Meine Fresse es hat gefunzt, Deine Nerven können sich erholen, wer weiß wie lange das anhält bei dem PC :D
Habe es auch nochmal mit Gmer versucht das gleiche wie oben beschrieben, Fehlermeldung von wegen keine gültige Win32-Anwendung.
Bei OTL gab es zwischendrin die Meldung: Zitat:
Es befindet sich kein Datenträger im Laufwerk. Legen Sie einen Datenträger in Laufwerk \Device\Harddisk1\DR1 ein
| Habe es ein paar Mal weggeklickt und es hat dann funktioniert. Der OTL.txt: Code:
OTL logfile created on: 02.09.2015 23:22:53 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Hortensienbewunderin\Downloads
Starter Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
1014,12 Mb Total Physical Memory | 249,30 Mb Available Physical Memory | 24,58% Memory free
1,99 Gb Paging File | 0,93 Gb Available in Paging File | 46,64% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 100,00 Gb Total Space | 76,00 Gb Free Space | 76,00% Space Free | Partition Type: NTFS
Drive D: | 183,07 Gb Total Space | 154,14 Gb Free Space | 84,20% Space Free | Partition Type: NTFS
Computer Name: HORTENSIENBEWUN | User Name: Hortensienbewunderin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\Hortensienbewunderin\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Windows\System32\Macromed\Flash\FlashUtil10n_ActiveX.exe (Adobe Systems, Inc.)
PRC - C:\Program Files\Common Files\InstantOn\InsOnWMI.exe (ASUS)
PRC - C:\Program Files\Asus\HotkeyService\HotKeyMon.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files\Asus\HotkeyService\HotkeyService.exe (ASUSTeK Computer Inc.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
PRC - C:\Program Files\Asus\CapsHook\CapsHook.exe (ASUS)
PRC - C:\Program Files\o2\Mobile Connection Manager\EMMSN.exe (Telefónica I+D)
PRC - C:\Program Files\o2\Nori\Nori.exe (Telefónica I+D)
PRC - C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
PRC - C:\Program Files\Elantech\ETDCtrlHelper.exe (ELAN Microelectronic Corp.)
========== Modules (No Company Name) ==========
MOD - C:\Program Files\o2\Mobile Connection Manager\sqlite3.dll ()
MOD - C:\Program Files\o2\Mobile Connection Manager\AgendaLib.dll ()
MOD - C:\Program Files\o2\Nori\legplgs\plgsie.dll ()
MOD - C:\Program Files\o2\Nori\legplgs\plgice.dll ()
MOD - C:\Program Files\o2\Nori\legplgs\plgalc.dll ()
MOD - C:\Program Files\o2\Nori\legplgs\plgser.dll ()
MOD - C:\Program Files\o2\Nori\legplgs\plgati.dll ()
MOD - C:\Program Files\o2\Nori\legplgs\plgnvt.dll ()
MOD - C:\Program Files\o2\Nori\legplgs\plghwi.dll ()
MOD - C:\Program Files\o2\Nori\legplgs\plgopt.dll ()
MOD - C:\Program Files\o2\Nori\legplgs\plgzte.dll ()
MOD - C:\Program Files\o2\Mobile Connection Manager\langs\de_DE_md.dll ()
MOD - C:\Windows\System32\msjetoledb40.dll ()
========== Services (SafeList) ==========
SRV - (IEEtwCollectorService) -- C:\windows\System32\IEEtwCollector.exe (Microsoft Corporation)
SRV - (DiagTrack) -- C:\Windows\System32\diagtrack.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (AsusService) -- C:\Windows\System32\AsusService.exe ()
SRV - (VideAceWindowsService) -- C:\ExpressGateUtil\VAWinService.exe ()
========== Driver Services (SafeList) ==========
DRV - (hwusb_wwanecm) -- system32\DRIVERS\ew_wwanecm.sys File not found
DRV - (hwusb_cdcacm) -- system32\DRIVERS\ew_cdcacm.sys File not found
DRV - (huawei_enumerator) -- system32\DRIVERS\ew_jubusenum.sys File not found
DRV - (ew_usbenumfilter) -- system32\DRIVERS\ew_usbenumfilter.sys File not found
DRV - (btwrchid) -- C:\windows\system32\drivers\btwrchid.sys File not found
DRV - (btwl2cap) -- system32\DRIVERS\btwl2cap.sys File not found
DRV - (btwavdt) -- C:\windows\system32\drivers\btwavdt.sys File not found
DRV - (btwaudio) -- system32\drivers\btwaudio.sys File not found
DRV - (btwampfl) -- system32\drivers\btwampfl.sys File not found
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (TsUsbGD) -- C:\Windows\System32\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV - (L1C) -- C:\Windows\System32\drivers\L1C62x86.sys (Atheros Communications, Inc.)
DRV - (AsUpIO) -- C:\Windows\System32\drivers\AsUpIO.sys ()
DRV - (AsIO) -- C:\Windows\System32\drivers\AsIO.sys ()
DRV - (ZTEusbser6k) -- C:\Windows\System32\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV - (ZTEusbnmea) -- C:\Windows\System32\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV - (ZTEusbmdm6k) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV - (massfilter) -- C:\Windows\System32\drivers\massfilter.sys (ZTE Incorporated)
DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
DRV - (wsvd) -- C:\Windows\System32\drivers\wsvd.sys (CyberLink)
DRV - (kbfiltr) -- C:\Windows\System32\drivers\kbfiltr.sys ( )
DRV - (massfilter_hs) -- C:\Windows\System32\drivers\massfilter_hs.sys (ZTE Incorporated)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [ASUSPRP] C:\Program Files\Asus\APRP\aprp.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [CapsHook] C:\windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
O4 - HKLM..\Run: [HotkeyMon] C:\windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [HotkeyService] C:\windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [VAWinAgent] C:\ExpressGateUtil\VAWinAgent.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{653B334B-D8C3-46E7-B0EB-CBBF9667E06C}: NameServer = 193.189.244.225 193.189.244.206
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E45E4D1D-6A68-4604-9040-6C715001629D}: NameServer = 193.189.244.225 193.189.244.206
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{21b7f6ca-495b-11e5-8f6c-5404a6491492}\Shell - "" = AutoRun
O33 - MountPoints2\{21b7f6ca-495b-11e5-8f6c-5404a6491492}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{21b7f6dc-495b-11e5-8f6c-5404a6491492}\Shell - "" = AutoRun
O33 - MountPoints2\{21b7f6dc-495b-11e5-8f6c-5404a6491492}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{e8d118db-48da-11e5-9103-5404a6491492}\Shell - "" = AutoRun
O33 - MountPoints2\{e8d118db-48da-11e5-9103-5404a6491492}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2015.09.02 17:25:53 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\MsSpellCheckingFacility.exe
[2015.09.02 17:25:53 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\elshyph.dll
[2015.09.02 17:25:50 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jsIntl.dll
[2015.09.02 17:25:50 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msls31.dll
[2015.09.02 17:25:50 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msrating.dll
[2015.09.02 17:25:50 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\RegisterIEPKEYs.exe
[2015.09.02 17:25:50 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jsproxy.dll
[2015.09.02 17:25:49 | 001,926,656 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\inetcpl.cpl
[2015.09.02 17:25:49 | 001,051,136 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mshtmlmedia.dll
[2015.09.02 17:25:49 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieapfltr.dll
[2015.09.02 17:25:49 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieapfltr.dat
[2015.09.02 17:25:49 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msfeeds.dll
[2015.09.02 17:25:49 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dxtmsft.dll
[2015.09.02 17:25:49 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\html.iec
[2015.09.02 17:25:49 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dxtrans.dll
[2015.09.02 17:25:49 | 000,238,288 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iedkcs32.dll
[2015.09.02 17:25:49 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\url.dll
[2015.09.02 17:25:49 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ie4uinit.exe
[2015.09.02 17:25:49 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iexpress.exe
[2015.09.02 17:25:49 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wextract.exe
[2015.09.02 17:25:49 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\inseng.dll
[2015.09.02 17:25:49 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iesetup.dll
[2015.09.02 17:25:49 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\JavaScriptCollectionAgent.dll
[2015.09.02 17:25:49 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iernonce.dll
[2015.09.02 17:25:49 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\licmgr10.dll
[2015.09.02 17:25:48 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mshtml.tlb
[2015.09.02 17:25:48 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iepeers.dll
[2015.09.02 17:25:48 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieUnatt.exe
[2015.09.02 17:25:48 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\IEAdvpack.dll
[2015.09.02 17:25:48 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwcollector.exe
[2015.09.02 17:25:48 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\MshtmlDac.dll
[2015.09.02 17:25:48 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\pngfilt.dll
[2015.09.02 17:25:48 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwproxystub.dll
[2015.09.02 17:25:48 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msfeedsbs.dll
[2015.09.02 17:25:48 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\imgutil.dll
[2015.09.02 17:25:48 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msfeedssync.exe
[2015.09.02 17:25:48 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwcollectorres.dll
[2015.09.02 17:25:47 | 004,240,384 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jscript9.dll
[2015.09.02 17:25:47 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jscript9diag.dll
[2015.09.02 17:25:47 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieui.dll
[2015.09.02 17:25:47 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iesysprep.dll
[2015.09.02 17:25:47 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\SetIEInstalledDate.exe
[2015.09.02 17:25:47 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mshtmler.dll
[2015.09.02 08:44:08 | 003,419,136 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d2d1.dll
[2015.09.01 23:04:54 | 001,987,584 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3d10warp.dll
[2015.09.01 23:04:54 | 001,251,328 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\DWrite.dll
[2015.09.01 23:01:59 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WMPhoto.dll
[2015.09.01 20:34:43 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msmpeg2vdec.dll
[2015.09.01 20:34:43 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\XpsPrint.dll
[2015.09.01 20:34:43 | 001,080,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3d10.dll
[2015.09.01 20:34:43 | 000,604,160 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3d10level9.dll
[2015.09.01 20:34:43 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\XpsGdiConverter.dll
[2015.09.01 20:34:43 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dxgi.dll
[2015.09.01 20:34:43 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3d10_1core.dll
[2015.09.01 20:34:43 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3d10core.dll
[2015.09.01 20:34:43 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WindowsCodecsExt.dll
[2015.09.01 20:34:43 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\UIAnimation.dll
[2015.09.01 20:34:43 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3d10_1.dll
[2015.09.01 20:34:43 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2015.09.01 20:34:43 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2015.09.01 20:34:43 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2015.09.01 20:34:43 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
[2015.09.01 20:34:43 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
[2015.09.01 20:34:43 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2015.09.01 20:34:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
[2015.09.01 20:34:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
[2015.09.01 20:34:43 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2015.08.31 23:16:21 | 000,635,904 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\perftrack.dll
[2015.08.31 23:16:21 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\powertracker.dll
[2015.08.31 23:03:44 | 000,186,368 | ---- | C] (ZTE Incorporated) -- C:\windows\System32\drivers\ZTEusbnet.sys
[2015.08.31 23:03:44 | 000,105,856 | ---- | C] (ZTE Incorporated) -- C:\windows\System32\drivers\ZTEusbser6k.sys
[2015.08.31 23:03:44 | 000,105,856 | ---- | C] (ZTE Incorporated) -- C:\windows\System32\drivers\ZTEusbnmeaext2.sys
[2015.08.31 23:03:44 | 000,105,856 | ---- | C] (ZTE Incorporated) -- C:\windows\System32\drivers\ZTEusbnmea.sys
[2015.08.31 23:03:44 | 000,105,856 | ---- | C] (ZTE Incorporated) -- C:\windows\System32\drivers\ZTEusbmdm6k.sys
[2015.08.31 23:03:44 | 000,014,336 | ---- | C] (ZTE) -- C:\windows\System32\drivers\ZTEusbccid.sys
[2015.08.31 23:03:44 | 000,010,240 | ---- | C] (ZTE Incorporated) -- C:\windows\System32\drivers\massfilter.sys
[2015.08.31 23:03:44 | 000,009,728 | ---- | C] (ZTE Incorporated) -- C:\windows\System32\drivers\massfilter_hs.sys
[2015.08.31 23:03:41 | 000,000,000 | ---D | C] -- C:\windows\massfilter
[2015.08.31 23:03:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\o2
[2015.08.31 23:03:33 | 000,000,000 | ---D | C] -- C:\Program Files\o2
[2015.08.31 08:33:16 | 000,000,000 | ---D | C] -- C:\windows\Migration
[2015.08.31 08:33:15 | 000,000,000 | --SD | C] -- C:\windows\System32\CompatTel
[2015.08.31 08:33:15 | 000,000,000 | ---D | C] -- C:\windows\System32\appraiser
[2015.08.30 21:00:37 | 000,099,480 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\infocardapi.dll
[2015.08.30 21:00:34 | 000,008,856 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\icardres.dll
[2015.08.30 21:00:26 | 000,619,672 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\icardagt.exe
[2015.08.30 21:00:16 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\TsWpfWrp.exe
[2015.08.30 18:35:39 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\fsutil.exe
[2015.08.30 18:35:24 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\windows\explorer.exe
[2015.08.30 18:34:13 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\KBDYAK.DLL
[2015.08.30 18:34:13 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\KBDTAT.DLL
[2015.08.30 18:34:13 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\KBDRU1.DLL
[2015.08.30 18:34:13 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\KBDBASH.DLL
[2015.08.30 18:34:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\KBDRU.DLL
[2015.08.30 15:56:37 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\Desktop\behalten
[2015.08.30 15:22:34 | 001,167,520 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\aitstatic.exe
[2015.08.30 15:22:34 | 000,598,528 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\generaltel.dll
[2015.08.30 15:22:34 | 000,015,808 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\CompatTelRunner.exe
[2015.08.30 15:22:33 | 000,952,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\appraiser.dll
[2015.08.30 15:22:33 | 000,934,400 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\aeinv.dll
[2015.08.30 15:22:33 | 000,635,904 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\invagent.dll
[2015.08.30 15:22:33 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\devinv.dll
[2015.08.30 15:22:33 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\aepic.dll
[2015.08.30 15:22:33 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\acmigration.dll
[2015.08.30 15:22:32 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\aepdu.dll
[2015.08.30 08:52:17 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WUDFPlatform.dll
[2015.08.30 08:52:16 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WUDFx.dll
[2015.08.30 08:52:16 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WUDFCoinstaller.dll
[2015.08.30 03:13:49 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2015.08.30 01:42:48 | 003,989,952 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ntkrnlpa.exe
[2015.08.30 01:42:47 | 003,934,656 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ntoskrnl.exe
[2015.08.30 01:42:45 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\adtschema.dll
[2015.08.30 01:42:44 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\srcore.dll
[2015.08.30 01:42:44 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\rstrui.exe
[2015.08.30 01:42:44 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ncrypt.dll
[2015.08.30 01:42:44 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\csrsrv.dll
[2015.08.30 01:42:43 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msaudite.dll
[2015.08.30 01:42:43 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\auditpol.exe
[2015.08.30 01:42:43 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\sspisrv.dll
[2015.08.30 01:42:43 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msmmsp.dll
[2015.08.30 01:42:42 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msobjs.dll
[2015.08.30 01:42:42 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\apisetschema.dll
[2015.08.30 01:20:38 | 000,744,960 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\blackbox.dll
[2015.08.30 01:20:37 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drmv2clt.dll
[2015.08.30 01:20:36 | 003,209,728 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mf.dll
[2015.08.30 01:20:36 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wmdrmsdk.dll
[2015.08.30 01:20:32 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drmmgrtn.dll
[2015.08.30 01:20:31 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\AUDIOKSE.dll
[2015.08.30 01:20:31 | 000,409,272 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ci.dll
[2015.08.30 01:20:30 | 001,329,664 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\quartz.dll
[2015.08.30 01:20:30 | 000,521,384 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\winload.exe
[2015.08.30 01:20:30 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\evr.dll
[2015.08.30 01:20:30 | 000,455,752 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\winresume.exe
[2015.08.30 01:20:29 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\qdvd.dll
[2015.08.30 01:20:29 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mfplat.dll
[2015.08.30 01:20:28 | 000,374,784 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\AudioEng.dll
[2015.08.30 01:20:28 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\EncDump.dll
[2015.08.30 01:20:28 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\AudioSes.dll
[2015.08.30 01:20:26 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msscp.dll
[2015.08.30 01:20:26 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msnetobj.dll
[2015.08.30 01:20:26 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\audiodg.exe
[2015.08.30 01:20:26 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\appidapi.dll
[2015.08.30 01:20:26 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\rrinstaller.exe
[2015.08.30 01:20:25 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mfps.dll
[2015.08.30 01:20:25 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\appidpolicyconverter.exe
[2015.08.30 01:20:25 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\setbcdlocale.dll
[2015.08.30 01:20:25 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\pcadm.dll
[2015.08.30 01:20:25 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mfpmp.exe
[2015.08.30 01:20:25 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\appidcertstorecheck.exe
[2015.08.30 01:20:25 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\pcawrk.exe
[2015.08.30 01:20:24 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\pcaevts.dll
[2015.08.30 01:20:24 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\pcalua.exe
[2015.08.30 01:20:24 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mferror.dll
[2015.08.30 00:41:22 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\tquery.dll
[2015.08.30 00:41:22 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mssrch.dll
[2015.08.30 00:41:21 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mssvp.dll
[2015.08.30 00:41:21 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mssph.dll
[2015.08.30 00:41:21 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mssphtb.dll
[2015.08.30 00:41:21 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msscntrs.dll
[2015.08.30 00:40:56 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\cdosys.dll
[2015.08.30 00:40:32 | 000,853,504 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\diagtrack.dll
[2015.08.30 00:40:32 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\UtcResources.dll
[2015.08.30 00:40:30 | 000,635,392 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\tdh.dll
[2015.08.30 00:40:28 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\tracerpt.exe
[2015.08.30 00:40:28 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\logman.exe
[2015.08.30 00:40:27 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\typeperf.exe
[2015.08.30 00:40:27 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\relog.exe
[2015.08.30 00:40:27 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\diskperf.exe
[2015.08.30 00:38:48 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WMVDECOD.DLL
[2015.08.30 00:28:10 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\sdbinst.exe
[2015.08.30 00:26:13 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\rdpcorekmts.dll
[2015.08.30 00:26:13 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\rdrmemptylst.exe
[2015.08.30 00:26:12 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\rdpwsx.dll
[2015.08.29 22:34:18 | 002,943,488 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wucltux.dll
[2015.08.29 22:34:18 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wuapi.dll
[2015.08.29 22:34:18 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wuwebv.dll
[2015.08.29 22:34:18 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wudriver.dll
[2015.08.29 22:34:18 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wups2.dll
[2015.08.29 22:34:18 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wuapp.exe
[2015.08.29 22:34:18 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wups.dll
[2015.08.29 22:34:18 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wu.upgrade.ps.dll
[2015.08.29 22:34:17 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WinSetupUI.dll
[2015.08.29 22:31:03 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\psisdecd.dll
[2015.08.29 22:31:03 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\psisrndr.ax
[2015.08.29 22:20:49 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3d11.dll
[2015.08.29 22:14:40 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\CPFilters.dll
[2015.08.29 22:14:39 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\sbe.dll
[2015.08.29 22:14:39 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mpg2splt.ax
[2015.08.29 22:09:06 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\qedit.dll
[2015.08.29 22:03:09 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\gameux.dll
[2015.08.29 22:03:09 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\Wpc.dll
[2015.08.29 22:03:09 | 000,046,592 | ---- | C] (Microsoft) -- C:\windows\System32\fpb.rs
[2015.08.29 22:03:09 | 000,045,568 | ---- | C] (Microsoft) -- C:\windows\System32\oflc-nz.rs
[2015.08.29 22:03:09 | 000,044,544 | ---- | C] (Microsoft) -- C:\windows\System32\pegibbfc.rs
[2015.08.29 22:03:09 | 000,043,520 | ---- | C] (Microsoft) -- C:\windows\System32\csrr.rs
[2015.08.29 22:03:09 | 000,040,960 | ---- | C] (Microsoft) -- C:\windows\System32\cob-au.rs
[2015.08.29 22:03:09 | 000,030,720 | ---- | C] (Microsoft) -- C:\windows\System32\usk.rs
[2015.08.29 22:03:09 | 000,021,504 | ---- | C] (Microsoft) -- C:\windows\System32\grb.rs
[2015.08.29 22:03:09 | 000,020,480 | ---- | C] (Microsoft) -- C:\windows\System32\pegi-pt.rs
[2015.08.29 22:03:09 | 000,020,480 | ---- | C] (Microsoft) -- C:\windows\System32\pegi.rs
[2015.08.29 22:03:09 | 000,015,360 | ---- | C] (Microsoft) -- C:\windows\System32\djctq.rs
[2015.08.29 22:03:05 | 000,055,296 | ---- | C] (Microsoft) -- C:\windows\System32\cero.rs
[2015.08.29 22:03:05 | 000,051,712 | ---- | C] (Microsoft) -- C:\windows\System32\esrb.rs
[2015.08.29 22:03:05 | 000,023,552 | ---- | C] (Microsoft) -- C:\windows\System32\oflc.rs
[2015.08.29 22:03:05 | 000,020,480 | ---- | C] (Microsoft) -- C:\windows\System32\pegi-fi.rs
[2015.08.29 21:55:28 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\InkEd.dll
[2015.08.29 21:55:24 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\poqexec.exe
[2015.08.29 21:47:07 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\basesrv.dll
[2015.08.29 21:44:56 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\spwmp.dll
[2015.08.29 21:44:56 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msdxm.ocx
[2015.08.29 21:44:56 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dxmasf.dll
[2015.08.29 21:44:55 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wmploc.DLL
[2015.08.29 21:44:44 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\conhost.exe
[2015.08.29 21:44:44 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\winsrv.dll
[2015.08.29 21:44:43 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-security-base-l1-1-0.dll
[2015.08.29 21:44:43 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-file-l1-1-0.dll
[2015.08.29 21:44:43 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2015.08.29 21:44:43 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2015.08.29 21:44:43 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2015.08.29 21:44:43 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2015.08.29 21:44:43 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2015.08.29 21:44:43 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2015.08.29 21:44:43 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-util-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-string-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-io-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2015.08.29 21:44:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-console-l1-1-0.dll
[2015.08.29 21:44:32 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mfc42u.dll
[2015.08.29 21:44:32 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mfc42.dll
[2015.08.29 21:25:37 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WSManMigrationPlugin.dll
[2015.08.29 21:25:37 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WsmWmiPl.dll
[2015.08.29 21:25:37 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WSManHTTPConfig.exe
[2015.08.29 21:25:37 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WsmAuto.dll
[2015.08.29 21:19:52 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\hidclass.sys
[2015.08.29 21:19:52 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\hidparse.sys
[2015.08.29 21:18:20 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\RNDISMP.sys
[2015.08.29 21:18:17 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\SmartcardCredentialProvider.dll
[2015.08.29 21:13:11 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\aaclient.dll
[2015.08.29 21:13:11 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\tsgqec.dll
[2015.08.29 21:06:41 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\usb8023.sys
[2015.08.29 20:58:07 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dpnet.dll
[2015.08.29 20:58:05 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\prevhost.exe
[2015.08.29 20:48:55 | 001,805,824 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\authui.dll
[2015.08.29 20:48:55 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msihnd.dll
[2015.08.29 20:48:55 | 000,101,824 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\consent.exe
[2015.08.29 20:48:55 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msimsg.dll
[2015.08.29 20:48:22 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dnscacheugc.exe
[2015.08.29 17:52:52 | 000,219,072 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\dxgmms1.sys
[2015.08.29 17:52:52 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\cdd.dll
[2015.08.29 17:52:41 | 000,538,112 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\objsel.dll
[2015.08.29 17:52:40 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\cngprovider.dll
[2015.08.29 17:52:40 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\adprovider.dll
[2015.08.29 17:52:40 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\capiprovider.dll
[2015.08.29 17:52:40 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dpapiprovider.dll
[2015.08.29 17:52:40 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dimsroam.dll
[2015.08.29 17:52:39 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wincredprovider.dll
[2015.08.29 17:50:37 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\IMJP10K.DLL
[2015.08.29 17:50:35 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\cscript.exe
[2015.08.29 17:50:32 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\OxpsConverter.exe
[2015.08.29 17:42:33 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\timedate.cpl
[2015.08.29 17:34:27 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\cryptdlg.dll
[2015.08.29 17:19:10 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wwanprotdim.dll
[2015.08.29 17:19:09 | 000,054,656 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\stream.sys
[2015.08.29 17:19:08 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\clfsw32.dll
[2015.08.29 17:19:03 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\scavengeui.dll
[2015.08.29 17:18:51 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\certutil.exe
[2015.08.29 17:18:50 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\certenc.dll
[2015.08.29 17:17:01 | 000,149,440 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\storport.sys
[2015.08.29 17:17:01 | 000,027,072 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\Diskdump.sys
[2015.08.29 17:17:01 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iologmsg.dll
[2015.08.29 17:16:55 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\netcorehc.dll
[2015.08.29 17:16:54 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\netevent.dll
[2015.08.29 17:10:14 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\FXSCOVER.exe
[2015.08.29 17:10:10 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\tzres.dll
[2015.08.29 17:10:02 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\osk.exe
[2015.08.29 17:09:32 | 002,384,384 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\win32k.sys
[2015.08.29 17:09:32 | 000,299,520 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\System32\atmfd.dll
[2015.08.29 17:09:30 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\fontsub.dll
[2015.08.29 17:09:30 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\windows\System32\atmlib.dll
[2015.08.29 17:09:30 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dciman32.dll
[2015.08.29 17:08:20 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\EncDec.dll
[2015.08.29 17:08:09 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\browcli.dll
[2015.08.29 17:03:27 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\portcls.sys
[2015.08.29 17:03:27 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\drmk.sys
[2015.08.29 17:02:13 | 000,793,600 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\TSWorkspace.dll
[2015.08.29 17:01:32 | 000,240,576 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\netio.sys
[2015.08.29 17:01:32 | 000,187,840 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\FWPKCLNT.SYS
[2015.08.29 17:00:18 | 000,156,824 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mscorier.dll
[2015.08.29 17:00:18 | 000,081,560 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mscories.dll
[2015.08.29 16:58:50 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\packager.dll
[2015.08.29 16:58:48 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\TSWbPrxy.exe
[2015.08.29 16:56:14 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\webio.dll
[2015.08.29 16:55:47 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\odbcjt32.dll
[2015.08.29 16:55:47 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\odbctrac.dll
[2015.08.29 16:55:47 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\odbccp32.dll
[2015.08.29 16:55:47 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\odbccu32.dll
[2015.08.29 16:55:47 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\odbccr32.dll
[2015.08.29 16:54:52 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\synceng.dll
[2015.08.29 16:54:51 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ubpm.dll
[2015.08.29 16:54:00 | 000,133,056 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\ataport.sys
[2015.08.29 16:53:59 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\charmap.exe
[2015.08.29 16:53:54 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\nshwfp.dll
[2015.08.29 16:53:54 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\FWPUCLNT.DLL
[2015.08.29 16:51:32 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\taskhost.exe
[2015.08.29 16:51:30 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dhcpcore6.dll
[2015.08.29 16:51:30 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dhcpcsvc6.dll
[2015.08.29 16:49:12 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wer.dll
[2015.08.29 16:48:27 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ncsi.dll
[2015.08.29 16:47:48 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\cewmdm.dll
[2015.08.29 16:47:21 | 000,047,720 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\WdfLdr.sys
[2015.08.29 16:47:21 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\Wdfres.dll
[2015.08.29 16:36:27 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msxml6r.dll
[2015.08.29 16:36:27 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msxml3r.dll
[2015.08.29 16:36:20 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\usbport.sys
[2015.08.29 16:36:20 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\usbd.sys
[2015.08.29 16:36:16 | 000,594,944 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\RMActivate_isv.exe
[2015.08.29 16:36:16 | 000,572,416 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\RMActivate.exe
[2015.08.29 16:36:16 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\RMActivate_ssp.exe
[2015.08.29 16:36:16 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\RMActivate_ssp_isv.exe
[2015.08.29 16:36:16 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\secproc.dll
[2015.08.29 16:36:16 | 000,423,936 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\secproc_isv.dll
[2015.08.29 16:36:15 | 000,390,144 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msdrm.dll
[2015.08.29 16:36:15 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\secproc_ssp_isv.dll
[2015.08.29 16:36:15 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\secproc_ssp.dll
[2015.08.29 10:27:39 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\rdpcore.dll
[2015.08.27 00:19:51 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\Documents\E-Cam
[2015.08.26 08:27:27 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\Desktop\Trojaner-Board
[2015.08.23 10:15:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Mobile Partner
[2015.08.23 10:14:30 | 001,112,288 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WdfCoInstaller01007.dll
[2015.08.23 10:14:30 | 001,112,288 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\WdfCoInstaller01007.dll
[2015.08.23 10:13:24 | 000,000,000 | ---D | C] -- C:\ProgramData\DatacardService
[2015.08.23 08:27:58 | 000,246,952 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\MpSigStub.exe
[2015.08.23 07:35:29 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2015.08.23 02:00:07 | 000,000,000 | -HSD | C] -- C:\Boot
[2015.08.23 01:03:54 | 000,000,000 | ---D | C] -- C:\windows\SoftwareDistribution
[2015.08.23 01:01:05 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2015.08.22 17:31:12 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Local\Diagnostics
[2015.08.22 16:47:39 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Roaming\Telefónica
[2015.08.22 16:16:19 | 000,000,000 | ---D | C] -- C:\windows\ConfigSetRoot
[2015.08.22 16:15:27 | 000,000,000 | -H-D | C] -- C:\ExpressGateUtil
[2015.08.22 16:12:34 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Local\VirtualStore
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\Vorlagen
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\AppData\Local\Verlauf
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\AppData\Local\Temporary Internet Files
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\Startmenü
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\SendTo
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\Recent
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\Netzwerkumgebung
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\Lokale Einstellungen
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\Documents\Eigene Videos
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\Documents\Eigene Musik
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\Eigene Dateien
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\Documents\Eigene Bilder
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\Druckumgebung
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\Cookies
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\AppData\Local\Anwendungsdaten
[2015.08.22 16:12:32 | 000,000,000 | -HSD | C] -- C:\Users\Hortensienbewunderin\Anwendungsdaten
[2015.08.22 16:12:29 | 000,000,000 | --SD | C] -- C:\Users\Hortensienbewunderin\AppData\Roaming\Microsoft
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\Videos
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\Searches
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\Saved Games
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\Pictures
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\Music
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\Links
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\Favorites
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\Downloads
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\Documents
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\Desktop
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\Contacts
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2015.08.22 16:12:29 | 000,000,000 | R--D | C] -- C:\Users\Hortensienbewunderin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2015.08.22 16:12:29 | 000,000,000 | -H-D | C] -- C:\Users\Hortensienbewunderin\AppData
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Local\Windows Live
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Titanium
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Local\Temp
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Local\Microsoft
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Roaming\Macromedia
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Roaming\InstallShield
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Roaming\Identities
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Roaming\E-Cam
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\Documents\Bluetooth Exchange Folder
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\Documents\Asus WebStorage
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Roaming\ASUS WebStorage
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Local\ASUS
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Roaming\Adobe
[2015.08.22 16:12:29 | 000,000,000 | ---D | C] -- C:\Users\Hortensienbewunderin\AppData\Local\Adobe
[2015.08.22 16:10:45 | 000,000,000 | -HSD | C] -- C:\Recovery
========== Files - Modified Within 30 Days ==========
[2015.09.02 19:55:57 | 000,009,696 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015.09.02 19:55:57 | 000,009,696 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015.09.02 19:45:28 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2015.09.02 19:40:18 | 797,532,160 | -HS- | M] () -- C:\hiberfil.sys
[2015.09.02 17:25:53 | 000,646,144 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\MsSpellCheckingFacility.exe
[2015.09.02 17:25:53 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\elshyph.dll
[2015.09.02 17:25:50 | 000,645,120 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\jsIntl.dll
[2015.09.02 17:25:50 | 000,182,272 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msls31.dll
[2015.09.02 17:25:50 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msrating.dll
[2015.09.02 17:25:50 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\RegisterIEPKEYs.exe
[2015.09.02 17:25:50 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\jsproxy.dll
[2015.09.02 17:25:49 | 001,926,656 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\inetcpl.cpl
[2015.09.02 17:25:49 | 001,051,136 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mshtmlmedia.dll
[2015.09.02 17:25:49 | 000,703,488 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieapfltr.dll
[2015.09.02 17:25:49 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieapfltr.dat
[2015.09.02 17:25:49 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msfeeds.dll
[2015.09.02 17:25:49 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dxtmsft.dll
[2015.09.02 17:25:49 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\html.iec
[2015.09.02 17:25:49 | 000,244,736 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dxtrans.dll
[2015.09.02 17:25:49 | 000,238,288 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iedkcs32.dll
[2015.09.02 17:25:49 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\url.dll
[2015.09.02 17:25:49 | 000,208,896 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ie4uinit.exe
[2015.09.02 17:25:49 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iexpress.exe
[2015.09.02 17:25:49 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\wextract.exe
[2015.09.02 17:25:49 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\inseng.dll
[2015.09.02 17:25:49 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iesetup.dll
[2015.09.02 17:25:49 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\JavaScriptCollectionAgent.dll
[2015.09.02 17:25:49 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iernonce.dll
[2015.09.02 17:25:49 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\licmgr10.dll
[2015.09.02 17:25:49 | 000,016,284 | ---- | M] () -- C:\windows\System32\ieuinit.inf
[2015.09.02 17:25:48 | 002,724,864 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mshtml.tlb
[2015.09.02 17:25:48 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iepeers.dll
[2015.09.02 17:25:48 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieUnatt.exe
[2015.09.02 17:25:48 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\IEAdvpack.dll
[2015.09.02 17:25:48 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieetwcollector.exe
[2015.09.02 17:25:48 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\MshtmlDac.dll
[2015.09.02 17:25:48 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\pngfilt.dll
[2015.09.02 17:25:48 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieetwproxystub.dll
[2015.09.02 17:25:48 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msfeedsbs.dll
[2015.09.02 17:25:48 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\imgutil.dll
[2015.09.02 17:25:48 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msfeedssync.exe
[2015.09.02 17:25:48 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieetwcollectorres.dll
[2015.09.02 17:25:47 | 004,240,384 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\jscript9.dll
[2015.09.02 17:25:47 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\jscript9diag.dll
[2015.09.02 17:25:47 | 000,440,832 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieui.dll
[2015.09.02 17:25:47 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iesysprep.dll
[2015.09.02 17:25:47 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\SetIEInstalledDate.exe
[2015.09.02 17:25:47 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mshtmler.dll
[2015.09.02 12:51:48 | 000,003,502 | ---- | M] () -- C:\Users\Hortensienbewunderin\Documents\mail.rtf
[2015.09.01 22:18:18 | 000,001,728 | ---- | M] () -- C:\Users\Hortensienbewunderin\Documents\Ausgaen.rtf
[2015.09.01 20:34:43 | 002,284,544 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msmpeg2vdec.dll
[2015.09.01 20:34:43 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\XpsPrint.dll
[2015.09.01 20:34:43 | 001,080,832 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\d3d10.dll
[2015.09.01 20:34:43 | 000,604,160 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\d3d10level9.dll
[2015.09.01 20:34:43 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\XpsGdiConverter.dll
[2015.09.01 20:34:43 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dxgi.dll
[2015.09.01 20:34:43 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\d3d10_1core.dll
[2015.09.01 20:34:43 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\d3d10core.dll
[2015.09.01 20:34:43 | 000,207,872 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\WindowsCodecsExt.dll
[2015.09.01 20:34:43 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\UIAnimation.dll
[2015.09.01 20:34:43 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\d3d10_1.dll
[2015.09.01 20:34:43 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2015.09.01 20:34:43 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2015.09.01 20:34:43 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2015.09.01 20:34:43 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
[2015.09.01 20:34:43 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
[2015.09.01 20:34:43 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2015.09.01 20:34:43 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
[2015.09.01 20:34:43 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
[2015.09.01 20:34:43 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2015.09.01 07:57:49 | 000,655,278 | ---- | M] () -- C:\windows\System32\perfh007.dat
[2015.09.01 07:57:49 | 000,618,602 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2015.09.01 07:57:49 | 000,130,146 | ---- | M] () -- C:\windows\System32\perfc007.dat
[2015.09.01 07:57:49 | 000,107,320 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2015.08.31 23:04:33 | 000,002,022 | ---- | M] () -- C:\Users\Public\Desktop\8717.lnk
[2015.08.31 22:23:02 | 000,263,848 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT
[2015.08.26 10:55:14 | 000,001,252 | ---- | M] () -- C:\Users\Hortensienbewunderin\Desktop\Disk Cleanup.lnk
[2015.08.26 08:26:28 | 000,000,000 | ---- | M] () -- C:\Users\Hortensienbewunderin\defogger_reenable
[2015.08.24 08:06:21 | 000,099,018 | ---- | M] () -- C:\Users\Hortensienbewunderin\Desktop\Gmer-19357.exe
[2015.08.24 06:51:33 | 000,050,477 | ---- | M] () -- C:\Users\Hortensienbewunderin\Desktop\Defogger.exe
[2015.08.23 10:14:57 | 000,000,000 | -H-- | M] () -- C:\windows\System32\drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
[2015.08.23 08:42:02 | 000,001,290 | ---- | M] () -- C:\Users\Hortensienbewunderin\Desktop\dfrgui.lnk
[2015.08.23 01:10:21 | 000,150,011 | ---- | M] () -- C:\windows\System32\license.rtf
[2015.08.22 16:15:31 | 000,001,514 | ---- | M] () -- C:\Users\Public\Desktop\OS Switch.lnk
[2015.08.22 16:14:21 | 000,001,158 | ---- | M] () -- C:\Users\Public\Desktop\eBay.lnk
[2015.08.22 16:14:21 | 000,001,108 | ---- | M] () -- C:\Users\Public\Desktop\E-Manual.lnk
========== Files Created - No Company Name ==========
[2015.09.02 17:25:49 | 000,016,284 | ---- | C] () -- C:\windows\System32\ieuinit.inf
[2015.08.31 23:04:33 | 000,002,022 | ---- | C] () -- C:\Users\Public\Desktop\8717.lnk
[2015.08.30 08:52:16 | 000,000,003 | ---- | C] () -- C:\windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2015.08.29 16:47:21 | 000,000,003 | ---- | C] () -- C:\windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2015.08.26 10:55:14 | 000,001,252 | ---- | C] () -- C:\Users\Hortensienbewunderin\Desktop\Disk Cleanup.lnk
[2015.08.26 08:26:28 | 000,000,000 | ---- | C] () -- C:\Users\Hortensienbewunderin\defogger_reenable
[2015.08.24 08:04:04 | 000,099,018 | ---- | C] () -- C:\Users\Hortensienbewunderin\Desktop\Gmer-19357.exe
[2015.08.24 06:51:25 | 000,050,477 | ---- | C] () -- C:\Users\Hortensienbewunderin\Desktop\Defogger.exe
[2015.08.23 10:14:57 | 000,000,000 | -H-- | C] () -- C:\windows\System32\drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
[2015.08.23 10:11:31 | 000,003,502 | ---- | C] () -- C:\Users\Hortensienbewunderin\Documents\mail.rtf
[2015.08.23 08:42:02 | 000,001,290 | ---- | C] () -- C:\Users\Hortensienbewunderin\Desktop\dfrgui.lnk
[2015.08.23 02:00:07 | 000,391,640 | RHS- | C] () -- C:\bootmgr
[2015.08.23 01:01:06 | 797,532,160 | -HS- | C] () -- C:\hiberfil.sys
[2015.08.22 19:02:32 | 000,001,728 | ---- | C] () -- C:\Users\Hortensienbewunderin\Documents\Ausgaen.rtf
[2015.08.22 16:16:42 | 000,005,576 | ---- | C] () -- C:\windows\Language.ini
[2015.08.22 16:15:30 | 000,001,514 | ---- | C] () -- C:\Users\Public\Desktop\OS Switch.lnk
[2015.08.22 16:14:21 | 000,001,158 | ---- | C] () -- C:\Users\Public\Desktop\eBay.lnk
[2015.08.22 16:14:21 | 000,001,108 | ---- | C] () -- C:\Users\Public\Desktop\E-Manual.lnk
[2015.08.22 16:14:20 | 000,000,520 | ---- | C] () -- C:\windows\System32\drivers\RTEQEX0.dat
[2015.08.22 16:12:29 | 000,001,413 | ---- | C] () -- C:\Users\Hortensienbewunderin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011.04.21 02:56:11 | 000,131,984 | ---- | C] () -- C:\ProgramData\FullRemove.exe
========== ZeroAccess Check ==========
[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015.07.10 19:34:07 | 012,875,776 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:04 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== Files - Unicode (All) ==========
[2015.08.23 07:32:46 | 000,000,059 | ---- | M] ()(C:\windows\System32\??) -- C:\windows\System32\Ȏ
[2015.08.23 07:32:46 | 000,000,059 | ---- | C] ()(C:\windows\System32\??) -- C:\windows\System32\Ȏ
[2015.08.22 16:17:03 | 000,000,059 | ---- | M] ()(C:\windows\System32\?o) -- C:\windows\System32\ǒ
[2015.08.22 16:17:03 | 000,000,059 | ---- | C] ()(C:\windows\System32\?o) -- C:\windows\System32\ǒ
< End of report >
Der Extras.txt: Code:
OTL Extras logfile created on: 02.09.2015 23:22:53 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Hortensienbewunderin\Downloads
Starter Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
1014,12 Mb Total Physical Memory | 249,30 Mb Available Physical Memory | 24,58% Memory free
1,99 Gb Paging File | 0,93 Gb Available in Paging File | 46,64% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 100,00 Gb Total Space | 76,00 Gb Free Space | 76,00% Space Free | Partition Type: NTFS
Drive D: | 183,07 Gb Total Space | 154,14 Gb Free Space | 84,20% Space Free | Partition Type: NTFS
Computer Name: HORTENSIENBEWUN | User Name: Hortensienbewunderin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\windows\winhlp32.exe (Microsoft Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{A58E7306-2B16-433F-B710-E19B85524A0A}" = lport=8182 | protocol=6 | dir=in | name=java(tm) platform se binary |
"{BA6DF6ED-66E8-4241-8E9E-991536B4990C}" = lport=5353 | protocol=17 | dir=in | name=java(tm) platform se binary |
"{C5E3C9ED-BB47-432C-9821-0D3D264CF425}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{CA3E3652-B45B-4453-854C-8560416431CA}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{9DF15337-4E25-42D6-AFE8-E4F24E383B81}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{BAF7435B-578D-471D-BF62-6ECDEE6629E1}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{CA2F4121-A03B-4CCD-860D-E8B1FA42BFAF}" = dir=in | app=c:\program files\windows live\mesh\moe.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02602409-9189-4567-BC07-562605243B69}" = Windows Live Remote Client Resources
"{05E379CC-F626-4E7D-8354-463865B303BF}" = Windows Live UX Platform Language Pack
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0F1A2E4E-E2EE-4806-B7CE-356D83A3CDEB}" = Windows Live Family Safety
"{14B441B7-774D-4170-98EA-A13667AE6218}" = Windows Live Writer Resources
"{17504ED4-DB08-40A8-81C2-27D8C01581DA}" = Windows Live Remote Service Resources
"{17780F99-A9DF-450B-81B3-6781B20A17A8}" = FontResizer
"{185AFA7A-F63E-450B-94AA-011CAC18090E}" = E-Cam
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Client Installation Program
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{294BF709-D758-4363-8D75-01479AD20927}" = Windows Live Family Safety
"{2A07C35B-8384-4DA4-9A95-442B6C89A073}" = Windows Live Essentials
"{2B4E24A0-A06F-488D-87D8-16738E5E1104}" = Windows Live Family Safety
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{341697D8-9923-445E-B42A-529E5A99CB7A}" = syncables desktop SE
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{36B0DC39-3282-40EB-8587-B875CE46C3A7}" = ExpressGateCloud
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{3A65A74A-5B6E-451A-92D8-50F1182BBE9A}" = Windows Live Remote Service Resources
"{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer
"{3D0C22FA-96D7-4789-BC5B-991A5A99BFFA}" = Windows Live Messenger
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3F4143A1-9C21-4011-8679-3BC1014C6886}" = Windows Live Mesh
"{40BFD84C-64CD-42CC-9909-8734C50429C6}" = Windows Live UX Platform Language Pack
"{41D6CED7-65E8-4EBB-BB1A-B45E2D8CF6D7}" = Windows Live Family Safety
"{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = CyberLink PowerRecover
"{464B3406-A4D0-4914-910F-7CA4380DCC13}" = Windows Live Remote Client Resources
"{46872828-6453-4138-BE1C-CE35FBF67978}" = Windows Live Mesh
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{4B1EDAFC-B0EB-465F-886C-24FAC1BED2AC}" = Windows Live Remote Client Resources
"{4B5092B6-F231-4D18-83BC-2618B729CA45}" = CapsHook
"{4FCBCF89-1823-4D97-A6F2-0E8DD66E273A}" = Broadcom Wireless Network Adapter
"{55D003F4-9599-44BF-BA9E-95D060730DD3}" = Contrôle ActiveX Windows Live Mesh pour connexions à distance
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{6057E21C-ABE9-4059-AE3E-3BEB9925E660}" = Windows Live Messenger
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{677AAD91-1790-4FC5-B285-0E6A9D65F7DC}" = Windows Live Mail
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6A563426-3474-41C6-B847-42B39F1485B2}" = Windows Live Messenger
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{71C0E38E-09F2-4386-9977-404D4F6640CD}" = Hotkey Service
"{73FC3510-6421-40F7-9503-EDAE4D0CF70D}" = Windows Live Photo Common
"{749F674B-2674-47E8-879C-5626A06B2A91}" = InstantOn
"{7E017923-16F8-4E32-94EF-0A150BD196FE}" = Windows Live Writer
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}" = Windows Live Mesh
"{845E0BCB-8C8D-4FAB-8588-AD5FFD156C95}" = Windows Live Remote Service Resources
"{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
"{873E4648-6F6E-47F6-A7B2-A6F8DFABDCE6}" = Windows Live Messenger
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}" = Ralink RT2860 Wireless LAN Card
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{93E464B3-D075-4989-87FD-A828B5C308B1}" = Windows Live Writer Resources
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{9BD262D0-B788-4546-A0A5-F4F56EC3834B}" = Windows Live Photo Common
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A60B3BF0-954B-42AF-B8D8-2C1D34B613AA}" = Windows Live Photo Gallery
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB93C51F-71F9-4A28-8134-FE1B5B9373E9}" = Windows Live Remote Service Resources
"{AC0628FF-532F-4800-91EC-40903B04682F}" = Windows Live Remote Service Resources
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.1 MUI
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C32CE55C-12BA-4951-8797-0967FDEF556F}" = Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{CB7224D9-6DCA-43F1-8F83-6B1E39A00F92}" = Windows Live Movie Maker
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D588365A-AE39-4F27-BDAE-B4E72C8E900C}" = Windows Live Mail
"{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}" = Windows Live UX Platform Language Pack
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DE7C13A6-E4EA-4296-B0D5-5D7E8AD69501}" = Windows Live Writer
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DEF91E0F-D266-453D-B6F2-1BA002B40CB6}" = Windows Live Essentials
"{DFDBE1F9-04CE-4645-BB6C-4590EABC7A9C}" = Windows Live Remote Client Resources
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{ED16B700-D91F-44B0-867C-7EB5253CA38D}" = Raccolta foto di Windows Live
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0CCBE54-9132-44E9-82DF-CD364AD5C22D}" = Windows Live Remote Client Resources
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F53D678E-238F-4A71-9742-08BB6774E9DC}" = Windows Live Family Safety
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FCFBA290-CB48-4AF1-A241-2685AEDEDD66}" = Windows Live Family Safety
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF3DFA01-1E98-46B4-A065-DA8AD47C9598}" = Windows Live Movie Maker
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Asus Vibe2.0" = AsusVibe2.0
"Elantech" = ETDWare PS/2-x86 7.0.5.11_WHQL
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}" = FontResizer
"InstallShield_{36B0DC39-3282-40EB-8587-B875CE46C3A7}" = ExpressGateCloud
"InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = CyberLink PowerRecover
"o2DE" = Mobile Connection Manager
"WinLiveSuite" = Windows Live Essentials
"ZTE USB Driver" = ZTE USB Driver
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 29.08.2015 19:16:26 | Computer Name = Hortensienbewun | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
Fehler: Die Daten sind unzulässig. .
Error - 29.08.2015 20:16:28 | Computer Name = Hortensienbewun | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
Fehler: Die Daten sind unzulässig. .
Error - 29.08.2015 20:16:58 | Computer Name = Hortensienbewun | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
Fehler: Die Daten sind unzulässig. .
Error - 29.08.2015 20:16:58 | Computer Name = Hortensienbewun | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
Fehler: Die Daten sind unzulässig. .
Error - 29.08.2015 20:16:58 | Computer Name = Hortensienbewun | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
Fehler: Die Daten sind unzulässig. .
Error - 29.08.2015 20:16:58 | Computer Name = Hortensienbewun | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
Fehler: Die Daten sind unzulässig. .
Error - 29.08.2015 20:16:58 | Computer Name = Hortensienbewun | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
Fehler: Die Daten sind unzulässig. .
Error - 29.08.2015 20:16:58 | Computer Name = Hortensienbewun | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
Fehler: Die Daten sind unzulässig. .
Error - 29.08.2015 20:16:58 | Computer Name = Hortensienbewun | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
Fehler: Die Daten sind unzulässig. .
Error - 29.08.2015 20:16:58 | Computer Name = Hortensienbewun | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
Fehler: Die Daten sind unzulässig. .
[ System Events ]
Error - 31.08.2015 02:58:08 | Computer Name = Hortensienbewun | Source = NETLOGON | ID = 3095
Description = Dieser Computer ist als Mitglied einer Arbeitsgruppe konfiguriert,
nicht als Mitglied einer Domäne. Der Anmeldedienst braucht bei dieser Konfiguration
nicht gestartet zu sein.
Error - 31.08.2015 04:12:56 | Computer Name = Hortensienbewun | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist
bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden
durchgeführt: Neustart des Diensts.
Error - 31.08.2015 04:19:45 | Computer Name = Hortensienbewun | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist
bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden
durchgeführt: Neustart des Diensts.
Error - 31.08.2015 06:04:08 | Computer Name = Hortensienbewun | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Microsoft .NET Framework NGEN v2.0.50727_X86" wurde unerwartet
beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden
in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error - 31.08.2015 06:04:14 | Computer Name = Hortensienbewun | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits
1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt:
Neustart des Diensts.
Error - 31.08.2015 06:04:17 | Computer Name = Hortensienbewun | Source = Service Control Manager | ID = 7034
Description = Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits
3 Mal passiert.
Error - 31.08.2015 07:28:49 | Computer Name = Hortensienbewun | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies
ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden
durchgeführt: Neustart des Diensts.
Error - 31.08.2015 07:31:11 | Computer Name = Hortensienbewun | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Microsoft .NET Framework NGEN v2.0.50727_X86" wurde unerwartet
beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden
in 960000 Millisekunden durchgeführt: Neustart des Diensts.
Error - 31.08.2015 07:57:21 | Computer Name = Hortensienbewun | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Microsoft .NET Framework NGEN v2.0.50727_X86" wurde unerwartet
beendet. Dies ist bereits 3 Mal vorgekommen. Folgende Korrekturmaßnahmen werden
in 15360000 Millisekunden durchgeführt: Neustart des Diensts.
Error - 31.08.2015 16:23:14 | Computer Name = Hortensienbewun | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
< End of report >
Gruß LillyP. |
SecurityCheck und: