\AppData\Local\Temp
2016-12-17 02:05 - 2017-01-09 00:36 - 00000000 ___RD C:\Users\alex-\Desktop
2016-12-17 02:05 - 2017-01-09 00:03 - 00000000 ___RD C:\Users\alex-\Downloads
2016-12-17 02:05 - 2017-01-08 22:37 - 02621440 ____H C:\Users\alex-\ntuser.dat
2016-12-17 02:05 - 2017-01-08 22:36 - 00000000 ____D C:\Users\alex-\AppData\Local
2016-12-17 02:05 - 2017-01-06 23:14 - 00000000 ___RD C:\Users\alex-\Videos
2016-12-17 02:05 - 2017-01-06 23:14 - 00000000 ____D C:\Users\alex-
2016-12-17 02:05 - 2017-01-06 18:42 - 00000000 ___SD C:\Users\alex-\AppData\Roaming\Microsoft
2016-12-17 02:05 - 2017-01-06 16:01 - 00000000 ____D C:\Users\alex-\AppData\Roaming
2016-12-17 02:05 - 2017-01-05 21:52 - 00000000 ___RD C:\Users\alex-\Documents
2016-12-17 02:05 - 2017-01-04 21:34 - 00000000 ____D C:\Users\alex-\AppData\LocalLow
2016-12-17 02:05 - 2016-12-19 12:10 - 00000000 ___RD C:\Users\alex-\Saved Games
2016-12-17 02:05 - 2016-12-19 12:10 - 00000000 ___RD C:\Users\alex-\Pictures
2016-12-17 02:05 - 2016-12-19 12:10 - 00000000 ___RD C:\Users\alex-\Music
2016-12-17 02:05 - 2016-12-19 12:10 - 00000000 ___RD C:\Users\alex-\Links
2016-12-17 02:05 - 2016-12-19 12:10 - 00000000 ___RD C:\Users\alex-\Favorites
2016-12-17 02:05 - 2016-12-19 12:10 - 00000000 ___RD C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-17 02:05 - 2016-12-18 14:43 - 00000000 ____D C:\Users\alex-\AppData\Local\Microsoft
2016-12-17 02:05 - 2016-12-17 15:39 - 00000000 ___HD C:\Users\alex-\AppData
2016-12-17 02:05 - 2016-12-17 02:19 - 00524288 ___SH C:\Users\alex-\NTUSER.DAT{f5b13604-4b48-11e6-80cb-e41d2d012050}.TMContainer00000000000000000001.regtrans-ms
2016-12-17 02:05 - 2016-12-17 02:19 - 00065536 ___SH C:\Users\alex-\NTUSER.DAT{f5b13604-4b48-11e6-80cb-e41d2d012050}.TM.blf
2016-12-17 02:05 - 2016-12-17 02:06 - 00000000 ___RD C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-17 02:05 - 2016-12-17 02:05 - 00774144 ___SH C:\Users\alex-\ntuser.dat.log2
2016-12-17 02:05 - 2016-12-17 02:05 - 00524288 ___SH C:\Users\alex-\NTUSER.DAT{f5b13604-4b48-11e6-80cb-e41d2d012050}.TMContainer00000000000000000002.regtrans-ms
2016-12-17 02:05 - 2016-12-17 02:05 - 00303104 ___SH C:\Users\alex-\ntuser.dat.log1
2016-12-17 02:05 - 2016-12-17 02:05 - 00003340 ____H C:\Users\defaultuser0\AppData\Local\IconCache.db
2016-12-17 02:05 - 2016-12-17 02:05 - 00000020 ___SH C:\Users\alex-\ntuser.ini
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\Vorlagen
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\Startmenü
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\SendTo
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\Recent
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\Netzwerkumgebung
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\Lokale Einstellungen
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\Eigene Dateien
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\Druckumgebung
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\Documents\Eigene Videos
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\Documents\Eigene Musik
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\Documents\Eigene Bilder
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\Cookies
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\AppData\Local\Verlauf
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\AppData\Local\Temporary Internet Files
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\AppData\Local\Anwendungsdaten
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 _SHDL C:\Users\alex-\Anwendungsdaten
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 ___SD C:\Users\defaultuser0\AppData\LocalLow\Microsoft
2016-12-17 02:05 - 2016-12-17 02:05 - 00000000 ____D C:\ProgramData\USOShared
2016-12-17 02:05 - 2016-07-16 12:48 - 00000000 ___RD C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2016-12-17 02:05 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2016-12-17 02:05 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2016-12-17 02:05 - 2016-07-16 12:47 - 00000000 ____D C:\Users\alex-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2016-12-17 02:04 - 2017-01-08 22:37 - 3420954624 ___SH C:\hiberfil.sys
2016-12-17 02:04 - 2017-01-08 22:37 - 00262144 ____H C:\Users\defaultuser0\ntuser.dat
2016-12-17 02:04 - 2017-01-06 15:59 - 00000000 ____D C:\Windows\SoftwareDistribution
2016-12-17 02:04 - 2016-12-18 17:03 - 00000000 ____D C:\Users\defaultuser0
2016-12-17 02:04 - 2016-12-18 01:25 - 00000000 __SHD C:\Recovery
2016-12-17 02:04 - 2016-12-17 02:05 - 00000000 ____D C:\Users\defaultuser0\AppData\LocalLow
2016-12-17 02:04 - 2016-12-17 02:05 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\Temp
2016-12-17 02:04 - 2016-12-17 02:04 - 00524288 ___SH C:\Users\defaultuser0\NTUSER.DAT{f5b13604-4b48-11e6-80cb-e41d2d012050}.TMContainer00000000000000000002.regtrans-ms
2016-12-17 02:04 - 2016-12-17 02:04 - 00524288 ___SH C:\Users\defaultuser0\NTUSER.DAT{f5b13604-4b48-11e6-80cb-e41d2d012050}.TMContainer00000000000000000001.regtrans-ms
2016-12-17 02:04 - 2016-12-17 02:04 - 00229376 ___SH C:\Users\defaultuser0\ntuser.dat.log1
2016-12-17 02:04 - 2016-12-17 02:04 - 00065536 ___SH C:\Users\defaultuser0\NTUSER.DAT{f5b13604-4b48-11e6-80cb-e41d2d012050}.TM.blf
2016-12-17 02:04 - 2016-12-17 02:04 - 00040960 ___SH C:\Users\defaultuser0\ntuser.dat.log2
2016-12-17 02:04 - 2016-12-17 02:04 - 00000020 ___SH C:\Users\defaultuser0\ntuser.ini
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\Vorlagen
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\Startmenü
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\SendTo
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\Recent
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\Netzwerkumgebung
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\Lokale Einstellungen
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\Eigene Dateien
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\Druckumgebung
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Eigene Videos
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Eigene Musik
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Eigene Bilder
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\Cookies
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Local\Verlauf
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Local\Temporary Internet Files
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Local\Anwendungsdaten
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\defaultuser0\Anwendungsdaten
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\SendTo
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\Recent
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\Cookies
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\AppData\Local\Temporary Internet Files
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Temporary Internet Files
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Programme
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\ProgramData\Vorlagen
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\ProgramData\Startmenü
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\ProgramData\Dokumente
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\ProgramData\Desktop
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 _SHDL C:\Dokumente und Einstellungen
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 ___SD C:\Users\defaultuser0\AppData\Roaming\Microsoft
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 ___RD C:\Users\defaultuser0\Documents
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 ___HD C:\Users\defaultuser0\AppData
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 ____D C:\Windows\CSC
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\VirtualStore
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\TileDataLayer
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\Packages
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\Microsoft
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\ConnectedDevicesPlatform
2016-12-17 02:04 - 2016-12-17 02:04 - 00000000 ____D C:\Users\defaultuser0\AppData\Local
2016-12-17 02:04 - 2016-07-16 12:48 - 00000000 ___RD C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Videos
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Pictures
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Music
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Links
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Favorites
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Downloads
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Desktop
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ____D C:\Users\defaultuser0\Saved Games
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ____D C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ____D C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ____D C:\Users\defaultuser0\AppData\Roaming
2016-12-17 02:04 - 2016-07-16 12:41 - 02716672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2016-12-17 02:03 - 2017-01-01 14:45 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{f5b135e6-4b48-11e6-80cb-e41d2d012050}.TMContainer00000000000000000002.regtrans-ms
2016-12-17 02:03 - 2017-01-01 14:45 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{f5b135e6-4b48-11e6-80cb-e41d2d012050}.TMContainer00000000000000000001.regtrans-ms
2016-12-17 02:03 - 2017-01-01 14:45 - 00065536 ___SH C:\Windows\system32\config\COMPONENTS{f5b135e6-4b48-11e6-80cb-e41d2d012050}.TM.blf
2016-12-17 02:03 - 2016-12-17 02:03 - 00047425 _____ C:\Windows\SysWOW64\license.rtf
2016-12-17 02:03 - 2016-12-17 02:03 - 00047425 _____ C:\Windows\system32\license.rtf
2016-12-17 02:02 - 2017-01-09 00:37 - 00000000 ____D C:\Windows\Prefetch
2016-12-17 02:02 - 2017-01-08 22:39 - 00067584 ____S C:\Windows\bootstat.dat
2016-12-17 02:02 - 2017-01-08 22:37 - 16777216 ___SH C:\swapfile.sys
2016-12-17 02:02 - 2017-01-08 22:37 - 1342177280 ___SH C:\pagefile.sys
2016-12-17 02:02 - 2017-01-08 22:37 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-17 02:02 - 2017-01-08 19:57 - 00000000 ____D C:\Windows\system32\SleepStudy
2016-12-17 02:02 - 2017-01-07 20:30 - 00000000 __SHD C:\System Volume Information
2016-12-17 02:02 - 2016-12-19 12:08 - 00338480 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-17 02:02 - 2016-12-18 17:06 - 00000000 ____D C:\Windows\Panther
2016-12-17 02:02 - 2016-12-17 02:03 - 00524288 ___SH C:\Windows\system32\config\DRIVERS{f5b135f1-4b48-11e6-80cb-e41d2d012050}.TMContainer00000000000000000002.regtrans-ms
2016-12-17 02:02 - 2016-12-17 02:03 - 00524288 ___SH C:\Windows\system32\config\DRIVERS{f5b135f1-4b48-11e6-80cb-e41d2d012050}.TMContainer00000000000000000001.regtrans-ms
2016-12-17 02:02 - 2016-12-17 02:03 - 00065536 ___SH C:\Windows\system32\config\DRIVERS{f5b135f1-4b48-11e6-80cb-e41d2d012050}.TM.blf
2016-12-17 02:02 - 2016-12-17 02:02 - 00524288 ___SH C:\Windows\system32\config\ELAM{1cc41df8-4b1b-11e6-80cc-e41d2d1026d0}.TMContainer00000000000000000002.regtrans-ms
2016-12-17 02:02 - 2016-12-17 02:02 - 00524288 ___SH C:\Windows\system32\config\ELAM{1cc41df8-4b1b-11e6-80cc-e41d2d1026d0}.TMContainer00000000000000000001.regtrans-ms
2016-12-17 02:02 - 2016-12-17 02:02 - 00524288 ___SH C:\Users\Default\NTUSER.DAT{f5b13604-4b48-11e6-80cb-e41d2d012050}.TMContainer00000000000000000002.regtrans-ms
2016-12-17 02:02 - 2016-12-17 02:02 - 00524288 ___SH C:\Users\Default\NTUSER.DAT{f5b13604-4b48-11e6-80cb-e41d2d012050}.TMContainer00000000000000000001.regtrans-ms
2016-12-17 02:02 - 2016-12-17 02:02 - 00065536 ___SH C:\Windows\system32\config\ELAM{1cc41df8-4b1b-11e6-80cc-e41d2d1026d0}.TM.blf
2016-12-17 02:02 - 2016-12-17 02:02 - 00065536 ___SH C:\Users\Default\NTUSER.DAT{f5b13604-4b48-11e6-80cb-e41d2d012050}.TM.blf
2016-12-17 02:02 - 2016-12-17 02:02 - 00000000 ___SD C:\Windows\system32\Microsoft
2016-12-17 02:02 - 2016-12-17 02:02 - 00000000 ___HD C:\Program Files\Uninstall Information
2016-12-17 02:02 - 2016-12-17 02:02 - 00000000 ____D C:\Windows\ServiceProfiles
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-01-08 22:42 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\AppReadiness
2017-01-08 22:41 - 2016-07-16 23:51 - 01359218 _____ C:\Windows\system32\perfh007.dat
2017-01-08 22:41 - 2016-07-16 23:51 - 00336830 _____ C:\Windows\system32\perfc007.dat
2017-01-08 22:36 - 2016-07-16 07:04 - 00524288 _____ C:\Windows\system32\config\BBI
2017-01-06 23:18 - 2016-07-16 12:45 - 00000000 ____D C:\Windows\INF
2017-01-06 22:47 - 2016-07-16 07:04 - 00032768 _____ C:\Windows\system32\config\ELAM
2017-01-06 12:55 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-05 21:08 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\LiveKernelReports
2017-01-02 13:26 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\rescache
2017-01-02 11:56 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Help
2017-01-01 16:09 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\NDF
2017-01-01 14:43 - 2016-07-16 12:43 - 00471040 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2017-01-01 14:43 - 2016-07-16 12:43 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2017-01-01 14:43 - 2016-07-16 12:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2017-01-01 14:43 - 2016-07-16 12:43 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2017-01-01 14:43 - 2016-07-16 12:43 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2017-01-01 14:43 - 2016-07-16 12:36 - 00000000 ____D C:\Windows\CbsTemp
2016-12-28 17:12 - 2016-07-16 07:04 - 00000000 ____D C:\Program Files (x86)\Common Files
2016-12-21 21:48 - 2016-07-16 12:47 - 00000000 __RSD C:\Windows\assembly
2016-12-19 22:19 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-12-19 12:07 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\config\TxR
2016-12-19 12:06 - 2016-07-16 23:56 - 00000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2016-12-19 12:06 - 2016-07-16 23:50 - 00000000 ____D C:\Windows\system32\Drivers\de-DE
2016-12-19 12:06 - 2016-07-16 12:47 - 00015425 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2016-12-19 12:06 - 2016-07-16 12:47 - 00000666 ___SH C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 __RSD C:\Windows\Fonts
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\SysWOW64\F12
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\system32\F12
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\system32\dsc
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ___RD C:\Program Files\Windows Defender
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\wbem
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\sr-Latn-CS
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\setup
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\oobe
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\migration
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\en-US
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\zh-TW
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\zh-HK
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\zh-CN
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\wbem
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\uk-UA
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\tr-TR
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\th-TH
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\sv-SE
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\sl-SI
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\sk-SK
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\setup
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\ru-RU
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\ro-RO
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\pt-PT
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\pt-BR
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\pl-PL
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\oobe
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\nl-NL
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\nb-NO
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\migwiz
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\migration
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\lv-LV
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\lt-LT
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\ko-KR
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\ja-jp
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\it-IT
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\hu-HU
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\hr-HR
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\he-IL
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\fr-FR
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\fr-CA
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\fi-FI
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\et-EE
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\es-MX
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\es-ES
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\en-US
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\en-GB
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\el-GR
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\da-DK
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\cs-CZ
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\Boot
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\bg-BG
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\ar-SA
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\appraiser
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\ShellExperiences
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Provisioning
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\bcastdvr
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\AppPatch
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Media Player
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Mail
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Internet Explorer
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Media Player
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Mail
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-12-19 12:06 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Internet Explorer
2016-12-19 12:06 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-12-19 12:06 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\system32\Sysprep
2016-12-19 12:06 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\system32\Dism
2016-12-19 12:06 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\servicing
2016-12-18 15:40 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\Public\Documents
2016-12-18 10:58 - 2016-07-16 12:47 - 00000416 ___SH C:\Users\Public\Desktop\desktop.ini
2016-12-18 01:34 - 2016-07-16 12:47 - 00000000 ___SD C:\ProgramData\Microsoft
2016-12-18 01:27 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\CodeIntegrity
2016-12-18 01:26 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\registration
2016-12-17 21:36 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\System32\Tasks\Microsoft
2016-12-17 21:36 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Microsoft.NET
2016-12-17 21:35 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-12-17 20:55 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\Public
2016-12-17 20:39 - 2016-07-16 12:47 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
2016-12-17 20:35 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-12-17 20:35 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-17 19:30 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\MUI
2016-12-17 19:30 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\MUI
2016-12-17 19:30 - 2016-07-16 07:04 - 00262144 _____ C:\Users\Default\NTUSER.DAT
2016-12-17 16:13 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\WDI
2016-12-17 15:42 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\Drivers\UMDF
2016-12-17 15:41 - 2016-07-16 23:50 - 00000000 ____D C:\Windows\SysWOW64\Drivers\de-DE
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\SysWOW64\Nui
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\SysWOW64\Configuration
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\system32\Nui
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\system32\Configuration
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\Public\Videos
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\Public\Music
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\Public\Downloads
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\zh-TW
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\zh-CN
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\uk-UA
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\th-TH
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\sv-SE
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\sr-Latn-RS
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\sl-SI
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\sk-SK
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\ru-RU
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\ro-RO
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\pt-PT
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\pt-BR
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\pl-PL
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\nl-NL
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\nb-NO
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\lv-LV
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\lt-LT
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\ko-KR
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\ja-JP
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\it-IT
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\IME
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\icsxml
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\hu-HU
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\hr-HR
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\he-IL
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\fr-FR
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\fr-CA
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\fi-FI
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\et-EE
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\es-MX
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\es-ES
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\en-GB
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\el-GR
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\da-DK
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\cs-CZ
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\bg-BG
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\ar-SA
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\sr-Latn-RS
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\spp
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\IME
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\icsxml
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\DDFs
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system\Speech
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\security
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\L2Schemas
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Globalization
2016-12-17 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Boot
2016-12-17 03:35 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\appcompat
2016-12-17 02:37 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\drivers
2016-12-17 02:36 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\restore
2016-12-17 02:12 - 2016-07-16 12:47 - 00000000 __SHD C:\$Recycle.Bin
2016-12-17 02:07 - 2016-07-16 23:52 - 00000000 ____D C:\Windows\OCR
2016-12-17 02:05 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2016-12-17 02:05 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\Default\Documents
2016-12-17 02:04 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\FxsTmp
2016-12-17 02:04 - 2016-07-16 07:04 - 00000000 __RHD C:\Users\Default
2016-12-17 02:03 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\Recovery
2016-12-17 02:02 - 2016-07-16 12:47 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-12-17 02:02 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\PrintDialog
2016-12-17 02:02 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\MiracastView
2016-12-12 00:56 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-12-12 00:56 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-12-17 15:13 - 2016-12-17 15:13 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-01-07 16:10
==================== Ende von FRST.txt ============================
|
|
09.01.2017, 16:57
| #17 | ||||||||||
| /// TB-Ausbilder   | Windows 10: TrojanDownloader: Win32/Esaprof!rfn Servus,
__________________den Grafiktreiber zu updaten wäre eine gute Idee, sofern ein Update vorhanden ist.  Malware ist nichts auf dem PC. Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber.  Zum Schluss müssen wir noch ein paar abschließende Schritte unternehmen, um deinen Pc aufzuräumen und abzusichern.  Cleanup: Alle Logs gepostet? Dann lade Dir bitte  DelFix herunter.
DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte Deinen Rechner anschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen.  Absicherung: Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen: Browser Java Flash-Player PDF-Reader Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren. Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen. Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig. Sofern du noch unentschieden bist, verwende ein einziges der folgenden Antivirusprogramme mit Echtzeitscanner und stets aktueller Signaturendatenbank:
Microsoft Security Essentials (MSE) / Windows Defender (WD) ist ab Windows 8 fest eingebaut, wenn du also Windows 8, 8.1 oder 10 und dich für MSE/WD entschieden hast, brauchst du nicht extra MSE/WD zu installieren. Bei Windows 7 muss es aber manuell installiert oder über die Windows Updates als optionales Update bezogen werden. Selbstverständlich ist ein legales/aktiviertes Windows Voraussetzung dafür. Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen. Optional:  Adblock Plus Kann Banner, Pop-ups, Videowerbung, Tracking und Malware-Seiten blockieren. NoScript Verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen.Lade Software von einem sauberen Portal wie  .Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen. Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwcleaner . Abschließend noch ein paar grundsätzliche Bemerkungen:
Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...  und/oder das Forum mit einer kleinen Spende  unterstützen.  Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann. |
|
09.01.2017, 22:31
| #18 |
| | Windows 10: TrojanDownloader: Win32/Esaprof!rfn Vielen Dank,
__________________Du hast mir sehr geholfen, falls ich nochmal was habe, werde ich mich nochmal in einem neuen thread melden. Viele Grüße Ps3udo |
|
10.01.2017, 16:37
| #19 |
| /// TB-Ausbilder | Windows 10: TrojanDownloader: Win32/Esaprof!rfn Ich bin froh, dass wir helfen konnten  In diesem Forum kannst du eine kurze Rückmeldung zur Bereinigung abgeben, sofern du das möchtest: Lob, Kritik und Wünsche Klicke dazu auf den Button "NEUES THEMA" und poste ein kleines Feedback. Vielen Dank! Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke mir bitte eine PM. Jeder andere bitte hier klicken und einen eigenen Thread erstellen. |
|
| Themen zu Windows 10: TrojanDownloader: Win32/Esaprof!rfn |
| antivirus, avira, computer, defender, downloader, entfernen, fehler, festplatte, firefox, flash player, helper, hängen, internet, internet explorer, office 365, popup, programm, proxy, registry, stick, tcp, teamspeak, updates, usb, viren, virus, win32/esaprof!rfn, windows, windowsapps |
Linear-Darstellung
