| |
| |||||||
Log-Analyse und Auswertung: Opera öffnet unter Windows7 (64 Bit) gelegentlich unmotiviert Webseiten mit NewsWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
13.12.2017, 01:09
| #1 |
 |  Opera öffnet unter Windows7 (64 Bit) gelegentlich unmotiviert Webseiten mit News Hallo, beispielsweise werden URLs aufgerufen wie: hxxp://video.ournewstoday.com/indexRC.html hxxp://video.buzzintersection.com/indexRC.html hxxp://video.yourbreakingnews.com hxxp://video.losangelespost.com/indexRC.html Dies geschieht vorwiegend nachts, wenn niemand am Rechner sitzt. Kaspersky Antivirus, Malwarebytes Antimalware und Adwcleaner haben nichts gefunden. Vor einigen Monaten hat Kaspersky allerdings eine PUP gefunden ("OpenCandy", kam mit dem Gomplayer) und gelöscht. Ich poste mal die FRST.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12-12-2017
durchgeführt von (Administrator) auf (13-12-2017 00:50:00)
Gestartet von C:\Users\schweinebacke\AppData\Local\Temp\scoped_dir6728_10865
Geladene Profile: schweine72backe (Verfügbare Profile: schweine72backe)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Opera)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
() C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avpui.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(Alexander Miehlke Softwareentwicklung) C:\Program Files (x86)\TraXEx\TraXEx.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(CH-Software) C:\Program Files (x86)\PopMan\PopMan.exe
() C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe
() C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksdeui.exe
(Harry Stahl Software) C:\Program Files (x86)\hastasoft\PC-Notizz\PCNotizz.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SandboxieRpcSs.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SandboxieDcomLaunch.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SandboxieCrypto.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\32\SbieSvc.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\49.0.0.272531065\opera.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [585296 2017-11-22] ()
HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1074600 2016-08-28] (The Eraser Project)
HKLM\...\Run: [NUSB3MON] => C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [97280 2012-04-11] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2867712 2017-01-09] (Dominik Reichl)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2017-11-22] (Acronis International GmbH)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [4620720 2017-11-22] ()
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc.)
HKLM\...\Policies\Explorer: [NoDrives] 65536
HKU\S-1-5-21-244211897-3203354651-1062380415-1004\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [57446856 2017-12-01] (Skype Technologies S.A.)
HKU\S-1-5-21-244211897-3203354651-1062380415-1004\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [799880 2017-10-30] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-244211897-3203354651-1062380415-1004\...\Policies\Explorer: [NoLowDiskSpaceChecks] False
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TraXEx 7.0.lnk [2017-11-18]
ShortcutTarget: TraXEx 7.0.lnk -> C:\Program Files (x86)\TraXEx\TraXEx.exe (Alexander Miehlke Softwareentwicklung)
Startup: C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\pc-notizz.exe.lnk [2015-01-26]
ShortcutTarget: pc-notizz.exe.lnk -> C:\Program Files (x86)\hastasoft\PC-Notizz\PCNotizz.EXE (Harry Stahl Software)
Startup: C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\pcacheck.exe.LNK [2015-02-03]
ShortcutTarget: pcacheck.exe.LNK -> C:\Program Files (x86)\hastasoft\PCAdress\PcaCheck.EXE ()
Startup: C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\popman.exe.lnk [2015-01-26]
ShortcutTarget: popman.exe.lnk -> C:\Program Files (x86)\PopMan\PopMan.exe (CH-Software)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{3FD53076-921D-422C-8E25-D50CC833C74D}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKU\S-1-5-21-244211897-3203354651-1062380415-1004\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-26] (AO Kaspersky Lab)
BHO: Kein Name -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> Keine Datei
BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2016-12-26] (AO Kaspersky Lab)
BHO-x32: Kein Name -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> Keine Datei
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-26] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2016-12-26] (AO Kaspersky Lab)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2017-11-16]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2011-04-05] (Microsoft Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [2721824 2017-11-22] (Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1216760 2017-11-22] ()
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6096688 2017-11-28] ()
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-07-23] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] () [Datei ist nicht signiert]
R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
R2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2017-11-22] (Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2017-11-22] (Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1742456 2017-11-22] ()
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [198792 2017-10-30] (Sandboxie Holdings, LLC)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7003048 2017-11-22] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [62152 2014-10-28] (Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-07-23] ()
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
R2 file_protector; C:\Windows\System32\DRIVERS\file_protector.sys [564304 2017-11-28] (Acronis International GmbH)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [379664 2017-11-28] (Acronis International GmbH)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [195288 2017-11-16] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [313112 2017-03-15] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1038552 2017-11-16] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [57936 2016-12-26] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [52144 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [75696 2016-05-17] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [135904 2017-03-15] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [199640 2017-11-16] (AO Kaspersky Lab)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [209544 2017-10-30] (Sandboxie Holdings, LLC)
R3 Sftfs; C:\Windows\System32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation)
R3 Sftplay; C:\Windows\System32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation)
R3 Sftredir; C:\Windows\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation)
R3 Sftvol; C:\Windows\System32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1310552 2017-11-28] (Acronis International GmbH)
R2 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [213336 2017-11-28] (Acronis International GmbH)
S3 tnd; C:\Windows\System32\DRIVERS\tnd.sys [690520 2017-11-28] (Acronis International GmbH)
R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [631200 2017-11-20] (IDRIX)
R2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [331976 2017-11-28] (Acronis International GmbH)
R0 volume_tracker; C:\Windows\System32\DRIVERS\volume_tracker.sys [243472 2017-11-28] (Acronis International GmbH)
S3 MBAMProtection; system32\DRIVERS\mbam.sys [X]
S0 MBAMSwissArmy; System32\Drivers\mbamswissarmy.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-12-13 00:48 - 2017-12-13 00:50 - 000000000 ____D C:\FRST
2017-12-13 00:48 - 2017-12-13 00:48 - 002392064 _____ (Farbar) C:\Users\schweine72backe\Downloads\FRST64.exe
2017-12-13 00:35 - 2017-12-13 00:37 - 000000000 ____D C:\AdwCleaner
2017-12-13 00:35 - 2017-12-13 00:35 - 008187336 _____ (Malwarebytes) C:\Users\schweine72backe\Downloads\adwcleaner_7.0.5.0.exe
2017-12-12 23:34 - 2017-12-12 23:34 - 000000000 ____D C:\Users\schweine72backe\Desktop\ProcessMonitor
2017-12-12 23:33 - 2017-12-12 23:33 - 001004649 _____ C:\Users\schweine72backe\Downloads\ProcessMonitor.zip
2017-12-11 17:02 - 2017-12-11 17:02 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\PlaysTV
2017-12-11 17:02 - 2017-12-11 17:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2017-12-11 17:00 - 2017-12-11 17:00 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\library_dir
2017-12-11 17:00 - 2017-12-11 17:00 - 000000000 ____D C:\Program Files (x86)\Raptr Inc
2017-12-11 16:59 - 2017-12-11 17:00 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Raptr
2017-12-11 16:59 - 2017-12-11 17:00 - 000000000 ____D C:\Program Files (x86)\Raptr
2017-12-11 16:59 - 2017-12-11 16:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2017-12-11 16:59 - 2017-12-11 16:59 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2017-12-11 16:58 - 2017-12-11 16:58 - 000000000 ____D C:\ProgramData\ATI
2017-12-11 15:24 - 2017-12-11 15:24 - 000003880 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1513002273
2017-12-11 15:24 - 2017-12-11 15:24 - 000001142 _____ C:\Users\Public\Desktop\Opera-Browser.lnk
2017-12-11 15:24 - 2017-12-11 15:24 - 000001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk
2017-12-08 14:38 - 2017-12-08 14:43 - 000000000 ____D C:\ProgramData\HitmanPro
2017-12-08 14:38 - 2017-12-08 14:38 - 000000000 ____D C:\Program Files\HitmanPro
2017-12-08 14:31 - 2017-12-08 14:31 - 011584088 _____ (SurfRight B.V.) C:\Users\schweine72backe\Downloads\hitmanpro_x64.exe
2017-11-28 05:17 - 2017-12-11 17:22 - 000001558 _____ C:\Windows\Sandboxie.ini
2017-11-28 05:17 - 2017-11-28 05:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie
2017-11-28 04:50 - 2017-11-28 04:50 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Acronis
2017-11-28 04:42 - 2017-11-28 04:42 - 000000000 ____D C:\ProgramData\Apple
2017-11-28 04:41 - 2017-11-28 04:41 - 001310552 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2017-11-28 04:41 - 2017-11-28 04:41 - 000690520 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tnd.sys
2017-11-28 04:41 - 2017-11-28 04:41 - 000564304 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\file_protector.sys
2017-11-28 04:41 - 2017-11-28 04:41 - 000379664 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\file_tracker.sys
2017-11-28 04:41 - 2017-11-28 04:41 - 000331976 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\virtual_file.sys
2017-11-28 04:41 - 2017-11-28 04:41 - 000243472 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\volume_tracker.sys
2017-11-28 04:41 - 2017-11-28 04:41 - 000213336 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib_mounter.sys
2017-11-28 04:41 - 2017-11-28 04:41 - 000000000 ____D C:\ProgramData\Acronis Mobile Backup Data
2017-11-28 04:40 - 2017-11-28 04:40 - 000001217 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis True Image.lnk
2017-11-28 04:40 - 2017-11-28 04:40 - 000001205 _____ C:\Users\Public\Desktop\Acronis True Image.lnk
2017-11-28 03:48 - 2017-11-28 04:29 - 000000000 ____D C:\Windows\Acronis
2017-11-28 03:48 - 2017-11-28 03:48 - 000000161 _____ C:\Windows\system32\autopart.opt
2017-11-28 03:48 - 2017-11-28 03:48 - 000000000 ____D C:\Users\schweine72backe\AppData\Local\Eraser 6
2017-11-22 03:02 - 2017-11-22 03:02 - 000000000 ____D C:\Program Files\Malwarebytes
2017-11-21 23:59 - 2017-11-21 23:59 - 000000000 ____D C:\Users\schweine72backe\Desktop\Fotos
2017-11-21 17:09 - 2017-11-21 17:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD
2017-11-21 17:09 - 2017-11-21 17:09 - 000000000 ____D C:\ProgramData\CyberLink
2017-11-21 17:09 - 2017-11-21 17:09 - 000000000 ____D C:\Program Files (x86)\CyberLink
2017-11-21 01:48 - 2017-11-21 01:48 - 000000000 ____D C:\ProgramData\SoftMaker
2017-11-21 01:47 - 2017-11-21 01:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftMaker FreeOffice 2016
2017-11-21 01:47 - 2017-11-21 01:47 - 000000000 ____D C:\Program Files (x86)\SoftMaker FreeOffice 2016
2017-11-21 01:39 - 2017-11-21 01:48 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\SoftMaker
2017-11-21 01:39 - 2017-11-21 01:47 - 000000000 ____D C:\Users\schweine72backe\Documents\SoftMaker
2017-11-21 01:14 - 2017-11-21 01:14 - 000001759 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eraser.lnk
2017-11-21 01:13 - 2017-11-21 01:14 - 000000000 ____D C:\Program Files\Eraser
2017-11-20 22:47 - 2017-11-20 22:47 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\VeraCrypt
2017-11-20 22:46 - 2017-11-20 22:46 - 000631200 _____ (IDRIX) C:\Windows\system32\Drivers\veracrypt.sys
2017-11-20 22:46 - 2017-11-20 22:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VeraCrypt
2017-11-20 22:46 - 2017-11-20 22:46 - 000000000 ____D C:\Program Files\VeraCrypt
2017-11-20 01:35 - 2017-11-28 05:04 - 000000000 ____D C:\ProgramData\Acronis
2017-11-20 01:35 - 2017-11-28 04:41 - 000371472 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2017-11-20 01:35 - 2017-11-28 04:40 - 000182032 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2017-11-20 01:35 - 2017-11-28 04:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
2017-11-20 01:35 - 2017-11-28 04:40 - 000000000 ____D C:\Program Files (x86)\Acronis
2017-11-19 08:39 - 2017-11-19 08:39 - 000001875 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk
2017-11-19 08:39 - 2017-11-19 08:39 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\SumatraPDF
2017-11-19 08:39 - 2017-11-19 08:39 - 000000000 ____D C:\Program Files\SumatraPDF
2017-11-19 07:05 - 2017-11-19 07:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2017-11-19 07:05 - 2017-11-19 07:05 - 000000000 ____D C:\Program Files\Defraggler
2017-11-19 06:57 - 2017-11-19 06:57 - 007916104 _____ (Tim Kosse) C:\Users\schweine72backe\Downloads\FileZilla_3.29.0_win64-setup.exe
2017-11-19 06:57 - 2017-11-19 06:57 - 000000000 ____D C:\Users\schweine72backe\AppData\Local\FileZilla
2017-11-19 06:31 - 2017-11-28 03:49 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\SoftGrid Client
2017-11-19 06:31 - 2017-11-19 06:31 - 000000000 ____D C:\Users\schweine72backe\AppData\Local\SoftGrid Client
2017-11-19 05:33 - 2017-11-19 05:33 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Miranda NG
2017-11-19 05:32 - 2017-12-04 05:34 - 000000000 ____D C:\Program Files\Miranda NG
2017-11-19 05:32 - 2017-11-19 05:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Miranda NG x64
2017-11-19 00:05 - 2017-11-19 00:05 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\True Launch Bar
2017-11-19 00:05 - 2017-11-19 00:05 - 000000000 ____D C:\ProgramData\Tordex
2017-11-19 00:04 - 2017-11-28 03:53 - 000000000 ____D C:\Program Files\TrueLaunchBar
2017-11-19 00:04 - 2017-11-19 00:04 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Tordex
2017-11-19 00:04 - 2017-11-19 00:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Launch Bar
2017-11-18 23:01 - 2017-11-18 23:01 - 000001997 _____ C:\Users\Public\Desktop\TraXEx-Schredder.lnk
2017-11-18 23:01 - 2017-11-18 23:01 - 000001975 _____ C:\Users\Public\Desktop\TraXEx-Löschautomat.lnk
2017-11-18 23:01 - 2017-11-18 23:01 - 000001967 _____ C:\Users\Public\Desktop\TraXEx 7.0.lnk
2017-11-18 23:01 - 2017-11-18 23:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TraXEx 7.0
2017-11-18 22:23 - 2017-11-18 23:01 - 000000000 ____D C:\Program Files (x86)\TraXEx
2017-11-18 21:38 - 2017-11-18 21:38 - 000000000 ____D C:\ProgramData\GRETECH
2017-11-18 21:37 - 2017-11-18 21:37 - 000001209 _____ C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2017-11-18 21:37 - 2017-11-18 21:37 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\GRETECH
2017-11-18 21:37 - 2017-11-18 21:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player
2017-11-18 21:37 - 2017-11-18 21:37 - 000000000 ____D C:\Program Files (x86)\GRETECH
2017-11-18 20:52 - 2017-11-18 20:52 - 000001182 _____ C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\PC-Adreßzz! 8.x.LNK
2017-11-18 20:52 - 2017-11-18 20:52 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC-Adreßzz! 8.x
2017-11-18 20:51 - 2017-11-18 20:51 - 003768552 _____ C:\Users\schweine72backe\Downloads\Setup_PCAdress.exe
2017-11-18 20:36 - 2017-11-18 20:36 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\JAM Software
2017-11-18 20:36 - 2017-11-18 20:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free
2017-11-18 20:36 - 2017-11-18 20:36 - 000000000 ____D C:\Program Files (x86)\JAM Software
2017-11-18 20:35 - 2017-11-18 20:36 - 007471816 _____ (JAM Software ) C:\Users\schweine72backe\Downloads\TreeSizeFreeSetup.exe
2017-11-18 20:33 - 2017-11-18 20:33 - 007408872 _____ C:\Users\schweine72backe\Downloads\Setup_PCNotizz.exe
2017-11-18 20:33 - 2017-11-18 20:33 - 000001206 _____ C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\PC-Notizz! 7.x.LNK
2017-11-18 20:06 - 2017-11-18 20:06 - 004218288 _____ (Mathias Gerlach [aborange.de] ) C:\Users\schweine72backe\Downloads\searcher.exe
2017-11-18 19:26 - 2017-11-19 08:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aborange Searcher
2017-11-18 19:26 - 2017-11-19 08:54 - 000000000 ____D C:\Program Files (x86)\aborange Searcher
2017-11-18 19:26 - 2017-11-18 19:26 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\aborange
2017-11-18 16:24 - 2017-11-18 16:24 - 000000000 ___RD C:\Sandbox
2017-11-18 16:23 - 2017-11-28 05:17 - 000000000 ____D C:\Program Files\Sandboxie
2017-11-18 02:55 - 2017-12-11 20:12 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Winamp
2017-11-18 02:55 - 2017-11-18 02:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2017-11-18 02:55 - 2017-11-18 02:55 - 000000000 ____D C:\Program Files (x86)\Winamp
2017-11-18 02:53 - 2017-11-18 02:54 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Notepad++
2017-11-18 02:53 - 2017-11-18 02:53 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2017-11-18 02:53 - 2017-11-18 02:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2017-11-18 02:53 - 2017-11-18 02:53 - 000000000 ____D C:\Program Files (x86)\Notepad++
2017-11-18 02:01 - 2017-11-18 02:30 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\PopMan
2017-11-18 02:01 - 2017-11-18 02:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopMan
2017-11-18 02:01 - 2017-11-18 02:01 - 000000000 ____D C:\Program Files (x86)\PopMan
2017-11-18 00:15 - 2017-11-19 14:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BackToZIP
2017-11-18 00:15 - 2017-11-19 14:26 - 000000000 ____D C:\Program Files (x86)\BackToZIP
2017-11-18 00:15 - 2017-11-18 00:42 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\BackToZIP
2017-11-17 21:01 - 2017-11-22 17:02 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\FileZilla
2017-11-17 21:01 - 2017-11-19 06:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-11-17 21:01 - 2017-11-19 06:57 - 000000000 ____D C:\Program Files (x86)\FileZilla FTP Client
2017-11-17 04:44 - 2017-11-17 04:50 - 000000000 ____D C:\Users\schweine72backe\Desktop\Multimedia
2017-11-17 03:45 - 2017-11-18 20:52 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC-Adreßzz! 7.x
2017-11-17 03:45 - 2017-11-17 03:45 - 000001182 _____ C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\PC-Adreßzz! 7.x.LNK
2017-11-17 03:45 - 2017-11-17 03:45 - 000000000 ____D C:\Users\schweine72backe\PCAdress
2017-11-17 03:45 - 2017-11-17 03:45 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\pca20
2017-11-17 03:44 - 2017-11-17 03:45 - 004593240 _____ C:\Users\schweine72backe\Downloads\Setup_PCAdress7.exe
2017-11-17 02:34 - 2017-12-11 16:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-11-17 02:34 - 2017-11-17 02:34 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Skype
2017-11-17 02:29 - 2017-11-17 02:29 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Miranda
2017-11-17 02:29 - 2017-11-17 02:29 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Miranda IM
2017-11-17 02:28 - 2017-11-17 02:29 - 000000000 ____D C:\Program Files (x86)\Miranda IM
2017-11-17 02:05 - 2017-11-18 20:33 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC-Notizz! Pro
2017-11-17 02:05 - 2017-11-17 03:45 - 000000000 ____D C:\Users\schweine72backe\Documents\hastasoft
2017-11-17 02:05 - 2017-11-17 03:45 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\hastasoft
2017-11-17 02:05 - 2017-11-17 03:45 - 000000000 ____D C:\Program Files (x86)\hastasoft
2017-11-17 02:05 - 2017-11-17 02:05 - 000001206 _____ C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\PC-Notizz! 6.x.LNK
2017-11-17 02:04 - 2017-11-17 02:04 - 002652280 _____ (Harry Stahl Software) C:\Users\schweine72backe\Downloads\Setup_PCNotizz6.exe
2017-11-16 15:42 - 2017-12-01 03:01 - 127017032 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-11-15 13:17 - 2017-10-18 08:31 - 000395976 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-11-15 13:17 - 2017-10-18 07:45 - 000347336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-11-15 13:17 - 2017-10-18 03:06 - 000344064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2017-11-15 13:17 - 2017-10-18 03:06 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2017-11-15 13:17 - 2017-10-18 03:06 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2017-11-15 13:17 - 2017-10-18 03:06 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2017-11-15 13:17 - 2017-10-18 03:06 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2017-11-15 13:17 - 2017-10-18 03:06 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2017-11-15 13:17 - 2017-10-18 03:06 - 000007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2017-11-15 13:17 - 2017-10-17 00:07 - 001680616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-11-15 13:17 - 2017-10-16 23:34 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-11-15 13:17 - 2017-10-16 22:55 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-11-15 13:17 - 2017-10-14 09:38 - 025731584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-11-15 13:17 - 2017-10-14 09:23 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-11-15 13:17 - 2017-10-14 09:23 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-11-15 13:17 - 2017-10-14 09:13 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-11-15 13:17 - 2017-10-14 09:12 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-11-15 13:17 - 2017-10-14 09:11 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-11-15 13:17 - 2017-10-14 09:11 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-11-15 13:17 - 2017-10-14 09:11 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-11-15 13:17 - 2017-10-14 09:11 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-11-15 13:17 - 2017-10-14 09:09 - 005979648 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-11-15 13:17 - 2017-10-14 09:05 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-11-15 13:17 - 2017-10-14 09:04 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-11-15 13:17 - 2017-10-14 09:02 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-11-15 13:17 - 2017-10-14 09:01 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-11-15 13:17 - 2017-10-14 09:01 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-11-15 13:17 - 2017-10-14 09:01 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-11-15 13:17 - 2017-10-14 09:00 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-11-15 13:17 - 2017-10-14 08:55 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-11-15 13:17 - 2017-10-14 08:53 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-11-15 13:17 - 2017-10-14 08:47 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-11-15 13:17 - 2017-10-14 08:47 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-11-15 13:17 - 2017-10-14 08:46 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-11-15 13:17 - 2017-10-14 08:43 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-11-15 13:17 - 2017-10-14 08:43 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-11-15 13:17 - 2017-10-14 08:41 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-11-15 13:17 - 2017-10-14 08:40 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-11-15 13:17 - 2017-10-14 08:31 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-11-15 13:17 - 2017-10-14 08:30 - 015266816 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-11-15 13:17 - 2017-10-14 08:30 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-11-15 13:17 - 2017-10-14 08:29 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-11-15 13:17 - 2017-10-14 08:28 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-11-15 13:17 - 2017-10-14 08:27 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-11-15 13:17 - 2017-10-14 08:21 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-11-15 13:17 - 2017-10-14 08:14 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-11-15 13:17 - 2017-10-14 08:09 - 001544704 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-11-15 13:17 - 2017-10-14 08:03 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-11-15 13:17 - 2017-10-14 07:58 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-11-15 13:17 - 2017-10-14 07:53 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-11-15 13:17 - 2017-10-14 07:53 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-11-15 13:17 - 2017-10-14 07:52 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-11-15 13:17 - 2017-10-14 07:52 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-11-15 13:17 - 2017-10-14 07:51 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-11-15 13:17 - 2017-10-14 07:50 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-11-15 13:17 - 2017-10-14 07:47 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-11-15 13:17 - 2017-10-14 07:47 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-11-15 13:17 - 2017-10-14 07:46 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-11-15 13:17 - 2017-10-14 07:45 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-11-15 13:17 - 2017-10-14 07:45 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-11-15 13:17 - 2017-10-14 07:45 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-11-15 13:17 - 2017-10-14 07:38 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-11-15 13:17 - 2017-10-14 07:35 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-11-15 13:17 - 2017-10-14 07:35 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-11-15 13:17 - 2017-10-14 07:34 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-11-15 13:17 - 2017-10-14 07:33 - 004542464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-11-15 13:17 - 2017-10-14 07:33 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-11-15 13:17 - 2017-10-14 07:32 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-11-15 13:17 - 2017-10-14 07:31 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-11-15 13:17 - 2017-10-14 07:30 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-11-15 13:17 - 2017-10-14 07:28 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-11-15 13:17 - 2017-10-14 07:25 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-11-15 13:17 - 2017-10-14 07:24 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-11-15 13:17 - 2017-10-14 07:23 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-11-15 13:17 - 2017-10-14 07:23 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-11-15 13:17 - 2017-10-14 07:10 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-11-15 13:17 - 2017-10-14 07:07 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-11-15 13:17 - 2017-10-14 07:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-11-15 13:17 - 2017-10-12 01:58 - 000382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 014635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2017-11-15 13:17 - 2017-10-12 01:55 - 002319872 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 002058240 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000778240 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2017-11-15 13:17 - 2017-10-12 01:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2017-11-15 13:17 - 2017-10-12 01:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2017-11-15 13:17 - 2017-10-12 01:40 - 000308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-11-15 13:17 - 2017-10-12 01:39 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-11-15 13:17 - 2017-10-12 01:38 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-11-15 13:17 - 2017-10-12 01:38 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-11-15 13:17 - 2017-10-12 01:37 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2017-11-15 13:17 - 2017-10-12 01:37 - 011410944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-11-15 13:17 - 2017-10-12 01:37 - 001549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-11-15 13:17 - 2017-10-12 01:37 - 001400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-11-15 13:17 - 2017-10-12 01:37 - 001363968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
2017-11-15 13:17 - 2017-10-12 01:37 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2017-11-15 13:17 - 2017-10-12 01:37 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2017-11-15 13:17 - 2017-10-12 01:37 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2017-11-15 13:17 - 2017-10-12 01:37 - 000111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-11-15 13:17 - 2017-10-12 01:37 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-11-15 13:17 - 2017-10-12 01:37 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2017-11-15 13:17 - 2017-10-12 01:37 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2017-11-15 13:17 - 2017-10-12 01:37 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2017-11-15 13:17 - 2017-10-12 01:37 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2017-11-15 13:17 - 2017-10-12 01:37 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2017-11-15 13:17 - 2017-10-12 01:26 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-11-15 13:17 - 2017-10-12 01:26 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-11-15 13:17 - 2017-10-12 01:25 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-11-15 13:17 - 2017-10-12 01:25 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2017-11-15 13:17 - 2017-10-12 01:24 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2017-11-15 13:17 - 2017-10-12 01:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2017-11-15 13:17 - 2017-10-12 01:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2017-11-15 13:17 - 2017-10-12 01:20 - 000113152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2017-11-15 13:17 - 2017-10-12 01:16 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000995272 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-11-15 13:17 - 2017-09-07 14:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-11-15 06:14 - 2017-11-15 06:14 - 000063906 _____ C:\Users\schweine72backe\Downloads\Zugangsdaten.pdf
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-12-13 00:03 - 2016-11-03 14:30 - 000000000 ____D C:\Program Files (x86)\Adobe
2017-12-12 22:51 - 2017-03-01 12:21 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2017-12-12 22:28 - 2009-07-14 05:45 - 000021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-12 22:28 - 2009-07-14 05:45 - 000021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-12 04:17 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2017-12-11 17:10 - 2011-04-12 08:43 - 000699536 _____ C:\Windows\system32\perfh007.dat
2017-12-11 17:10 - 2011-04-12 08:43 - 000149418 _____ C:\Windows\system32\perfc007.dat
2017-12-11 17:10 - 2009-07-14 06:13 - 001620860 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-11 17:04 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-11 17:03 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-12-11 16:58 - 2016-06-13 17:02 - 000000000 ____D C:\ProgramData\AMD
2017-12-11 16:58 - 2016-06-13 16:56 - 000000000 ____D C:\Program Files\AMD
2017-12-11 16:54 - 2016-08-30 14:06 - 000000000 ____D C:\AMD
2017-12-11 15:24 - 2016-08-31 14:51 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\Opera Software
2017-12-11 15:24 - 2016-08-31 14:51 - 000000000 ____D C:\Users\schweine72backe\AppData\Local\Opera Software
2017-12-11 15:24 - 2016-08-31 14:50 - 000000000 ____D C:\Program Files (x86)\Opera
2017-12-11 15:23 - 2016-08-31 20:40 - 000001425 _____ C:\Users\schweine72backe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-12-07 12:24 - 2017-03-16 03:16 - 000000000 ____D C:\Users\schweine72backe\AppData\Roaming\KeePass
2017-12-01 03:05 - 2016-04-22 11:55 - 000000000 ____D C:\Windows\system32\MRT
2017-12-01 03:01 - 2016-04-22 11:55 - 127017032 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-11-22 14:32 - 2017-03-13 16:34 - 000000000 ____D C:\Users\schweine72backe\Desktop\MyFiles
2017-11-21 17:09 - 2016-06-13 17:01 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-11-20 04:03 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2017-11-18 23:00 - 2009-07-14 06:09 - 000000000 ____D C:\Windows\System32\Tasks\WPD
2017-11-18 22:39 - 2016-04-21 12:33 - 000000000 ____D C:\Windows\Panther
2017-11-17 03:45 - 2016-08-31 20:40 - 000000000 ____D C:\Users\schweine72backe
2017-11-17 02:07 - 2016-08-31 20:40 - 000000000 ____D C:\Users\schweine72backe\AppData\Local\VirtualStore
2017-11-16 15:20 - 2017-03-01 12:21 - 001038552 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2017-11-16 15:20 - 2017-03-01 12:21 - 000195288 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2017-11-16 15:20 - 2016-06-14 17:47 - 000199640 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\kneps.sys
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-12-09 00:59
==================== Ende von FRST.txt ============================
|
| Themen zu Opera öffnet unter Windows7 (64 Bit) gelegentlich unmotiviert Webseiten mit News |
| .dll, administrator, adobe, antivirus, asus, dateien, defender, desktop, explorer, installation, malwarebytes, microsoft, opera, ordner, prozesse, registry, scan, secure, services.exe, svchost.exe, system, temp, windows, winlogon.exe, öffnet |
Baum-Darstellung