Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Weiterer Windows 10 Rechner mit Malware

Weiterer Windows 10 Rechner mit Malware


Log-Analyse und Auswertung: Weiterer Windows 10 Rechner mit Malware

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 27.12.2018, 10:50   #2
muffin74
 
Weiterer Windows 10 Rechner mit Malware - Standard

Weiterer Windows 10 Rechner mit Malware


Code:
ATTFilter
2018-12-21 23:16 - 2018-12-21 23:16 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000294072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2018-12-21 23:16 - 2018-12-21 23:16 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000252536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2018-12-21 23:16 - 2018-12-21 23:16 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-12-21 23:16 - 2018-12-21 23:16 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2018-12-21 23:16 - 2018-12-21 23:16 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2018-12-21 23:16 - 2018-12-21 23:16 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000151872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastingShellExt.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000114648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000114344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000094224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2018-12-21 23:16 - 2018-12-21 23:16 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000091640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2018-12-21 23:16 - 2018-12-21 23:16 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2018-12-21 23:16 - 2018-12-21 23:16 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2018-12-21 23:15 - 2018-12-21 23:15 - 007685016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 006132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 005130752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 003337800 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 002988544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 002721792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 002654208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 002594872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 002149352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 002020560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 001751560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 001612808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 001401864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 001387496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 001255928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-12-21 23:15 - 2018-12-21 23:15 - 001219584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 001212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 001051960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-12-21 23:15 - 2018-12-21 23:15 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000897848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000828936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000756640 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-12-21 23:15 - 2018-12-21 23:15 - 000752128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000743432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000667152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000660496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000650040 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-12-21 23:15 - 2018-12-21 23:15 - 000649736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000582240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000495624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2018-12-21 23:15 - 2018-12-21 23:15 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000402576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000306704 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000300024 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000298536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000193016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000164344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000140600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000130088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000102392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000083472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2018-12-21 23:15 - 2018-12-21 23:15 - 000046392 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2018-12-21 23:15 - 2018-12-21 23:15 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2018-12-21 23:15 - 2018-12-21 23:15 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-12-21 23:15 - 2018-12-21 23:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2018-12-21 23:15 - 2018-12-21 23:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2018-12-21 23:15 - 2018-12-21 23:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2018-12-21 23:15 - 2018-12-21 23:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2018-12-21 23:15 - 2018-12-21 23:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2018-12-21 23:15 - 2018-12-21 23:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2018-12-21 23:15 - 2018-12-21 23:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2018-12-21 23:15 - 2018-12-21 23:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2018-12-21 23:07 - 2018-12-21 23:07 - 000000000 ____D C:\Users\annem\OneDrive\Dokumente\Outlook-Dateien
2018-12-21 22:22 - 2018-12-21 22:22 - 000000000 ____D C:\Users\annem\OneDrive\Dokumente\Add-in Express
2018-12-21 21:02 - 2018-12-21 21:02 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-12-21 20:59 - 2018-12-22 18:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-12-21 20:59 - 2018-12-21 20:59 - 000003758 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2018-12-21 20:59 - 2018-12-21 20:59 - 000003732 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1297204335-1681610444-435508457-1001UA
2018-12-21 20:59 - 2018-12-21 20:59 - 000003558 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-12-21 20:59 - 2018-12-21 20:59 - 000003534 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2018-12-21 20:59 - 2018-12-21 20:59 - 000003464 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1297204335-1681610444-435508457-1001Core
2018-12-21 20:59 - 2018-12-21 20:59 - 000003334 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-12-21 20:59 - 2018-12-21 20:59 - 000002924 _____ C:\WINDOWS\System32\Tasks\ATK Package 36D18D69AFC3
2018-12-21 20:59 - 2018-12-21 20:59 - 000002856 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1297204335-1681610444-435508457-1001
2018-12-21 20:59 - 2018-12-21 20:59 - 000002486 _____ C:\WINDOWS\System32\Tasks\HPEA3JOBS
2018-12-21 20:59 - 2018-12-21 20:59 - 000002346 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2018-12-21 20:59 - 2018-12-21 20:59 - 000002280 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2018-12-21 20:59 - 2018-12-21 20:59 - 000002214 _____ C:\WINDOWS\System32\Tasks\ATK Package A22126881260
2018-12-21 20:59 - 2018-12-21 20:59 - 000000020 ___SH C:\Users\annem\ntuser.ini
2018-12-21 20:59 - 2018-12-21 20:59 - 000000000 ____D C:\WINDOWS\System32\Tasks\Apple
2018-12-21 20:57 - 2018-12-21 20:59 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2018-12-21 20:57 - 2018-12-21 20:59 - 000011433 _____ C:\WINDOWS\diagerr.xml
2018-12-21 20:55 - 2018-12-22 18:08 - 001723288 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-12-21 20:47 - 2018-12-21 20:47 - 000209928 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_swmon.sys
2018-12-21 20:46 - 2018-12-21 20:46 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-12-21 20:44 - 2018-12-22 09:59 - 000000000 ____D C:\Users\annem
2018-12-21 20:44 - 2018-12-21 20:50 - 000000000 ____D C:\Users\defaultuser0
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\defaultuser0\Vorlagen
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\defaultuser0\Startmenü
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\defaultuser0\Netzwerkumgebung
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\defaultuser0\Lokale Einstellungen
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\defaultuser0\Eigene Dateien
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\defaultuser0\Druckumgebung
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\defaultuser0\AppData\Local\Verlauf
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\defaultuser0\AppData\Local\Anwendungsdaten
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\defaultuser0\Anwendungsdaten
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\annem\Vorlagen
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\annem\Startmenü
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\annem\Netzwerkumgebung
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\annem\Lokale Einstellungen
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\annem\Eigene Dateien
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\annem\Druckumgebung
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\annem\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\annem\AppData\Local\Verlauf
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\annem\AppData\Local\Anwendungsdaten
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 _SHDL C:\Users\annem\Anwendungsdaten
2018-12-21 20:44 - 2018-12-21 20:44 - 000000000 ____D C:\ProgramData\USOShared
2018-12-21 20:44 - 2018-09-15 08:29 - 000001105 _____ C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-21 20:44 - 2018-09-15 08:29 - 000001105 _____ C:\Users\annem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-21 20:44 - 2018-09-15 08:28 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-12-21 20:43 - 2016-11-14 10:45 - 000615992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2018-12-21 20:41 - 2018-12-27 10:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-12-21 20:41 - 2018-12-22 12:27 - 000457584 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-12-21 20:40 - 2018-12-21 20:59 - 000000000 ____D C:\Windows.old
2018-12-21 20:33 - 2018-12-21 20:40 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-12-21 20:32 - 2018-12-21 20:33 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-12-21 20:32 - 2018-12-21 20:32 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-12-21 20:30 - 2018-12-21 20:30 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-12-21 20:30 - 2018-12-21 20:30 - 003730352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-12-21 20:30 - 2018-12-21 20:30 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 002832896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 001830912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 001824768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 001797128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 001590288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 001520208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 001476096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 000863752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-12-21 20:30 - 2018-12-21 20:30 - 000850960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 000818832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 000604248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-12-21 20:30 - 2018-12-21 20:30 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2018-12-21 20:30 - 2018-12-21 20:30 - 000175096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2018-12-21 20:29 - 2018-12-21 20:40 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-12-21 20:29 - 2018-12-21 20:29 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2018-12-21 20:29 - 2018-12-21 20:29 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-12-21 20:29 - 2018-12-21 20:29 - 000000000 ____D C:\Program Files\MSBuild
2018-12-21 20:29 - 2018-12-21 20:29 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-12-21 20:28 - 2018-12-21 20:28 - 001167960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-12-21 20:28 - 2018-12-21 20:28 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2018-12-21 20:28 - 2018-12-21 20:28 - 000780376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2018-12-21 20:28 - 2018-12-21 20:28 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2018-12-21 20:28 - 2018-12-21 20:28 - 000126064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-12-21 20:28 - 2018-12-21 20:28 - 000104560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-12-21 20:28 - 2018-12-21 20:28 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2018-12-21 20:28 - 2018-12-21 20:28 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2018-12-21 20:28 - 2018-12-21 20:28 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2018-12-21 20:28 - 2018-12-21 20:28 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2018-12-21 20:28 - 2018-12-21 20:28 - 000036896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2018-12-21 20:28 - 2018-12-21 20:28 - 000035440 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2018-12-21 16:09 - 2018-12-21 16:09 - 000289856 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2018-12-21 15:24 - 2018-12-21 15:24 - 000238528 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2018-12-21 15:24 - 2018-12-21 15:24 - 000193168 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2018-12-21 15:24 - 2018-12-21 15:24 - 000110640 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2018-12-21 15:24 - 2018-12-21 15:24 - 000100136 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_kimul.sys
2018-12-21 13:18 - 2018-12-21 13:19 - 000000496 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2018-12-21 13:17 - 2018-08-23 15:35 - 000104992 _____ (Check Point Software Technologies) C:\WINDOWS\system32\Drivers\CPEPMon.sys
2018-12-21 13:17 - 2018-07-10 15:47 - 000064664 _____ (Check Point Software Technologies) C:\WINDOWS\system32\Drivers\cpbak.sys
2018-12-21 13:05 - 2018-12-21 13:05 - 000000000 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts
2018-12-21 13:04 - 2018-12-21 13:04 - 000440752 _____ C:\WINDOWS\system32\Drivers\vsconfig.xml
2018-12-21 13:04 - 2018-09-28 19:40 - 001191624 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2018-12-21 13:04 - 2018-09-28 19:40 - 000528576 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\kl1.sys
2018-12-21 13:04 - 2018-09-28 19:40 - 000152360 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\klhkum.dll
2018-12-21 13:03 - 2018-12-21 20:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Check Point
2018-12-21 13:03 - 2018-12-21 13:03 - 000000778 _____ C:\Users\Public\Desktop\ZoneAlarm Security.lnk
2018-12-21 13:02 - 2018-12-21 13:18 - 000000000 ____D C:\ProgramData\CheckPoint
2018-12-21 13:02 - 2018-12-21 13:15 - 000000000 ____D C:\Program Files (x86)\CheckPoint
2018-12-21 13:01 - 2018-12-21 13:01 - 005300232 _____ (Check Point Software Technologies Ltd.) C:\Users\annem\Downloads\zaSetupWeb_154_062_17802.exe
2018-12-21 13:00 - 2018-12-21 20:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-12-21 13:00 - 2018-12-21 13:00 - 000000000 ____D C:\Users\annem\OneDrive\Dokumente\Check-PointFramework!RepositoryDo notErase
2018-12-13 06:12 - 2018-12-13 06:12 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2018-12-13 06:12 - 2018-12-13 06:12 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2018-12-13 06:12 - 2018-12-13 06:12 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2018-12-13 06:12 - 2018-12-13 06:12 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2018-11-27 18:39 - 2018-11-27 18:39 - 000000739 _____ C:\Users\annem\OneDrive\Dokumente\Musik - Verknüpfung.lnk
2018-11-27 13:33 - 2018-12-10 12:03 - 000000000 ____D C:\Users\annem\OneDrive\Dokumente\Designer Files

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2018-12-26 20:04 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-12-26 19:56 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2018-12-26 19:56 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-12-23 13:42 - 2016-10-30 09:36 - 000000000 ___RD C:\Users\annem\Dropbox
2018-12-23 01:53 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2018-12-22 18:14 - 2016-08-25 19:52 - 000001100 _____ C:\Users\annem\Desktop\PhotoScape.lnk
2018-12-22 18:08 - 2018-09-15 18:37 - 000744962 _____ C:\WINDOWS\system32\perfh007.dat
2018-12-22 18:08 - 2018-09-15 18:37 - 000150250 _____ C:\WINDOWS\system32\perfc007.dat
2018-12-22 18:07 - 2018-07-27 07:57 - 000000000 ___RD C:\Users\annem\Google Drive
2018-12-22 18:05 - 2016-08-23 15:07 - 000000000 ___RD C:\Users\annem\OneDrive
2018-12-22 18:03 - 2017-07-14 14:51 - 000000000 ____D C:\ProgramData\NVIDIA
2018-12-22 18:02 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-12-22 13:31 - 2016-08-23 19:02 - 000100776 _____ C:\Users\annem\AppData\Local\GDIPFONTCACHEV1.DAT
2018-12-22 09:52 - 2016-08-25 19:24 - 000000000 ____D C:\ProgramData\Apple
2018-12-22 09:40 - 2016-09-03 09:07 - 000000000 ____D C:\ProgramData\Nero
2018-12-22 09:37 - 2016-09-03 09:07 - 000000000 ____D C:\Program Files (x86)\Nero
2018-12-22 09:14 - 2018-02-19 14:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-12-22 09:14 - 2016-08-23 18:23 - 000592616 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-12-22 09:13 - 2016-08-25 19:58 - 000000000 ____D C:\ProgramData\pdfforge
2018-12-22 09:09 - 2018-05-20 10:01 - 000000000 ____D C:\Program Files (x86)\Roni Music
2018-12-22 08:54 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-12-22 08:53 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\appcompat
2018-12-22 00:16 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\servicing
2018-12-22 00:15 - 2018-06-04 14:12 - 000000000 ____D C:\Users\annem\AppData\Local\PackageStaging
2018-12-22 00:14 - 2018-01-29 17:06 - 000000000 ___RD C:\Users\annem\3D Objects
2018-12-22 00:14 - 2016-08-23 15:04 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-12-22 00:12 - 2018-09-15 18:39 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2018-12-22 00:12 - 2018-09-15 18:39 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2018-12-22 00:12 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-12-22 00:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\TextInput
2018-12-22 00:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-12-22 00:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-12-22 00:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-12-22 00:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-12-22 00:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2018-12-22 00:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-12-21 23:15 - 2016-07-16 13:58 - 000408340 __RSH C:\bootmgr
2018-12-21 21:17 - 2018-07-11 19:04 - 000000000 ____D C:\ProgramData\Packages
2018-12-21 21:17 - 2018-01-29 15:34 - 000000000 ____D C:\Users\annem\AppData\Local\Packages
2018-12-21 21:00 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-12-21 21:00 - 2016-08-23 15:04 - 000000000 ____D C:\Users\annem\AppData\Local\ConnectedDevicesPlatform
2018-12-21 20:59 - 2018-11-21 18:48 - 000000000 ___DC C:\WINDOWS\Panther
2018-12-21 20:59 - 2018-09-15 08:33 - 000000000 ___RD C:\Program Files\Windows Defender
2018-12-21 20:59 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\windows nt
2018-12-21 20:59 - 2018-09-15 07:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-12-21 20:57 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Registration
2018-12-21 20:52 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-12-21 20:51 - 2017-07-14 15:00 - 000023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2018-12-21 20:51 - 2016-08-23 17:46 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-12-21 20:51 - 2016-08-23 17:46 - 000002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-12-21 20:46 - 2018-07-16 20:29 - 000000000 ____D C:\Users\annem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Animake
2018-12-21 20:46 - 2017-11-21 11:49 - 000000000 ____D C:\Users\annem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image Composite Editor
2018-12-21 20:46 - 2017-04-02 17:47 - 000000000 ____D C:\Users\annem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup
2018-12-21 20:46 - 2016-08-25 20:39 - 000000000 ____D C:\Users\annem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Music
2018-12-21 20:45 - 2018-01-29 15:35 - 000000000 ____D C:\Users\defaultuser0\AppData\Local\Packages
2018-12-21 20:45 - 2016-08-25 20:26 - 000000000 ____D C:\Users\annem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
2018-12-21 20:44 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\USOPrivate
2018-12-21 20:43 - 2018-07-27 10:25 - 000000000 ____D C:\temp
2018-12-21 20:42 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ServiceState
2018-12-21 20:42 - 2017-07-14 14:51 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-12-21 20:42 - 2017-07-14 14:51 - 000000000 ____D C:\WINDOWS\system32\DAX2
2018-12-21 20:42 - 2017-07-14 14:51 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-12-21 20:40 - 2018-09-15 08:36 - 000000000 ____D C:\WINDOWS\Setup
2018-12-21 20:40 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-12-21 20:40 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\spool
2018-12-21 20:40 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-12-21 20:40 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2018-12-21 20:40 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ModemLogs
2018-12-21 20:40 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-12-21 20:40 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Help
2018-12-21 20:40 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-12-21 20:40 - 2018-09-15 08:31 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-12-21 20:40 - 2018-07-27 10:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2018-12-21 20:40 - 2018-06-04 20:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2018-12-21 20:40 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-12-21 20:40 - 2017-07-07 20:19 - 000000000 ____D C:\Program Files\UNP
2018-12-21 20:40 - 2017-06-25 13:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Star Stable Online
2018-12-21 20:40 - 2016-10-14 17:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-12-21 20:40 - 2016-09-03 10:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2018-12-21 20:40 - 2016-08-25 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aquamarin Haushaltsbuch
2018-12-21 20:40 - 2016-08-25 20:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2018-12-21 20:40 - 2016-08-25 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 3
2018-12-21 20:40 - 2016-08-25 19:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Resizer for Windows
2018-12-21 20:40 - 2016-08-25 19:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
2018-12-21 20:40 - 2016-08-24 17:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\tiptoi® Manager
2018-12-21 20:40 - 2016-08-23 20:12 - 000000000 ____D C:\WINDOWS\de
2018-12-21 20:40 - 2016-08-23 17:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2018-12-21 20:40 - 2016-08-23 17:50 - 000000000 ____D C:\WINDOWS\SHELLNEW
2018-12-21 20:40 - 2016-08-23 15:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2018-12-21 20:38 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2018-12-21 20:37 - 2018-09-15 08:33 - 000000000 __RHD C:\Users\Public\Libraries
2018-12-21 20:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-12-21 20:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Resources
2018-12-21 20:34 - 2017-09-23 20:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2018-12-21 20:33 - 2017-07-14 14:51 - 000000000 ____D C:\Program Files\Realtek
2018-12-21 20:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2018-12-21 20:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2018-12-21 20:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2018-12-21 20:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2018-12-21 20:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2018-12-21 20:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2018-12-21 20:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2018-12-21 20:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2018-12-21 20:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\et-EE
2018-12-21 20:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2018-12-21 20:23 - 2016-08-23 15:27 - 000008192 __RSH C:\BOOTSECT.BAK
2018-12-21 15:33 - 2018-01-12 13:11 - 000000000 ____D C:\Program Files\rempl
2018-12-21 13:39 - 2016-08-23 18:19 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-12-21 13:20 - 2016-08-23 18:19 - 137260640 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-12-21 13:17 - 2016-08-25 19:54 - 000000000 ____D C:\ProgramData\Package Cache
2018-12-21 13:00 - 2016-10-30 09:23 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-12-01 04:53 - 2018-09-15 08:36 - 000835688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-12-01 04:53 - 2018-09-15 08:36 - 000179808 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2017-10-27 20:26 - 2018-06-14 15:45 - 000000127 _____ () C:\Users\annem\AppData\Roaming\default.rss
2017-04-29 13:42 - 2017-04-29 13:42 - 000000017 _____ () C:\Users\annem\AppData\Local\resmon.resmoncfg

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

==================== Ende von FRST.txt ============================
Das ist nur ein Teil von ZoneAlarm Log - er ist ewig lang - sagt mir bitte, wenn Ihr mehr braucht.

Code:
ATTFilter
OSFW,2018/12/21,13:05:20 +1:00 GMT,UNKNOWN(0),Runtime Broker,C:\Windows\System32\RuntimeBroker.exe,PROCESS,OPENPROCESS,DST,,C:\WINDOWS\Explorer.EXE,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Runtime+Broker&VER=10.0.17134.1&FN=RuntimeBroker.exe&Created=4c8c0444&Size=99272&MD5=c7e36b4a5d9e6ac600dd7a0e0d52dac5&SKIMP=53e1ecd41e1bf8549a4bef10504ed5cb&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=C%3A%5CWINDOWS%5CExplorer.EXE
OSFW,2018/12/21,13:05:20 +1:00 GMT,ALLOWED,Runtime Broker,C:\Windows\System32\RuntimeBroker.exe,PROCESS,OPENPROCESS,DST,,C:\WINDOWS\Explorer.EXE,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Runtime+Broker&VER=10.0.17134.1&FN=RuntimeBroker.exe&Created=4c8c0444&Size=99272&MD5=c7e36b4a5d9e6ac600dd7a0e0d52dac5&SKIMP=53e1ecd41e1bf8549a4bef10504ed5cb&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=C%3A%5CWINDOWS%5CExplorer.EXE
OSFW,2018/12/21,13:05:28 +1:00 GMT,UNKNOWN(0),SettingSyncHost.exe,C:\WINDOWS\system32\SettingSyncHost.exe,PROCESS,OPENPROCESS,DST,,C:\WINDOWS\Explorer.EXE,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=SettingSyncHost.exe&VER=&FN=SettingSyncHost.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=C%3A%5CWINDOWS%5CExplorer.EXE
OSFW,2018/12/21,13:05:28 +1:00 GMT,ALLOWED,SettingSyncHost.exe,C:\WINDOWS\system32\SettingSyncHost.exe,PROCESS,OPENPROCESS,DST,,C:\WINDOWS\Explorer.EXE,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=SettingSyncHost.exe&VER=&FN=SettingSyncHost.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=C%3A%5CWINDOWS%5CExplorer.EXE
PE,2018/12/21,13:05:32 +1:00 GMT,mDNSResponder.exe,C:\Program Files\Bonjour\mDNSResponder.exe,224.0.0.251:5353,N/A,hxxp://pralerts.zonealarm.com/pralerts/pranalyze.jsp?PN=mDNSResponder.exe&VER=&FN=mDNSResponder.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&RIPA=&RP=59668&Connect=1&Pgmstatus=1&Zone=2&Keycode=j5hvqhisiu3s4he7bhx644bu4g0&Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=1&PU=1&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031
OSFW,2018/12/21,13:05:42 +1:00 GMT,UNKNOWN(0),MsMpEng.exe,C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe,REGISTRY,DELVALUE,SRC,,HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN,WindowsDefender,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=MsMpEng.exe&VER=&FN=MsMpEng.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&CT=4004&EV=4&SUB=11&SEV=2&ARG1=HKLM%5CSOFTWARE%5CMICROSOFT%5CWINDOWS%5CCURRENTVERSION%5CRUN&ARG2=WindowsDefender
OSFW,2018/12/21,13:05:42 +1:00 GMT,ALLOWED,MsMpEng.exe,C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe,REGISTRY,DELVALUE,SRC,,HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN,WindowsDefender,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=MsMpEng.exe&VER=&FN=MsMpEng.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&CT=4004&EV=4&SUB=11&SEV=2&ARG1=HKLM%5CSOFTWARE%5CMICROSOFT%5CWINDOWS%5CCURRENTVERSION%5CRUN&ARG2=WindowsDefender
OSFW,2018/12/21,13:05:44 +1:00 GMT,UNKNOWN(0),MsMpEng.exe,C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe,PROCESS,SPAWNPROCESS,SRC,,C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1810.5-0\MpCmdRun.exe,800004f6,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=MsMpEng.exe&VER=&FN=MsMpEng.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&CT=6003&EV=1&SUB=3&SEV=3&ARG1=C%3A%5CProgramData%5CMicrosoft%5CWindows+Defender%5CPlatform%5C4.18.1810.5-0%5CMpCmdRun.exe&ARG2=800004f6
OSFW,2018/12/21,13:05:44 +1:00 GMT,ALLOWED,MsMpEng.exe,C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe,PROCESS,SPAWNPROCESS,SRC,,C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1810.5-0\MpCmdRun.exe,800004f6,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=MsMpEng.exe&VER=&FN=MsMpEng.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&CT=6003&EV=1&SUB=3&SEV=3&ARG1=C%3A%5CProgramData%5CMicrosoft%5CWindows+Defender%5CPlatform%5C4.18.1810.5-0%5CMpCmdRun.exe&ARG2=800004f6
PE,2018/12/21,13:05:44 +1:00 GMT,NvBackend.exe,C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe,8.36.80.212:80,N/A,hxxp://pralerts.zonealarm.com/pralerts/pranalyze.jsp?PN=NvBackend.exe&VER=&FN=NvBackend.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&RIPA=&RP=20480&Connect=1&Pgmstatus=1&Zone=2&Keycode=j5hvqhisiu3s4he7bhx644bu4g0&Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=1&PU=1&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031
OSFW,2018/12/21,13:06:28 +1:00 GMT,UNKNOWN(0),NvBackend.exe,C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe,PROCESS,SPAWNPROCESS,SRC,,C:\Users\annem\AppData\Local\NVIDIA\NvBackend\Packages\000063ef\DRS update.18761999.exe,800004fd,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=NvBackend.exe&VER=&FN=NvBackend.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&CT=6003&EV=1&SUB=3&SEV=3&ARG1=C%3A%5CUsers%5Cannem%5CAppData%5CLocal%5CNVIDIA%5CNvBackend%5CPackages%5C000063ef%5CDRS+update.18761999.exe&ARG2=800004fd
OSFW,2018/12/21,13:06:28 +1:00 GMT,ALLOWED,NvBackend.exe,C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe,PROCESS,SPAWNPROCESS,SRC,,C:\Users\annem\AppData\Local\NVIDIA\NvBackend\Packages\000063ef\DRS update.18761999.exe,800004fd,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=NvBackend.exe&VER=&FN=NvBackend.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&CT=6003&EV=1&SUB=3&SEV=3&ARG1=C%3A%5CUsers%5Cannem%5CAppData%5CLocal%5CNVIDIA%5CNvBackend%5CPackages%5C000063ef%5CDRS+update.18761999.exe&ARG2=800004fd
OSFW,2018/12/21,13:07:46 +1:00 GMT,UNKNOWN(0),Google Installer,C:\Users\annem\AppData\Local\Temp\GUM6AEA.tmp\GoogleUpdate.exe,PROCESS,OPENTHREAD,DST,,C:\Users\annem\AppData\Local\Google\Update\GoogleUpdate.exe,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Google+Installer&VER=1.3.33.23&FN=GoogleUpdate.exe&Created=4d956874&Size=156968&MD5=79b804e8a81bfd9c6a3749b4f3ee86e2&SKIMP=b314f9da33d0054e3d4e0f85ec45aa13&&CT=6002&EV=1&SUB=2&SEV=3&ARG1=C%3A%5CUsers%5Cannem%5CAppData%5CLocal%5CGoogle%5CUpdate%5CGoogleUpdate.exe
OSFW,2018/12/21,13:07:46 +1:00 GMT,ALLOWED,Google Installer,C:\Users\annem\AppData\Local\Temp\GUM6AEA.tmp\GoogleUpdate.exe,PROCESS,OPENTHREAD,DST,,C:\Users\annem\AppData\Local\Google\Update\GoogleUpdate.exe,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Google+Installer&VER=1.3.33.23&FN=GoogleUpdate.exe&Created=4d956874&Size=156968&MD5=79b804e8a81bfd9c6a3749b4f3ee86e2&SKIMP=b314f9da33d0054e3d4e0f85ec45aa13&&CT=6002&EV=1&SUB=2&SEV=3&ARG1=C%3A%5CUsers%5Cannem%5CAppData%5CLocal%5CGoogle%5CUpdate%5CGoogleUpdate.exe
OSFW,2018/12/21,13:07:58 +1:00 GMT,UNKNOWN(0),Google Installer,C:\Program Files (x86)\GUM387E.tmp\GoogleUpdate.exe,PROCESS,SPAWNPROCESS,SRC,,C:\Program Files (x86)\Google\Update\GoogleUpdate.exe,800004ac,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Google+Installer&VER=1.3.33.23&FN=GoogleUpdate.exe&Created=4d95682d&Size=156968&MD5=79b804e8a81bfd9c6a3749b4f3ee86e2&SKIMP=b314f9da33d0054e3d4e0f85ec45aa13&&CT=6003&EV=1&SUB=3&SEV=3&ARG1=C%3A%5CProgram+Files+(x86)%5CGoogle%5CUpdate%5CGoogleUpdate.exe&ARG2=800004ac
OSFW,2018/12/21,13:07:58 +1:00 GMT,ALLOWED,Google Installer,C:\Program Files (x86)\GUM387E.tmp\GoogleUpdate.exe,PROCESS,SPAWNPROCESS,SRC,,C:\Program Files (x86)\Google\Update\GoogleUpdate.exe,800004ac,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Google+Installer&VER=1.3.33.23&FN=GoogleUpdate.exe&Created=4d95682d&Size=156968&MD5=79b804e8a81bfd9c6a3749b4f3ee86e2&SKIMP=b314f9da33d0054e3d4e0f85ec45aa13&&CT=6003&EV=1&SUB=3&SEV=3&ARG1=C%3A%5CProgram+Files+(x86)%5CGoogle%5CUpdate%5CGoogleUpdate.exe&ARG2=800004ac
AV/treatment,2018/12/21,13:08:00 +1:00 GMT,not-a-virus:WebToolbar.JS.MyWebSearch.a,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\common\js\PartnerId.js,Infected,Manual
AV/treatment,2018/12/21,13:08:02 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Script.MyWebSearch.gen,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\shared\httpTransport.js,Infected,Manual
AV/treatment,2018/12/21,13:08:02 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Script.MyWebSearch.gen,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\shared\HttpURL.js,Infected,Manual
AV/treatment,2018/12/21,13:08:02 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Script.MyWebSearch.gen,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\shared\testHttpTransport.js,Infected,Manual
OSFW,2018/12/21,13:08:28 +1:00 GMT,UNKNOWN(0),Microsoft Windows Search Indexer,C:\Windows\System32\SearchIndexer.exe,PROCESS,SPAWNPROCESS,SRC,,C:\Windows\System32\SearchFilterHost.exe,8000049d,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Microsoft+Windows+Search+Indexer&VER=7.0.17134.285&FN=SearchIndexer.exe&Created=4d1f216a&Size=1057792&MD5=39a1d1b16551d2072462887253a5df3f&SKIMP=699d926cc4213070530d811f75b10dd2&&CT=6003&EV=1&SUB=3&SEV=3&ARG1=C%3A%5CWindows%5CSystem32%5CSearchFilterHost.exe&ARG2=8000049d
OSFW,2018/12/21,13:08:28 +1:00 GMT,ALLOWED,Microsoft Windows Search Indexer,C:\Windows\System32\SearchIndexer.exe,PROCESS,SPAWNPROCESS,SRC,,C:\Windows\System32\SearchFilterHost.exe,8000049d,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Microsoft+Windows+Search+Indexer&VER=7.0.17134.285&FN=SearchIndexer.exe&Created=4d1f216a&Size=1057792&MD5=39a1d1b16551d2072462887253a5df3f&SKIMP=699d926cc4213070530d811f75b10dd2&&CT=6003&EV=1&SUB=3&SEV=3&ARG1=C%3A%5CWindows%5CSystem32%5CSearchFilterHost.exe&ARG2=8000049d
OSFW,2018/12/21,13:08:40 +1:00 GMT,UNKNOWN(0),Microsoft Software Protection Platform Service,C:\Windows\System32\sppsvc.exe,PROCESS,OPENPROCESS,DST,,C:\WINDOWS\Explorer.EXE,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Microsoft+Software+Protection+Platform+Service&VER=10.0.17134.254&FN=sppsvc.exe&Created=4d09540e&Size=4527680&MD5=3f4408ec9a2b29b5d7dfec60d2e73906&SKIMP=f693496c18061b9a745fb734a9ba67f4&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=C%3A%5CWINDOWS%5CExplorer.EXE
OSFW,2018/12/21,13:08:40 +1:00 GMT,ALLOWED,Microsoft Software Protection Platform Service,C:\Windows\System32\sppsvc.exe,PROCESS,OPENPROCESS,DST,,C:\WINDOWS\Explorer.EXE,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Microsoft+Software+Protection+Platform+Service&VER=10.0.17134.254&FN=sppsvc.exe&Created=4d09540e&Size=4527680&MD5=3f4408ec9a2b29b5d7dfec60d2e73906&SKIMP=f693496c18061b9a745fb734a9ba67f4&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=C%3A%5CWINDOWS%5CExplorer.EXE
PE,2018/12/21,13:12:42 +1:00 GMT,Microsoft.Photos.exe,C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe,40.77.226.249:443,N/A,hxxp://pralerts.zonealarm.com/pralerts/pranalyze.jsp?PN=Microsoft.Photos.exe&VER=16.11.2018+15%3A54%3A44&FN=Microsoft.Photos.exe&Created=4d707ed6&Size=478720&MD5=62d06d7235b37895b68de56687895743&SKIMP=40dda7c75c4c2873dd11868f1c331ff9&&RIPA=&RP=47873&Connect=1&Pgmstatus=1&Zone=2&Keycode=j5hvqhisiu3s4he7bhx644bu4g0&Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=1&PU=1&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031
OSFW,2018/12/21,13:17:44 +1:00 GMT,UNKNOWN(0),Windows® installer,C:\Windows\System32\msiexec.exe,DRIVER,LOAD,SRC,,WINDRVDIR\epnetflt.sys,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Windows%C2%AE+installer&VER=5.0.17134.228&FN=msiexec.exe&Created=4d034b0e&Size=66048&MD5=d3c21cd0c70dc36fdd8a61e4517a226d&SKIMP=82b37049c32ccb0f1c398a8efc845d40&&CT=3006&EV=7&SUB=17&SEV=3&ARG1=WINDRVDIR%5Cepnetflt.sys
OSFW,2018/12/21,13:17:44 +1:00 GMT,ALLOWED,Windows® installer,C:\Windows\System32\msiexec.exe,DRIVER,LOAD,SRC,,WINDRVDIR\epnetflt.sys,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Windows%C2%AE+installer&VER=5.0.17134.228&FN=msiexec.exe&Created=4d034b0e&Size=66048&MD5=d3c21cd0c70dc36fdd8a61e4517a226d&SKIMP=82b37049c32ccb0f1c398a8efc845d40&&CT=3006&EV=7&SUB=17&SEV=3&ARG1=WINDRVDIR%5Cepnetflt.sys
OSFW,2018/12/21,13:19:08 +1:00 GMT,UNKNOWN(0),WMI Provider Host,C:\Windows\SysWOW64\wbem\WmiPrvSE.exe,PROCESS,OPENPROCESS,DST,,c:\windows\system32\svchost.exe,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=WMI+Provider+Host&VER=10.0.17134.1&FN=WmiPrvSE.exe&Created=4c8c045c&Size=426496&MD5=7ab59579ba91115872d6e51c54b9133b&SKIMP=3bed82dd2208a0202ec64e796698bd4e&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=c%3A%5Cwindows%5Csystem32%5Csvchost.exe
OSFW,2018/12/21,13:19:08 +1:00 GMT,ALLOWED,WMI Provider Host,C:\Windows\SysWOW64\wbem\WmiPrvSE.exe,PROCESS,OPENPROCESS,DST,,c:\windows\system32\svchost.exe,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=WMI+Provider+Host&VER=10.0.17134.1&FN=WmiPrvSE.exe&Created=4c8c045c&Size=426496&MD5=7ab59579ba91115872d6e51c54b9133b&SKIMP=3bed82dd2208a0202ec64e796698bd4e&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=c%3A%5Cwindows%5Csystem32%5Csvchost.exe
OSFW,2018/12/21,13:24:16 +1:00 GMT,UNKNOWN(0),Microsoft Compatibility Telemetry,C:\Windows\System32\compattelrunner.exe,DRIVER,LOAD,SRC,,ROOT\Program Files\Common Files\Apple\Mobile Device Support\Drivers\usbaapl64.sys,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Microsoft+Compatibility+Telemetry&VER=10.0.17673.1007&FN=compattelrunner.exe&Created=4d2848ee&Size=144696&MD5=91c2c4a2e309961acd1d84d605ed66f6&SKIMP=0b1826ae41de4d4f3005617120e95b7a&&CT=3006&EV=7&SUB=17&SEV=3&ARG1=ROOT%5CProgram+Files%5CCommon+Files%5CApple%5CMobile+Device+Support%5CDrivers%5Cusbaapl64.sys
OSFW,2018/12/21,13:24:16 +1:00 GMT,ALLOWED,Microsoft Compatibility Telemetry,C:\Windows\System32\compattelrunner.exe,DRIVER,LOAD,SRC,,ROOT\Program Files\Common Files\Apple\Mobile Device Support\Drivers\usbaapl64.sys,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Microsoft+Compatibility+Telemetry&VER=10.0.17673.1007&FN=compattelrunner.exe&Created=4d2848ee&Size=144696&MD5=91c2c4a2e309961acd1d84d605ed66f6&SKIMP=0b1826ae41de4d4f3005617120e95b7a&&CT=3006&EV=7&SUB=17&SEV=3&ARG1=ROOT%5CProgram+Files%5CCommon+Files%5CApple%5CMobile+Device+Support%5CDrivers%5Cusbaapl64.sys
PE,2018/12/21,13:28:08 +1:00 GMT,SkypeApp.exe,C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.76.0_x64__kzf8qxf38zg5c\SkypeApp.exe,13.107.4.52:80,N/A,hxxp://pralerts.zonealarm.com/pralerts/pranalyze.jsp?PN=SkypeApp.exe&VER=&FN=SkypeApp.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&RIPA=&RP=20480&Connect=1&Pgmstatus=1&Zone=2&Keycode=j5hvqhisiu3s4he7bhx644bu4g0&Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=1&PU=1&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031
PE,2018/12/21,13:30:28 +1:00 GMT,Amazon Music Helper.exe,C:\Users\annem\AppData\Local\Amazon Music\Amazon Music Helper.exe,205.251.242.2:443,N/A,hxxp://pralerts.zonealarm.com/pralerts/pranalyze.jsp?PN=&VER=&FN=&Size=0&MD5=ff00000084aa230235000000e3860a01&SKIMP=ff00000084aa230235000000e3860a01&&RIPA=&RP=47873&Connect=1&Pgmstatus=1&Zone=2&Keycode=j5hvqhisiu3s4he7bhx644bu4g0&Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=1&PU=1&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031
PE,2018/12/21,13:30:28 +1:00 GMT,Amazon Music Helper.exe,C:\Users\annem\AppData\Local\Amazon Music\Amazon Music Helper.exe,205.251.242.2:443,N/A,hxxp://pralerts.zonealarm.com/pralerts/pranalyze.jsp?PN=Amazon+Music+Helper.exe&VER=&FN=Amazon+Music+Helper.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&RIPA=&RP=47873&Connect=1&Pgmstatus=1&Zone=2&Keycode=j5hvqhisiu3s4he7bhx644bu4g0&Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=1&PU=1&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031
OSFW,2018/12/21,13:30:46 +1:00 GMT,UNKNOWN(0),RuntimeBroker.exe,C:\Windows\System32\RuntimeBroker.exe,PROCESS,OPENPROCESS,DST,,C:\WINDOWS\Explorer.EXE,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=RuntimeBroker.exe&VER=&FN=RuntimeBroker.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=C%3A%5CWINDOWS%5CExplorer.EXE
OSFW,2018/12/21,13:30:46 +1:00 GMT,ALLOWED,RuntimeBroker.exe,C:\Windows\System32\RuntimeBroker.exe,PROCESS,OPENPROCESS,DST,,C:\WINDOWS\Explorer.EXE,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=RuntimeBroker.exe&VER=&FN=RuntimeBroker.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=C%3A%5CWINDOWS%5CExplorer.EXE
PE,2018/12/21,13:31:34 +1:00 GMT,mDNSResponder.exe,C:\Program Files\Bonjour\mDNSResponder.exe,192.168.10.107:5353,N/A,hxxp://pralerts.zonealarm.com/pralerts/pranalyze.jsp?PN=&VER=&FN=&Size=0&MD5=ff00000080aa230235000000e3860a01&SKIMP=ff00000080aa230235000000e3860a01&&RIPA=&LP=59668&Connect=2&Pgmstatus=4&Zone=2&Keycode=j5hvqhisiu3s4he7bhx644bu4g0&Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=1&PU=1&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031
PE,2018/12/21,13:31:34 +1:00 GMT,mDNSResponder.exe,C:\Program Files\Bonjour\mDNSResponder.exe,192.168.10.107:5353,N/A,hxxp://pralerts.zonealarm.com/pralerts/pranalyze.jsp?PN=mDNSResponder.exe&VER=&FN=mDNSResponder.exe&Size=0&MD5=00000000000000000000000000000000&SKIMP=00000000000000000000000000000000&&RIPA=&LP=59668&Connect=2&Pgmstatus=4&Zone=2&Keycode=j5hvqhisiu3s4he7bhx644bu4g0&Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=1&PU=1&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031
AV/treatment,2018/12/21,13:37:00 +1:00 GMT,not-a-virus:WebToolbar.JS.MyWebSearch.a,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\common\js\PartnerId.js,Infected,Auto
AV/treatment,2018/12/21,13:37:12 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Script.MyWebSearch.gen,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\shared\httpTransport.js,Infected,Auto
AV/treatment,2018/12/21,13:37:12 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Script.MyWebSearch.gen,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\shared\HttpURL.js,Infected,Auto
AV/treatment,2018/12/21,13:37:14 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Script.MyWebSearch.gen,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\shared\testHttpTransport.js,Infected,Auto
AV/treatment,2018/12/21,13:37:16 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Script.MyWebSearch.gen,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\url.js,Infected,Auto
OSFW,2018/12/21,13:40:10 +1:00 GMT,UNKNOWN(0),Microsoft OneDrive Setup,C:\Users\annem\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe,PROCESS,OPENPROCESS,DST,,C:\Users\annem\AppData\Local\Microsoft\OneDrive\OneDrive.exe,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Microsoft+OneDrive+Setup&VER=18.222.1104.0007&FN=OneDriveSetup.exe&Created=4d907322&Size=28712232&MD5=9656e6e54d5d3fbc831ab526db2f337d&SKIMP=8bd936cc661e56ea64ef125f3f0ef885&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=C%3A%5CUsers%5Cannem%5CAppData%5CLocal%5CMicrosoft%5COneDrive%5COneDrive.exe
OSFW,2018/12/21,13:40:10 +1:00 GMT,ALLOWED,Microsoft OneDrive Setup,C:\Users\annem\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe,PROCESS,OPENPROCESS,DST,,C:\Users\annem\AppData\Local\Microsoft\OneDrive\OneDrive.exe,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Microsoft+OneDrive+Setup&VER=18.222.1104.0007&FN=OneDriveSetup.exe&Created=4d907322&Size=28712232&MD5=9656e6e54d5d3fbc831ab526db2f337d&SKIMP=8bd936cc661e56ea64ef125f3f0ef885&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=C%3A%5CUsers%5Cannem%5CAppData%5CLocal%5CMicrosoft%5COneDrive%5COneDrive.exe
AV/treatment,2018/12/21,13:53:00 +1:00 GMT,not-a-virus:WebToolbar.JS.MyWebSearch.a,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\common\js\PartnerId.js,Infected,Manual
AV/treatment,2018/12/21,13:53:04 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Script.MyWebSearch.gen,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\shared\httpTransport.js,Infected,Manual
AV/treatment,2018/12/21,13:53:04 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Script.MyWebSearch.gen,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\shared\HttpURL.js,Infected,Manual
AV/treatment,2018/12/21,13:53:04 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Script.MyWebSearch.gen,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\shared\testHttpTransport.js,Infected,Manual
AV/treatment,2018/12/21,13:53:04 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Script.MyWebSearch.gen,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfpdhjbmgalijofgljkeckkgdjafgmfb\12.41.10.11902_0\url.js,Infected,Manual
AV/treatment,2018/12/21,13:53:26 +1:00 GMT,not-a-virus:AdWare.JS.WebSearch.k,C:\Users\annem\AppData\Local\Google\Chrome\User Data\Default\Extensions\mallpejgeafdahhflmliiahjdpgbegpk\13.781.13.56840_0\config\config.json,Deleted,Manual
,2018/12/21,13:53:26 +1:00 GMT,
AV/treatment,2018/12/21,14:02:12 +1:00 GMT,not-a-virus:AdWare.Win32.DealPly.izds,C:\Users\annem\Downloads\7-zip-64-bit_2335032564.exe,Deleted,Manual
,2018/12/21,14:02:12 +1:00 GMT,
AV/treatment,2018/12/21,14:02:26 +1:00 GMT,Hoax.Win32.DeceptPCClean.rp,C:\Users\annem\Downloads\DriverToolkitInstaller (1).exe,Deleted,Manual
,2018/12/21,14:02:26 +1:00 GMT,
AV/treatment,2018/12/21,14:02:26 +1:00 GMT,Hoax.Win32.DeceptPCClean.rp,C:\Users\annem\Downloads\DriverToolkitInstaller.exe,Deleted,Manual
,2018/12/21,14:02:26 +1:00 GMT,
AV/treatment,2018/12/21,14:02:28 +1:00 GMT,not-a-virus:HEUR:AdWare.Win32.DealPly.gen,C:\Users\annem\Downloads\dropbox.exe,File Repaired,Manual
,2018/12/21,14:02:28 +1:00 GMT,
AV/treatment,2018/12/21,14:02:34 +1:00 GMT,not-a-virus:HEUR:Downloader.Win32.DownloaderGuide.gen,C:\Users\annem\Downloads\Google_Play_Store_fuer_Amazon-Fire-Tablets_APK__CB-DL-Manager.exe,Infected,Manual
AV/treatment,2018/12/21,14:02:36 +1:00 GMT,not-a-virus:Downloader.Win32.DownloadSponsor.pe,C:\Users\annem\Downloads\Image Resizer - CHIP-Installer.exe,Infected,Manual
AV/treatment,2018/12/21,14:02:42 +1:00 GMT,not-a-virus:RiskTool.Win32.Ocna.gen,C:\Users\annem\Downloads\Microsoft Fix it Paket - CHIP-Installer.exe,Infected,Manual
AV/treatment,2018/12/21,14:03:04 +1:00 GMT,not-a-virus:HEUR:Downloader.MSIL.DownloadSponsor.gen,C:\Users\annem\Downloads\Samsung Kies - CHIP-Installer.exe,Infected,Manual
AV/treatment,2018/12/21,14:03:10 +1:00 GMT,not-a-virus:Downloader.Win32.Softonic.c,C:\Users\annem\Downloads\SoftonicDownloader_fuer_inkscape.exe,Infected,Manual
AV/treatment,2018/12/21,14:03:10 +1:00 GMT,not-a-virus:Downloader.Win32.Agent.bxib,C:\Users\annem\Downloads\SoftonicDownloader_fuer_windows-installer-clean-up.exe,Infected,Manual
AV/treatment,2018/12/21,14:03:12 +1:00 GMT,not-a-virus:HEUR:Downloader.Win32.DownloaderGuide.gen,C:\Users\annem\Downloads\Uhr_CB-DL-Manager.exe,Infected,Manual
AV/treatment,2018/12/21,14:03:14 +1:00 GMT,not-a-virus:HEUR:Downloader.MSIL.DownloadSponsor.gen,C:\Users\annem\Downloads\Ulead GIF Animator Lite - CHIP-Installer.exe,Infected,Manual
AV/treatment,2018/12/21,14:03:14 +1:00 GMT,not-a-virus:Downloader.Win32.DownloadSponsor.pe,C:\Users\annem\Downloads\VLC media player 64 Bit - CHIP-Installer.exe,Infected,Manual
AV/treatment,2018/12/21,14:03:34 +1:00 GMT,Hoax.Win32.DeceptPCClean.rp,C:\Users\annem\Downloads\Windows_Treiber_ASUS_X71Vn\Driver Utility\DriverToolkitInstaller.exe,Deleted,Manual
,2018/12/21,14:03:34 +1:00 GMT,
OSFW,2018/12/21,14:44:28 +1:00 GMT,UNKNOWN(0),Microsoft Windows Search Protocol Host,C:\Windows\SysWOW64\SearchProtocolHost.exe,PROCESS,OPENPROCESS,DST,,C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Microsoft+Windows+Search+Protocol+Host&VER=7.0.17134.285&FN=SearchProtocolHost.exe&Created=4d1f20dd&Size=345088&MD5=cf39f0f0f923649dffc969b673cf8305&SKIMP=a20aabeb896bac40a519c5cd6df76afa&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=C%3A%5CProgram+Files+(x86)%5CMicrosoft+Office%5COffice12%5COUTLOOK.EXE
OSFW,2018/12/21,14:44:28 +1:00 GMT,ALLOWED,Microsoft Windows Search Protocol Host,C:\Windows\SysWOW64\SearchProtocolHost.exe,PROCESS,OPENPROCESS,DST,,C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE,hxxp://osalerts.zonealarm.com/osanalyze.jsp?Product=ZoneAlarm&ProductVersion=15.4.52.17711&HU100=ZLN17498967109269-1001&CL=en&OEM=1001&SKU=0&Mode=6&QSRC=2&OS=Windows+10+x64-10.0.17134--SMP&LANG=1031&PN=Microsoft+Windows+Search+Protocol+Host&VER=7.0.17134.285&FN=SearchProtocolHost.exe&Created=4d1f20dd&Size=345088&MD5=cf39f0f0f923649dffc969b673cf8305&SKIMP=a20aabeb896bac40a519c5cd6df76afa&&CT=6001&EV=1&SUB=1&SEV=3&ARG1=C%3A%5CProgram+Files+(x86)%5CMicrosoft+Office%5COffice12%5COUTLOOK.EXE
AV/treatment,2018/12/21,14:55:58 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe,Infected,Manual
AV/treatment,2018/12/21,14:55:58 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\APNSetup.exe,Infected,Manual
AV/treatment,2018/12/21,14:56:20 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.dym,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.10.6_ORJ-V7C.msi//ICActs,File Repaired,Manual
AV/treatment,2018/12/21,14:56:20 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.dym,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.10.6_ORJ-V7C.msi,File Repaired,Manual
,2018/12/21,14:56:20 +1:00 GMT,
AV/treatment,2018/12/21,14:56:22 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.dyn,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.12.2_ORJ-V7C.msi//ICActs,File Repaired,Manual
AV/treatment,2018/12/21,14:56:22 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.dyn,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.12.2_ORJ-V7C.msi,File Repaired,Manual
,2018/12/21,14:56:22 +1:00 GMT,
AV/treatment,2018/12/21,14:56:22 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.15.1_ORJ-V7C.msi//Reporter,File Repaired,Manual
AV/treatment,2018/12/21,14:56:22 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.15.1_ORJ-V7C.msi,File Repaired,Manual
,2018/12/21,14:56:22 +1:00 GMT,
AV/treatment,2018/12/21,14:56:22 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.15.5_ORJ-V7C.msi//Reporter,File Repaired,Manual
AV/treatment,2018/12/21,14:56:22 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.15.5_ORJ-V7C.msi,File Repaired,Manual
,2018/12/21,14:56:22 +1:00 GMT,
AV/treatment,2018/12/21,14:56:22 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.16.1_ORJ-V7C.msi//Reporter,File Repaired,Manual
AV/treatment,2018/12/21,14:56:22 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.16.1_ORJ-V7C.msi,File Repaired,Manual
,2018/12/21,14:56:22 +1:00 GMT,
AV/treatment,2018/12/21,14:56:22 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.16.2_ORJ-V7C.msi//Reporter,File Repaired,Manual
AV/treatment,2018/12/21,14:56:22 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.16.2_ORJ-V7C.msi,File Repaired,Manual
,2018/12/21,14:56:22 +1:00 GMT,
AV/treatment,2018/12/21,14:56:24 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.17.1_ORJ-V7C.msi//Reporter,File Repaired,Manual
AV/treatment,2018/12/21,14:56:24 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.17.1_ORJ-V7C.msi,File Repaired,Manual
,2018/12/21,14:56:24 +1:00 GMT,
AV/treatment,2018/12/21,14:56:24 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.18.0_ORJ-V7C.msi//Reporter,File Repaired,Manual
AV/treatment,2018/12/21,14:56:24 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.18.0_ORJ-V7C.msi,File Repaired,Manual
,2018/12/21,14:56:24 +1:00 GMT,
AV/treatment,2018/12/21,14:56:24 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.19.0_ORJ-V7C.msi//Reporter,File Repaired,Manual
AV/treatment,2018/12/21,14:56:24 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.19.0_ORJ-V7C.msi,File Repaired,Manual
,2018/12/21,14:56:24 +1:00 GMT,
AV/treatment,2018/12/21,14:56:24 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.21.0_ORJ-V7C.msi//Reporter,File Repaired,Manual
AV/treatment,2018/12/21,14:56:24 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.21.0_ORJ-V7C.msi,File Repaired,Manual
,2018/12/21,14:56:24 +1:00 GMT,
AV/treatment,2018/12/21,14:56:26 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.25.2_ORJ-V7C.msi//Reporter,File Repaired,Manual
AV/treatment,2018/12/21,14:56:26 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.25.2_ORJ-V7C.msi,File Repaired,Manual
,2018/12/21,14:56:26 +1:00 GMT,
AV/treatment,2018/12/21,14:56:26 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.27.0_ORJ-V7C.msi//Reporter,File Repaired,Manual
AV/treatment,2018/12/21,14:56:26 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.27.0_ORJ-V7C.msi,File Repaired,Manual
,2018/12/21,14:56:26 +1:00 GMT,
AV/treatment,2018/12/21,14:56:26 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.28.1_ORJ-V7C.msi//Reporter,File Repaired,Manual
AV/treatment,2018/12/21,14:56:26 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\AskToolbarInstaller-12.28.1_ORJ-V7C.msi,File Repaired,Manual
,2018/12/21,14:56:26 +1:00 GMT,
AV/treatment,2018/12/21,14:56:30 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\ChromeUtils\APNNativeMsgHost.exe,Infected,Manual
AV/treatment,2018/12/21,14:56:32 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\apnmcp.exe,Infected,Manual
AV/treatment,2018/12/21,14:56:32 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\searchhook.dll,Infected,Manual
AV/treatment,2018/12/21,14:56:32 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\ServiceLocator.exe,Infected,Manual
AV/treatment,2018/12/21,14:56:32 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\SO.dll,Infected,Manual
AV/treatment,2018/12/21,14:56:32 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\toolbar.dll,Infected,Manual
AV/treatment,2018/12/21,14:56:32 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\Toolbar.exe,Infected,Manual
AV/treatment,2018/12/21,14:56:32 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\ToolbarPS.dll,Infected,Manual
AV/treatment,2018/12/21,14:56:32 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\toolbar_x64.dll,Infected,Manual
AV/treatment,2018/12/21,14:56:34 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\UpdateManager.exe,Infected,Manual
AV/treatment,2018/12/21,14:56:34 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\Updater\IDC\IdcLdr.exe,Infected,Manual
AV/treatment,2018/12/21,14:56:34 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\Updater\IDC\IdcLdr_x64.exe,Infected,Manual
AV/treatment,2018/12/21,14:56:34 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\Updater\IDC\IdcSrv.dll,Infected,Manual
AV/treatment,2018/12/21,14:56:34 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\Updater\IDC\IdcSrvStub.dll,Infected,Manual
AV/treatment,2018/12/21,14:56:34 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\Updater\IDC\IdcSrvStub_x64.dll,Infected,Manual
AV/treatment,2018/12/21,14:56:34 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\Updater\IDC\IdcSrv_x64.dll,Infected,Manual
AV/treatment,2018/12/21,14:56:40 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe,Infected,Manual
AV/treatment,2018/12/21,14:56:40 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\{PartnerID}\Passport.dll,Infected,Manual
AV/treatment,2018/12/21,14:56:40 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\Toolbar\{PartnerID}\Passport_x64.dll,Infected,Manual
AV/treatment,2018/12/21,14:56:42 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.ay,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\VNT\vntldr.exe,Infected,Manual
AV/treatment,2018/12/21,14:56:42 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\UpdateManager.exe,Infected,Manual
AV/treatment,2018/12/21,14:56:42 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\Updater\IDC\IdcLdr.exe,Infected,Manual
AV/treatment,2018/12/21,14:56:42 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\Updater\IDC\IdcSrv.dll,Infected,Manual
AV/treatment,2018/12/21,14:56:42 +1:00 GMT,not-a-virus:HEUR:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\Updater\IDC\IdcSrvStub.dll,Infected,Manual
AV/treatment,2018/12/21,14:56:48 +1:00 GMT,not-a-virus:WebToolbar.Win32.Asparnet.gen,E:\Annemarie Heuermann\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe,Infected,Manual
AV/treatment,2018/12/21,14:57:50 +1:00 GMT,not-a-virus:AdWare.Win32.Conduit.cnt,E:\Annemarie Heuermann\Program Files\CheckPoint\Install\CUninstallerZA.exe,File Repaired,Manual
,2018/12/21,14:57:50 +1:00 GMT,
__________________
 

Themen zu Weiterer Windows 10 Rechner mit Malware
.dll, antivirus, computer, defender, excel, explorer, firewall, geforce, google, helper, internet, internet explorer, malware, programm, programme, registry, scan, security, server, software, tcp, udp, usb, windows, windowsapps, wmi


« Windows 10: Trojanerinfizierung mit Gen:Variant.Graftor | Malware oder ähnlicheres?! »


Ähnliche Themen: Weiterer Windows 10 Rechner mit Malware


  1. Windows 7: Avira hat ADSPY/Skrum.EL & PUA/OpenCandy.GEN gefunden + 1 weiterer Fund durch Malwarebytes
    Log-Analyse und Auswertung - 29.02.2016 (15)
  2. Windows 7: Mehrer Viren bzw. Malware auf dem Rechner
    Log-Analyse und Auswertung - 06.12.2015 (5)
  3. Windows Vista incredibar-search ASK-Toolbar vermutlich Malware, Rechner sehr langsam
    Log-Analyse und Auswertung - 28.04.2015 (11)
  4. Windows 7: Rechner langsam und voll mit Viren/Trojana/Malware
    Log-Analyse und Auswertung - 23.04.2015 (25)
  5. Windows 8.1 frisch installiert und dennoch Malware auf dem Rechner
    Log-Analyse und Auswertung - 09.04.2015 (11)
  6. Windows 8.1 Malware B findet viele Enträge, Rechner langsam, Maus wechselt ständig in Sanduhr
    Log-Analyse und Auswertung - 03.03.2015 (9)
  7. Windows 7 Rechner wird immer langsamer Malware gefunden
    Plagegeister aller Art und deren Bekämpfung - 21.10.2014 (12)
  8. Windows 7: Trojan.Dropper.SP + weiterer Fund
    Plagegeister aller Art und deren Bekämpfung - 03.09.2013 (13)
  9. C:\WINDOWS\system32\dmwu.exe und weiterer Befall
    Plagegeister aller Art und deren Bekämpfung - 25.03.2013 (3)
  10. ein weiterer GVU Trojaner! :( plz help
    Log-Analyse und Auswertung - 24.12.2012 (23)
  11. OpenCandy [Malware] auf dem Rechner, aber Anti-Malware Programme finden keine Bedrohung.
    Plagegeister aller Art und deren Bekämpfung - 03.09.2012 (5)
  12. Ein weiterer Fall: 50 € Virus - Windows gesperrt
    Log-Analyse und Auswertung - 11.04.2012 (22)
  13. Weiterer 50€ Trojaner...
    Log-Analyse und Auswertung - 27.02.2012 (2)
  14. Ein weiterer 50 € Virus
    Plagegeister aller Art und deren Bekämpfung - 10.02.2012 (5)
  15. Malware auf dem Windows 7 Rechner, nichts geht mehr :(
    Plagegeister aller Art und deren Bekämpfung - 01.08.2011 (5)
  16. Ein weiterer BKA-Trojaner
    Log-Analyse und Auswertung - 02.05.2011 (18)
  17. Probleme mit Antimalware Doctor und ggf. weiterer malware
    Plagegeister aller Art und deren Bekämpfung - 02.11.2010 (45)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Weiterer Windows 10 Rechner mit Malware - Code: Alles auswählen Aufklappen ATTFilter 2018-12-21 23:16 - 2018-12-21 23:16 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll 2018-12-21 23:16 - 2018-12-21 23:16 - 000294072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll 2018-12-21 23:16 - - Weiterer Windows 10 Rechner mit Malware...
Archiv
Du betrachtest: Weiterer Windows 10 Rechner mit Malware auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132