Trojaner-Board - Firefox öffnet selbst Tabs und Werbebanner

Trojaner-Board (https://www.trojaner-board.de/)

- Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)

- - Firefox öffnet selbst Tabs und Werbebanner (https://www.trojaner-board.de/176230-firefox-oeffnet-selbst-tabs-werbebanner.html)

Firefox öffnet selbst Tabs und Werbebanner

Hallo,

ich habe das Problem beim Firefox, das sich Tabs mit Werbung wie: RemaigeRepair , Spieleseiten und Werbebanner mit Ads by name selbständig öffnen.
Mit Google Chrome Gibt es keine Probleme .

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:21-02-2016

durchgeführt von stefan (Administrator) auf STEFAN-PC (21-02-2016 22:08:40)

Gestartet von C:\Users\stefan\Favorites\Downloads

Geladene Profile: stefan (Verfügbare Profile: stefan)

Platform: Microsoft Windows 7 Home Premium  Service Pack 1 0(X86) Sprache: Deutsch (Deutschland)

Internet Explorer Version 11 (Standard-Browser: FF)

Start-Modus: Normal

Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 

==================== Prozesse (Nicht auf der Ausnahmeliste) =================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Microsoft Corporation) C:\Windows\System32\rundll32.exe

(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe

(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe

() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe

() C:\Program Files\CyberLink\Shared Files\RichVideo.exe

(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe

(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Samsung Magic Doctor\MagicDoctorKbdHk.exe

(SAMSUNG Electronics co., LTD.) C:\Program Files\Samsung\EBM\EasyBatteryMgr3.exe

(SAMSUNG Electronics) C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe

(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Microsoft Corporation) C:\Windows\System32\rundll32.exe

(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe

(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe

(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe

(Cyberlink Corp.) C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe

(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe

(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe

(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe

(Sciper) C:\Users\stefan\Favorites\Downloads\Battery-Tool.exe

(Samsung) C:\Program Files\Samsung\Kies\Kies.exe

(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe

(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe

(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.exe

(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.bin

(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe

(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe

(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_20_0_0_306.exe

(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_20_0_0_306.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Farbar) C:\Users\stefan\Favorites\Downloads\FRST (1).exe
 
 

==================== Registry (Nicht auf der Ausnahmeliste) ===========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
 

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-10-26] (Synaptics, Inc.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [6111232 2008-04-17] (Realtek Semiconductor)

HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)

HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2015-07-27] (Samsung Electronics Co., Ltd.)

HKLM\...\Run: [LanguageShortcut] => C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [52256 2007-01-08] ()

HKLM\...\Run: [RemoteControl] => C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [71216 2007-03-14] (Cyberlink Corp.)

HKLM\...\Run: [TkBellExe] => c:\program files\real\realplayer\Update\realsched.exe [295512 2014-02-05] (RealNetworks, Inc.)

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Run: [Battery-Tool] => C:\Users\stefan\Favorites\Downloads\Battery-Tool.exe [414208 2016-01-22] (Sciper)

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [144384 2010-11-20] (Microsoft Corporation)

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1566016 2015-07-27] (Samsung)

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Run: [LightScribe Control Panel] => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2289664 2008-03-17] (Hewlett-Packard Company)

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2008-12-20] (Google Inc.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BTTray.lnk [2008-07-08]

ShortcutTarget: BTTray.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-02-16]

ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

Startup: C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk [2014-12-14]

ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
 

==================== Internet (Nicht auf der Ausnahmeliste) ====================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
 

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{86602508-A4F0-4FD4-AA67-02B048ABA103}: [DhcpNameServer] 192.168.1.1
 

Internet Explorer:

==================

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp:\\www.samsungcomputer.com

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.web.de/

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)

BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-16] (AO Kaspersky Lab)

Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)

Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-16] (AO Kaspersky Lab)

Toolbar: HKU\S-1-5-21-3424759491-1413610708-398819693-1003 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)

DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
 

FireFox:

========

FF ProfilePath: C:\Users\stefan\AppData\Roaming\Mozilla\Firefox\Profiles\lu6yq3li.default-1454154928179

FF NewTab: about:newtab

FF DefaultSearchEngine: Google (avast)

FF DefaultSearchUrl: hxxps://www.google.com/search?trackid=sp-004-752

FF SearchEngineOrder.1: Google (avast)

FF SelectedSearchEngine: Google (avast)

FF Homepage: hxxps://www.google.com/?trackid=sp-004-752

FF Keyword.URL: hxxps://www.google.com/search?trackid=sp-004-752

FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll [2016-02-21] ()

FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1214154.dll [2014-11-07] (Adobe Systems, Inc.)

FF Plugin: @canon.com/MycameraPlugin -> C:\Program Files\Canon\ZoomBrowser EX\Program\NPCIG.dll [2008-10-15] (CANON INC.)

FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)

FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)

FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)

FF Plugin: @pack.google.com/Google Updater;version=14 -> C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll [2011-10-07] (Google)

FF Plugin: @real.com/nppl3260;version=16.0.3.51 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll [2014-02-05] (RealNetworks, Inc.)

FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)

FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)

FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)

FF Plugin: @real.com/nprpplugin;version=16.0.3.51 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll [2014-02-05] (RealPlayer)

FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)

FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)

FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)

FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011-10-03] (Sun Microsystems, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdevalvr.dll [2012-11-06] (www.devalvr.com)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdevalvr_.dll [2012-11-06] (www.devalvr.com)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2014-02-05] (RealNetworks, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll [2014-02-05] (RealPlayer)

FF SearchPlugin: C:\Users\stefan\AppData\Roaming\Mozilla\Firefox\Profiles\lu6yq3li.default-1454154928179\searchplugins\google-avast.xml [2016-01-30]

FF Extension: Adblock Plus - C:\Users\stefan\AppData\Roaming\Mozilla\Firefox\Profiles\lu6yq3li.default-1454154928179\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-01-30]

FF Extension: Anti-Banner - C:\Program Files\Mozilla Firefox\extensions\KavAntiBanner@kaspersky.ru_bak2 [2016-02-16] [ist nicht signiert]

FF Extension: Kaspersky URL Advisor - C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak [2016-02-16] [ist nicht signiert]

FF Extension: Modul zur Link-Untersuchung - C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak2 [2016-02-16] [ist nicht signiert]

FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2016-02-16] [ist nicht signiert]

FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension

FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2016-02-16] [ist nicht signiert]

FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext

FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2016-02-16] [ist nicht signiert]

FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext

FF HKLM\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox

FF Extension: Kaspersky Protection - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2016-02-16]

FF HKLM\...\Thunderbird\Extensions: [{eea12ec4-729d-4703-bc37-106ce9879ce2}] - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\THBExt => nicht gefunden

FF HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF ExtraCheck: C:\Program Files\mozilla firefox\browser\defaults\preferences\my-prefs.js [2015-03-25] <==== ACHTUNG (Zeigt auf eine *.cfg Datei)

FF ExtraCheck: C:\Program Files\mozilla firefox\my.cfg [2015-03-25] <==== ACHTUNG
 

Chrome: 

=======

CHR HomePage: Default -> hxxp://www%2Cweb.deyetn2y1l1qzutdtdtcyc0e0a0czztayb0a0azytdtbzytn0d0tzu0stctczzzztn1l2xzutatfzytfybtftdtn1l1czutcyetbzytdyd1v1ttn1l1g1b1v1n2y1l1qzu2syb0ata0atazy0dtdtgyb0e0fydtg0etdyctbtgtayezyyctgta0c0etdtbtazz0e0a0eyd0c2qtn1m1f1b2z1v1n2y1l1qzu2s0atbtd0e0b0c0b0dtgtdtatc0atgyezztbyetg0ayczzybtgye0fyb0fzzye0b0e0eydtbzz2qtn0a0lzuyetn1b2z1v1t1s1nzuycydyc%26cr%3D846519543%26ir%3D/

CHR StartupUrls: Default -> "hxxp://web.de/"

CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\48.0.2564.116\ppGoogleNaClPluginChrome.dll => Keine Datei

CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\48.0.2564.116\pdf.dll => Keine Datei

CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\48.0.2564.116\gcswf32.dll => Keine Datei

CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll => Keine Datei

CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\plugin/npABPlugin.dll => Keine Datei

CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.477_0\plugin/npVKPlugin.dll => Keine Datei

CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.477_0\plugin/npUrlAdvisor.dll => Keine Datei

CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll => Keine Datei

CHR Plugin: (Java Deployment Toolkit 6.0.290.11) - C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.)

CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)

CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll => Keine Datei

CHR Plugin: (RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll => Keine Datei

CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll => Keine Datei

CHR Plugin: (NPCIG.dll) - C:\Program Files\Canon\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)

CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)

CHR Plugin: (Google Updater) - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)

CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll => Keine Datei

CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => Keine Datei

CHR Plugin: (Windows Live® Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

CHR Profile: C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Adblock Plus) - C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-02-16]

CHR Extension: (Kaspersky Protection) - C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\eahebamiopdhefndnmappcihfajigkka [2016-02-16]

CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-16]

CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka

CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
 

==================== Dienste (Nicht auf der Ausnahmeliste) ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

R2 AVP16.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2016-02-16] (Kaspersky Lab ZAO)

S2 gupdate1c98932dd8af594; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.)

R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2008-03-17] (Hewlett-Packard Company) [Datei ist nicht signiert]

S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)

R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2009-05-14] (Hewlett-Packard) [Datei ist nicht signiert]

R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2009-05-14] (Hewlett-Packard) [Datei ist nicht signiert]

R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()

R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2006-12-19] ()

R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.)

R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
 

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [201912 2015-07-06] (Kaspersky Lab ZAO)

R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [153784 2015-06-22] (Kaspersky Lab ZAO)

R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [46776 2015-06-06] (Kaspersky Lab ZAO)

R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [58224 2015-06-27] (Kaspersky Lab ZAO)

R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [58040 2015-06-06] (Kaspersky Lab ZAO)

R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [147328 2016-02-16] (AO Kaspersky Lab)

R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [44728 2016-02-16] (AO Kaspersky Lab)

R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [783744 2016-02-16] (AO Kaspersky Lab)

R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [33976 2015-06-11] (Kaspersky Lab ZAO)

R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [37048 2015-06-06] (Kaspersky Lab ZAO)

R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [38072 2015-06-07] (Kaspersky Lab ZAO)

R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [39304 2016-02-16] (AO Kaspersky Lab)

R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [54328 2015-06-11] (Kaspersky Lab ZAO)

R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [87736 2015-06-16] (Kaspersky Lab ZAO)

R2 KMDFMEMIO; C:\Windows\System32\DRIVERS\kmdfmemio.sys [13312 2007-05-23] (SAMSUNG ELECTRONICS CO., LTD.)

R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [156856 2015-06-23] (Kaspersky Lab ZAO)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)

S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)

R3 VMC302; C:\Windows\System32\Drivers\VMC302.sys [243840 2009-01-23] (Vimicro Corporation)

U4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X]

S3 NETw5v32; system32\DRIVERS\NETw5v32.sys [X]
 

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 
 

==================== Ein Monat: Erstellte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2016-02-21 21:43 - 2016-02-21 22:08 - 00000000 ____D C:\FRST

2016-02-21 18:32 - 2016-02-21 18:32 - 00001117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk

2016-02-21 18:32 - 2016-02-21 18:32 - 00001105 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk

2016-02-21 18:32 - 2016-02-21 18:32 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service

2016-02-21 17:40 - 2016-02-21 17:40 - 00026624 ___SH C:\Users\stefan\Desktop\Thumbs.db

2016-02-19 14:50 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL

2016-02-19 14:50 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL

2016-02-19 14:50 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL

2016-02-19 14:50 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL

2016-02-19 14:50 - 2014-07-09 02:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL

2016-02-19 14:50 - 2012-02-11 06:37 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe

2016-02-19 14:50 - 2011-03-11 06:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys

2016-02-19 14:50 - 2011-03-11 06:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys

2016-02-19 14:50 - 2011-03-11 06:38 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys

2016-02-19 14:50 - 2011-03-11 06:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys

2016-02-19 14:50 - 2011-03-11 06:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys

2016-02-19 14:50 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll

2016-02-19 14:50 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe

2016-02-19 14:50 - 2011-03-11 05:01 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS

2016-02-18 21:09 - 2016-02-18 21:09 - 144254680 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2016-02-18 21:06 - 2016-02-18 21:06 - 00000000 ____D C:\Users\stefan\AppData\Local\GWX

2016-02-18 20:59 - 2016-02-18 20:59 - 00000000 ___SD C:\Windows\system32\CompatTel

2016-02-18 20:59 - 2016-02-18 20:59 - 00000000 ____D C:\Windows\system32\appraiser

2016-02-18 20:34 - 2015-01-09 00:44 - 00419936 _____ C:\Windows\system32\locale.nls

2016-02-18 19:52 - 2016-02-06 11:01 - 20366848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2016-02-18 19:52 - 2016-02-06 10:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2016-02-18 19:52 - 2016-02-06 10:43 - 02280448 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2016-02-18 19:52 - 2016-02-06 10:38 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2016-02-18 19:52 - 2016-02-06 10:16 - 12857856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2016-02-18 19:52 - 2016-02-06 09:54 - 01312256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2016-02-18 19:52 - 2016-01-22 21:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2016-02-18 19:52 - 2016-01-22 07:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2016-02-18 19:52 - 2016-01-22 07:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2016-02-18 19:52 - 2016-01-22 07:01 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2016-02-18 19:52 - 2016-01-22 06:55 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2016-02-18 19:52 - 2016-01-22 06:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2016-02-18 19:52 - 2016-01-22 06:52 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2016-02-18 19:52 - 2016-01-22 06:51 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2016-02-18 19:52 - 2016-01-22 06:51 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2016-02-18 19:52 - 2016-01-22 06:46 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2016-02-18 19:52 - 2016-01-22 06:43 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2016-02-18 19:52 - 2016-01-22 06:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2016-02-18 19:52 - 2016-01-22 06:38 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2016-02-18 19:52 - 2016-01-22 06:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2016-02-18 19:52 - 2016-01-22 06:34 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2016-02-18 19:52 - 2016-01-22 06:33 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2016-02-18 19:52 - 2016-01-22 06:27 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2016-02-18 19:52 - 2016-01-22 06:25 - 00687104 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2016-02-18 19:52 - 2016-01-22 06:25 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2016-02-18 19:52 - 2016-01-22 06:24 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2016-02-18 19:52 - 2016-01-22 06:07 - 02120704 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2016-02-18 19:52 - 2016-01-22 06:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2016-02-18 19:52 - 2016-01-16 19:42 - 00022464 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe

2016-02-18 19:52 - 2016-01-16 19:34 - 00949760 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2016-02-18 19:52 - 2016-01-11 15:07 - 01198080 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll

2016-02-18 19:52 - 2016-01-11 15:07 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll

2016-02-18 19:52 - 2016-01-11 15:07 - 00544768 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll

2016-02-18 19:52 - 2016-01-11 15:07 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll

2016-02-18 19:52 - 2016-01-11 15:07 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll

2016-02-18 19:52 - 2015-11-16 21:12 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll

2016-02-18 19:52 - 2015-06-03 21:17 - 01167520 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe

2016-02-18 19:51 - 2016-01-22 07:02 - 00496640 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2016-02-18 19:51 - 2016-01-22 07:01 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2016-02-18 19:51 - 2016-01-22 07:00 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2016-02-18 19:51 - 2016-01-22 06:51 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2016-02-18 19:51 - 2016-01-22 06:35 - 04611072 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2016-02-18 19:51 - 2016-01-22 06:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2016-02-18 19:51 - 2016-01-22 06:24 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2016-02-18 19:51 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll

2016-02-18 19:50 - 2015-11-10 19:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll

2016-02-18 19:50 - 2015-11-10 19:39 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll

2016-02-18 19:50 - 2015-11-10 19:39 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll

2016-02-18 19:50 - 2015-02-03 04:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll

2016-02-18 19:39 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll

2016-02-18 19:39 - 2015-07-30 18:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll

2016-02-18 19:38 - 2015-02-04 03:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll

2016-02-18 19:23 - 2016-02-18 19:29 - 00000000 ___SD C:\Windows\system32\GWX

2016-02-18 11:38 - 2012-07-26 04:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe

2016-02-18 11:38 - 2012-07-26 04:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll

2016-02-18 11:38 - 2012-07-26 04:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll

2016-02-18 11:38 - 2012-07-26 04:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll

2016-02-18 11:38 - 2012-07-26 04:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll

2016-02-18 11:38 - 2012-07-26 03:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys

2016-02-18 11:38 - 2012-07-26 03:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys

2016-02-18 11:38 - 2012-06-02 15:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf

2016-02-18 11:35 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll

2016-02-18 11:35 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe

2016-02-18 11:35 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe

2016-02-18 11:35 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll

2016-02-18 11:34 - 2012-03-01 06:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys

2016-02-18 11:34 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2016-02-18 11:00 - 2016-02-18 11:00 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2016-02-18 11:00 - 2016-02-18 11:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2016-02-18 11:00 - 2016-02-18 11:00 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2016-02-18 11:00 - 2016-02-18 11:00 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2016-02-18 11:00 - 2016-02-18 11:00 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2016-02-18 11:00 - 2016-02-18 11:00 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2016-02-18 11:00 - 2016-02-18 11:00 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2016-02-18 10:59 - 2016-02-18 10:59 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll

2016-02-18 10:59 - 2016-02-18 10:59 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe

2016-02-18 10:56 - 2016-02-18 10:56 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2016-02-18 10:55 - 2016-02-18 10:55 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll

2016-02-18 10:53 - 2015-07-30 14:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2016-02-18 09:41 - 2016-02-18 09:41 - 00201216 ___SH C:\Users\stefan\Documents\Thumbs.db

2016-02-17 22:20 - 2015-01-09 03:48 - 00635904 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll

2016-02-17 22:20 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll

2016-02-17 22:20 - 2015-01-09 03:48 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll

2016-02-17 22:17 - 2015-07-10 18:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll

2016-02-17 22:17 - 2015-07-10 18:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll

2016-02-17 22:17 - 2015-07-10 18:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll

2016-02-17 22:17 - 2015-01-29 04:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll

2016-02-17 22:17 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll

2016-02-17 22:17 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll

2016-02-17 22:17 - 2013-07-03 05:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys

2016-02-17 22:17 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys

2016-02-17 22:17 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys

2016-02-17 22:17 - 2013-04-12 14:45 - 01211752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys

2016-02-17 22:17 - 2012-07-04 20:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys

2016-02-17 22:16 - 2016-01-16 19:36 - 01413632 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll

2016-02-17 22:16 - 2015-11-11 19:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll

2016-02-17 22:16 - 2015-11-11 19:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll

2016-02-17 22:16 - 2013-02-12 04:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys

2016-02-17 22:16 - 2011-04-29 03:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys

2016-02-17 22:16 - 2011-04-29 03:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys

2016-02-17 22:16 - 2011-04-29 03:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys

2016-02-17 22:15 - 2016-01-22 07:05 - 12877824 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2016-02-17 22:15 - 2016-01-22 07:00 - 01498624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll

2016-02-17 22:15 - 2016-01-22 06:59 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll

2016-02-17 22:15 - 2016-01-22 06:12 - 02973184 _____ (Microsoft Corporation) C:\Windows\explorer.exe

2016-02-17 22:15 - 2016-01-07 18:47 - 02386944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2016-02-17 22:15 - 2016-01-06 19:41 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll

2016-02-17 22:15 - 2016-01-06 18:56 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll

2016-02-17 22:15 - 2015-08-27 18:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll

2016-02-17 22:15 - 2015-08-27 18:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

2016-02-17 22:15 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll

2016-02-17 22:15 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll

2016-02-17 22:15 - 2015-07-09 18:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe

2016-02-17 22:15 - 2015-07-09 18:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\notepad.exe

2016-02-17 22:15 - 2015-07-01 21:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll

2016-02-17 22:15 - 2015-07-01 21:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll

2016-02-17 22:15 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll

2016-02-17 22:15 - 2013-01-24 05:47 - 00196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys

2016-02-17 22:15 - 2012-11-02 06:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll

2016-02-17 22:15 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll

2016-02-17 22:15 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe

2016-02-17 22:14 - 2015-08-05 18:41 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll

2016-02-17 22:14 - 2015-06-15 22:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll

2016-02-17 22:14 - 2015-06-15 22:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll

2016-02-17 22:14 - 2015-06-15 22:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe

2016-02-17 22:14 - 2015-06-15 22:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll

2016-02-17 22:14 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll

2016-02-17 22:14 - 2014-06-16 02:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys

2016-02-17 22:14 - 2014-06-16 02:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys

2016-02-17 22:14 - 2014-06-16 02:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll

2016-02-17 22:14 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll

2016-02-17 22:14 - 2011-03-03 06:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll

2016-02-17 22:14 - 2011-03-03 06:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll

2016-02-17 22:14 - 2011-03-03 06:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe

2016-02-17 22:13 - 2015-11-05 20:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll

2016-02-17 22:13 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll

2016-02-17 22:13 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll

2016-02-17 22:13 - 2015-10-29 18:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll

2016-02-17 22:13 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe

2016-02-17 22:13 - 2015-07-15 18:59 - 00078784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys

2016-02-17 22:13 - 2015-07-15 18:55 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll

2016-02-17 22:13 - 2015-07-15 18:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll

2016-02-17 22:13 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL

2016-02-17 22:13 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx

2016-02-17 22:13 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll

2016-02-17 22:13 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe

2016-02-17 22:13 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe

2016-02-17 22:13 - 2012-08-21 21:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe

2016-02-17 22:13 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl

2016-02-17 22:13 - 2011-08-17 05:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll

2016-02-17 22:13 - 2011-08-17 05:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax

2016-02-17 22:13 - 2011-05-24 11:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll

2016-02-17 22:12 - 2016-01-07 18:35 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys

2016-02-17 22:12 - 2015-11-03 19:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\els.dll

2016-02-17 22:12 - 2015-10-13 17:31 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys

2016-02-17 22:12 - 2015-10-13 17:31 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys

2016-02-17 22:12 - 2015-10-13 05:50 - 00712640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys

2016-02-17 22:12 - 2015-09-02 03:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll

2016-02-17 22:12 - 2015-09-02 03:48 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll

2016-02-17 22:12 - 2015-09-02 03:48 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll

2016-02-17 22:12 - 2015-09-02 03:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll

2016-02-17 22:12 - 2015-09-02 02:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll

2016-02-17 22:12 - 2015-04-11 04:07 - 00054656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys

2016-02-17 22:12 - 2015-03-04 05:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys

2016-02-17 22:12 - 2015-03-04 05:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll

2016-02-17 22:12 - 2015-01-17 03:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll

2016-02-17 22:12 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll

2016-02-17 22:12 - 2014-02-04 03:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys

2016-02-17 22:12 - 2014-02-04 03:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys

2016-02-17 22:12 - 2014-02-04 03:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys

2016-02-17 22:12 - 2014-02-04 03:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll

2016-02-17 22:12 - 2014-01-28 03:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll

2016-02-17 22:12 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll

2016-02-17 22:12 - 2013-05-13 04:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe

2016-02-17 22:12 - 2013-05-13 04:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll

2016-02-17 22:12 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll

2016-02-17 22:12 - 2013-04-26 05:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll

2016-02-17 22:12 - 2013-03-19 04:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll

2016-02-17 22:12 - 2011-08-27 05:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll

2016-02-17 22:12 - 2011-05-03 05:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll

2016-02-17 22:11 - 2015-07-22 18:53 - 00937984 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll

2016-02-17 22:11 - 2015-07-22 18:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll

2016-02-17 22:11 - 2015-07-22 17:38 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll

2016-02-17 22:11 - 2015-07-09 18:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll

2016-02-17 22:11 - 2015-07-09 18:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll

2016-02-17 22:11 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll

2016-02-17 22:11 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll

2016-02-17 22:11 - 2012-10-03 17:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll

2016-02-17 22:11 - 2012-10-03 16:21 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys

2016-02-17 22:11 - 2012-06-06 06:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll

2016-02-17 22:11 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll

2016-02-17 22:11 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll

2016-02-17 22:11 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll

2016-02-17 22:11 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll

2016-02-17 22:11 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll

2016-02-17 22:11 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll

2016-02-17 22:11 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe

2016-02-17 22:11 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe

2016-02-17 22:11 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe

2016-02-17 22:11 - 2011-02-12 06:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe

2016-02-17 22:10 - 2016-01-22 07:13 - 03993536 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe

2016-02-17 22:10 - 2016-01-22 07:13 - 03938752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2016-02-17 22:10 - 2016-01-22 07:13 - 00138176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2016-02-17 22:10 - 2016-01-22 07:13 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2016-02-17 22:10 - 2016-01-22 07:09 - 01310232 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2016-02-17 22:10 - 2016-01-22 07:06 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll

2016-02-17 22:10 - 2016-01-22 07:06 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2016-02-17 22:10 - 2016-01-22 07:06 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll

2016-02-17 22:10 - 2016-01-22 07:06 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2016-02-17 22:10 - 2016-01-22 07:06 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2016-02-17 22:10 - 2016-01-22 07:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll

2016-02-17 22:10 - 2016-01-22 07:05 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll

2016-02-17 22:10 - 2016-01-22 07:05 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2016-02-17 22:10 - 2016-01-22 07:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2016-02-17 22:10 - 2016-01-22 07:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll

2016-02-17 22:10 - 2016-01-22 07:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 01060864 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00293888 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:07 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe

2016-02-17 22:10 - 2016-01-22 06:01 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe

2016-02-17 22:10 - 2016-01-22 06:00 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe

2016-02-17 22:10 - 2016-01-22 05:53 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys

2016-02-17 22:10 - 2016-01-22 05:53 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys

2016-02-17 22:10 - 2016-01-22 05:53 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys

2016-02-17 22:10 - 2016-01-22 05:51 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe

2016-02-17 22:10 - 2016-01-22 05:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll

2016-02-17 22:10 - 2016-01-22 05:51 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2016-02-17 22:10 - 2016-01-22 05:51 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2016-02-17 22:10 - 2016-01-22 05:51 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 05:51 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 05:51 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 05:51 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2016-02-17 22:10 - 2015-09-23 14:09 - 00371920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

2016-02-17 22:10 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll

2016-02-17 22:10 - 2015-05-25 19:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll

2016-02-17 22:10 - 2015-05-25 19:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe

2016-02-17 22:10 - 2015-05-25 19:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe

2016-02-17 22:10 - 2015-05-25 19:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe

2016-02-17 22:10 - 2015-05-25 19:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe

2016-02-17 22:10 - 2015-05-25 19:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe

2016-02-17 22:10 - 2014-06-18 02:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe

2016-02-17 22:10 - 2012-07-04 22:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll

2016-02-17 22:10 - 2012-07-04 22:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll

2016-02-17 22:10 - 2012-07-04 22:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll

2016-02-17 22:09 - 2015-11-03 19:56 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll

2016-02-17 22:09 - 2015-04-27 20:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll

2016-02-17 22:09 - 2015-04-27 20:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2016-02-17 22:09 - 2015-04-27 20:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll

2016-02-17 22:09 - 2015-04-27 20:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll

2016-02-17 22:09 - 2015-04-18 03:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll

2016-02-17 22:09 - 2015-04-13 04:19 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe

2016-02-17 22:09 - 2010-12-23 06:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll

2016-02-17 22:09 - 2010-12-23 06:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax

2016-02-17 22:08 - 2015-12-08 22:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll

2016-02-17 22:08 - 2015-12-08 22:53 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2016-02-17 22:08 - 2015-10-01 18:50 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe

2016-02-17 22:08 - 2015-10-01 18:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll

2016-02-17 22:08 - 2015-10-01 18:50 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll

2016-02-17 22:08 - 2015-10-01 18:50 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll

2016-02-17 22:08 - 2015-10-01 18:50 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe

2016-02-17 22:08 - 2015-10-01 17:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys

2016-02-17 22:08 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll

2016-02-17 22:08 - 2014-04-05 03:25 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2016-02-17 22:08 - 2014-04-05 03:24 - 00187840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS

2016-02-17 22:08 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys

2016-02-17 22:07 - 2015-11-05 20:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll

2016-02-17 22:07 - 2015-11-05 10:48 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys

2016-02-17 22:07 - 2014-12-19 03:43 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll

2016-02-17 22:07 - 2014-12-11 18:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe

2016-02-17 22:07 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll

2016-02-17 22:07 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll

2016-02-17 22:07 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll

2016-02-17 22:07 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll

2016-02-17 22:07 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll

2016-02-17 22:07 - 2012-12-07 13:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll

2016-02-17 22:07 - 2012-12-07 13:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll

2016-02-17 22:07 - 2012-12-07 11:46 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs

2016-02-17 22:07 - 2011-12-16 08:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll

2016-02-17 22:07 - 2011-11-17 06:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll

2016-02-17 22:07 - 2011-06-15 09:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll

2016-02-17 22:07 - 2011-06-15 09:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll

2016-02-17 22:07 - 2011-06-15 09:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll

2016-02-17 22:07 - 2011-06-15 09:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll

2016-02-17 22:07 - 2011-06-15 09:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll

2016-02-17 22:06 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll

2016-02-17 22:06 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll

2016-02-17 22:06 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe

2016-02-17 22:06 - 2015-06-25 10:48 - 00105408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe

2016-02-17 22:06 - 2015-06-25 10:44 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll

2016-02-17 22:06 - 2015-02-18 08:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe

2016-02-17 22:06 - 2015-02-03 04:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll

2016-02-17 22:06 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe

2016-02-17 22:06 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll

2016-02-17 22:06 - 2014-07-17 02:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe

2016-02-17 22:06 - 2014-07-17 02:39 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe

2016-02-17 22:06 - 2014-07-17 02:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll

2016-02-17 22:06 - 2014-07-17 02:03 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys

2016-02-17 22:06 - 2014-07-17 02:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys

2016-02-17 22:06 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll

2016-02-17 22:06 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL

2016-02-17 22:06 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL

2016-02-17 22:06 - 2013-08-05 02:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys

2016-02-17 22:06 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll

2016-02-17 22:06 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll

2016-02-17 22:06 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll

2016-02-17 22:06 - 2012-09-25 23:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll

2016-02-17 22:06 - 2012-05-14 05:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll

2016-02-17 22:06 - 2012-04-26 05:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll

2016-02-17 22:06 - 2012-04-26 05:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe

2016-02-17 22:06 - 2012-03-17 08:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys

2016-02-17 22:06 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll

2016-02-17 22:05 - 2015-07-15 03:55 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll

2016-02-17 22:05 - 2015-04-29 19:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll

2016-02-17 22:05 - 2015-04-29 19:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll

2016-02-17 22:05 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx

2016-02-17 22:05 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll

2016-02-17 22:05 - 2015-04-29 19:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL

2016-02-17 22:05 - 2015-02-25 04:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys

2016-02-17 22:05 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll

2016-02-17 22:05 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys

2016-02-17 22:04 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll

2016-02-17 22:04 - 2015-12-08 22:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax

2016-02-17 22:04 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe

2016-02-17 22:04 - 2015-12-08 22:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe

2016-02-17 22:04 - 2015-12-08 22:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll

2016-02-17 22:04 - 2015-12-08 22:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll

2016-02-17 22:04 - 2015-12-08 22:43 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys

2016-02-17 22:04 - 2015-12-08 22:11 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys

2016-02-17 22:04 - 2015-12-08 22:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys

2016-02-17 22:04 - 2015-06-02 00:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll

2016-02-17 22:04 - 2014-12-06 04:50 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll

2016-02-17 22:04 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys

2016-02-17 22:04 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys

2016-02-17 22:04 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys

2016-02-17 22:04 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys

2016-02-17 22:04 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys

2016-02-17 22:04 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys

2016-02-17 22:04 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys

2016-02-17 22:04 - 2012-11-28 23:57 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys

2016-02-17 22:04 - 2012-11-28 23:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll

2016-02-17 22:04 - 2012-11-28 23:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf

2016-02-17 22:04 - 2012-10-03 17:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll

2016-02-17 22:04 - 2012-10-03 17:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll

2016-02-17 22:04 - 2011-03-11 06:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll

2016-02-17 22:04 - 2011-03-11 06:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll

2016-02-17 22:04 - 2011-02-23 05:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys

2016-02-17 22:03 - 2015-02-03 04:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll

2016-02-17 22:03 - 2015-02-03 04:11 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe

2016-02-17 22:03 - 2015-02-03 04:11 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe

2016-02-17 22:03 - 2015-02-03 04:11 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe

2016-02-17 22:03 - 2015-02-03 04:10 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll

2016-02-17 22:03 - 2015-02-03 04:00 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys

2016-02-17 22:03 - 2014-10-31 23:22 - 00521384 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe

2016-02-17 22:03 - 2014-06-28 01:21 - 00455752 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe

2016-02-17 22:03 - 2014-06-28 01:21 - 00409272 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll

2016-02-17 22:03 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll

2016-02-17 22:03 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll

2016-02-17 22:03 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll

2016-02-17 22:03 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll

2016-02-17 22:03 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll

2016-02-17 22:03 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe

2016-02-17 22:03 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe

2016-02-17 22:03 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe

2016-02-17 22:03 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe

2016-02-17 22:02 - 2016-01-11 19:47 - 02956288 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2016-02-17 22:02 - 2016-01-11 19:47 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll

2016-02-17 22:02 - 2016-01-11 19:35 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll

2016-02-17 22:02 - 2016-01-11 19:17 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2016-02-17 22:02 - 2016-01-11 19:14 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll

2016-02-17 22:02 - 2016-01-11 19:14 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2016-02-17 22:02 - 2016-01-11 19:14 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll

2016-02-17 22:02 - 2016-01-11 19:14 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2016-02-17 22:02 - 2016-01-11 19:14 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

2016-02-17 22:02 - 2016-01-11 19:14 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll

2016-02-17 22:02 - 2016-01-11 19:14 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll

2016-02-17 22:02 - 2015-04-24 18:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll

2016-02-17 22:02 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll

2016-02-17 22:02 - 2014-10-14 02:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll

2016-02-17 22:01 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll

2016-02-17 22:01 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll

2016-02-17 22:01 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll

2016-02-17 22:01 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll

2016-02-17 22:01 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe

2016-02-17 21:38 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll

2016-02-17 21:38 - 2012-02-17 05:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys

2016-02-17 10:23 - 2016-02-17 10:58 - 00015872 _____ C:\Users\stefan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2016-02-16 21:24 - 2016-02-16 21:24 - 00000000 ____D C:\ProgramData\HP Product Assistant

2016-02-16 20:18 - 2016-02-16 20:34 - 00178847 ____N C:\Windows\hpoins38.dat.temp

2016-02-16 20:18 - 2010-01-30 13:26 - 00000548 ____N C:\Windows\hpomdl38.dat.temp

2016-02-16 20:12 - 2016-02-16 20:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf

2016-02-16 17:43 - 2016-02-16 17:43 - 00002392 _____ C:\Users\stefan\Desktop\Sicherer Zahlungsverkehr.lnk

2016-02-16 17:42 - 2016-02-16 17:42 - 00002110 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk

2016-02-16 17:42 - 2016-02-16 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security

2016-02-16 17:41 - 2016-02-16 17:54 - 00783744 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys

2016-02-16 17:41 - 2016-02-16 17:54 - 00147328 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys

2016-02-16 17:41 - 2016-02-16 17:41 - 00000000 ____D C:\Windows\ELAMBKUP

2016-02-16 17:41 - 2016-02-16 17:41 - 00000000 ____D C:\Program Files\Kaspersky Lab

2016-02-16 16:35 - 2016-02-16 16:35 - 00000000 ____D C:\Users\stefan\AppData\Local\ElevatedDiagnostics

2016-02-16 14:37 - 2016-02-18 21:14 - 00122560 _____ C:\Users\stefan\AppData\Local\GDIPFONTCACHEV1.DAT

2016-02-16 14:28 - 2016-02-16 14:28 - 00001409 _____ C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2016-02-16 14:28 - 2016-02-16 14:28 - 00000020 ___SH C:\Users\stefan\ntuser.ini

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Vorlagen

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Startmenü

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\ProgramData\Vorlagen

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\ProgramData\Startmenü

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\ProgramData\Favoriten

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\ProgramData\Dokumente

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien

2016-02-16 14:04 - 2016-02-16 14:04 - 00021532 _____ C:\Windows\system32\emptyregdb.dat

2016-02-16 13:58 - 2016-02-16 13:58 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite

2016-02-16 13:58 - 2016-02-16 13:58 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia

2016-02-16 13:58 - 2016-02-16 13:58 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite

2016-02-16 13:58 - 2016-02-16 13:58 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia

2016-02-16 13:33 - 2016-02-21 17:40 - 00000000 ____D C:\Users\stefan\Desktop\Meine Bilder

2016-02-16 13:31 - 2016-02-21 21:07 - 00011552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2016-02-16 13:31 - 2016-02-21 21:07 - 00011552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2016-02-16 13:31 - 2016-02-16 14:28 - 00000000 ____D C:\Users\stefan

2016-02-16 13:31 - 2016-02-16 13:31 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk

2016-02-16 13:31 - 2016-02-16 13:31 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Vorlagen

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Startmenü

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Netzwerkumgebung

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Lokale Einstellungen

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Eigene Dateien

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Druckumgebung

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Documents\Eigene Videos

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Documents\Eigene Musik

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Documents\Eigene Bilder

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\AppData\Local\Verlauf

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\AppData\Local\Anwendungsdaten

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Anwendungsdaten

2016-02-16 13:31 - 2011-04-12 02:38 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Media Center Programs

2016-02-16 13:30 - 2016-02-16 13:30 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01000.Wdf

2016-02-16 13:30 - 2016-02-16 13:30 - 00000000 ____D C:\Windows\system32\RTCOM

2016-02-16 13:30 - 2016-02-16 13:30 - 00000000 ____D C:\Program Files\Synaptics

2016-02-16 13:30 - 2008-07-27 03:24 - 01079840 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpluir.dll

2016-02-16 13:30 - 2008-07-27 03:24 - 00768544 _____ (NVIDIA Corporation) C:\Windows\system32\nvcplui.exe

2016-02-16 13:30 - 2008-07-27 03:24 - 00446464 _____ (NVIDIA Corporation) C:\Windows\system32\nvuninst.exe

2016-02-16 13:30 - 2008-07-27 03:24 - 00420384 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.cpl

2016-02-16 13:30 - 2008-07-27 03:24 - 00313888 _____ (NVIDIA Corporation) C:\Windows\system32\nvexpbar.dll

2016-02-16 13:27 - 2016-02-16 14:27 - 00000000 ____D C:\Windows\Panther

2016-02-16 13:24 - 2016-02-16 13:24 - 00262144 _____ C:\Windows\system32\config\userdiff

2016-02-16 13:17 - 2016-02-16 14:05 - 00000000 ___HD C:\$WINDOWS.~Q

2016-02-16 13:07 - 2016-02-16 13:14 - 00000000 ___HD C:\$INPLACE.~TR

2016-02-16 11:49 - 2016-02-16 11:49 - 00002544 _____ C:\Windows\diagwrn.xml

2016-02-16 11:49 - 2016-02-16 11:49 - 00001890 _____ C:\Windows\diagerr.xml

2016-02-12 11:23 - 2016-02-16 13:51 - 00000000 ____D C:\Users\stefan\AppData\Local\Microsoft Corporation

2016-02-12 11:20 - 2016-02-16 13:36 - 00000000 ____D C:\Program Files\Microsoft Windows 7 Upgrade Advisor

2016-02-12 11:20 - 2016-02-12 11:20 - 00001996 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 7 Upgrade Advisor.lnk

2016-02-12 11:20 - 2016-02-12 11:20 - 00001984 _____ C:\Users\Public\Desktop\Windows 7 Upgrade Advisor.lnk

2016-01-30 20:34 - 2016-02-16 13:55 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Avast Browser Cleanup

2016-01-30 20:34 - 2016-02-16 13:55 - 00000000 ____D C:\Users\stefan\AppData\Roaming\AVAST Software

2016-01-30 20:34 - 2016-01-30 20:34 - 00001057 _____ C:\Users\stefan\Desktop\Avast Browser Cleanup.lnk

2016-01-30 17:14 - 2016-02-16 13:35 - 00000000 ____D C:\Program Files\ESET

2016-01-30 15:42 - 2016-01-30 15:42 - 00001924 _____ C:\Users\stefan\Desktop\JRT.txt

2016-01-23 11:29 - 2016-01-23 11:29 - 00010896 _____ C:\Users\stefan\Documents\Kürbismarmelade.odt
 

==================== Ein Monat: Geänderte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2016-02-21 21:57 - 2012-04-17 08:13 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2016-02-21 21:34 - 2010-03-01 20:52 - 00002710 _____ C:\Users\Public\Documents\DME-SETTINGS.xml

2016-02-21 21:34 - 2010-03-01 20:52 - 00000302 _____ C:\Windows\Tasks\DMEPeriodicTask.job

2016-02-21 21:26 - 2009-07-01 20:25 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2016-02-21 21:05 - 2015-04-03 16:16 - 00000000 ____D C:\AdwCleaner

2016-02-21 20:58 - 2009-12-20 11:33 - 00000000 ____D C:\ProgramData\Kaspersky Lab

2016-02-21 20:26 - 2009-07-01 20:25 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2016-02-21 19:16 - 2012-04-17 08:13 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe

2016-02-21 19:16 - 2011-05-23 20:25 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl

2016-02-21 19:16 - 2008-12-02 19:13 - 00000000 ____D C:\Users\stefan\AppData\Local\Adobe

2016-02-21 18:58 - 2009-03-08 19:07 - 00000000 ____D C:\Users\stefan\AppData\Local\Mozilla

2016-02-21 18:32 - 2015-03-31 19:28 - 00000000 ____D C:\Program Files\Mozilla Firefox

2016-02-21 18:19 - 2008-12-24 16:14 - 00000416 ____H C:\Windows\Tasks\SupBackGroundTask.job

2016-02-21 18:02 - 2008-12-02 18:34 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite

2016-02-21 18:01 - 2015-04-03 11:33 - 00001002 _____ C:\Windows\Tasks\tuzq1rKFUmy3X.job

2016-02-21 18:01 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2016-02-21 17:24 - 2008-12-20 16:11 - 00001052 _____ C:\Windows\Tasks\Google Software Updater.job

2016-02-21 08:57 - 2009-07-14 05:33 - 00450576 _____ C:\Windows\system32\FNTCACHE.DAT

2016-02-20 23:53 - 2012-06-11 20:15 - 00002150 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2016-02-20 23:53 - 2012-06-11 20:15 - 00002121 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2016-02-19 09:28 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\AppCompat

2016-02-18 21:41 - 2011-04-12 02:30 - 00698926 _____ C:\Windows\system32\perfh007.dat

2016-02-18 21:41 - 2011-04-12 02:30 - 00149034 _____ C:\Windows\system32\perfc007.dat

2016-02-18 21:41 - 2010-11-20 22:01 - 01618320 _____ C:\Windows\system32\PerfStringBackup.INI

2016-02-18 21:41 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf

2016-02-18 21:26 - 2013-07-13 17:08 - 00000000 ____D C:\Windows\system32\MRT

2016-02-18 20:59 - 2011-04-12 02:38 - 00000000 ____D C:\Program Files\Windows Journal

2016-02-18 20:59 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\tracing

2016-02-18 20:59 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\Dism

2016-02-18 20:59 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\AdvancedInstallers

2016-02-18 20:59 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\PolicyDefinitions

2016-02-18 20:59 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\System

2016-02-18 19:23 - 2009-07-14 05:52 - 00000000 ____D C:\Program Files\Windows Defender

2016-02-18 15:42 - 2008-07-08 15:11 - 00000000 ____D C:\Intel

2016-02-18 09:41 - 2016-01-17 20:03 - 00000000 ____D C:\Users\stefan\Documents\Autoversicherung AllSecure

2016-02-16 22:21 - 2010-03-01 18:48 - 00188477 _____ C:\Windows\hpoins38.dat

2016-02-16 21:45 - 2016-01-03 14:52 - 00000000 ____D C:\Users\stefan\Documents\Stundenzettel EMC

2016-02-16 21:25 - 2010-03-01 18:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP

2016-02-16 21:25 - 2010-03-01 18:50 - 00000000 ____D C:\Program Files\HP

2016-02-16 21:25 - 2010-03-01 18:47 - 00000000 ____D C:\ProgramData\HP

2016-02-16 21:24 - 2010-03-01 20:34 - 00001315 _____ C:\ProgramData\Microsoft\Windows\Start Menu\HP Solution Center.lnk

2016-02-16 21:24 - 2010-03-01 20:34 - 00001309 _____ C:\Users\Public\Desktop\HP Solution Center.lnk

2016-02-16 20:30 - 2006-11-02 11:23 - 00000163 _____ C:\Windows\win.ini

2016-02-16 20:23 - 2008-12-29 17:32 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files

2016-02-16 19:58 - 2009-07-14 03:37 - 00000000 __RHD C:\Users\Public\Libraries

2016-02-16 17:54 - 2015-06-08 19:43 - 00039304 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klpd.sys

2016-02-16 17:45 - 2015-07-04 02:18 - 00044728 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys

2016-02-16 16:28 - 2008-07-08 15:23 - 00000000 ____D C:\Windows\VMC302

2016-02-16 14:27 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Windows NT

2016-02-16 14:22 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache

2016-02-16 14:04 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Registration

2016-02-16 14:03 - 2009-07-14 03:37 - 00000000 __RSD C:\Windows\Media

2016-02-16 13:59 - 2009-07-14 05:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2016-02-16 13:57 - 2016-01-18 16:12 - 00000000 ____D C:\Users\stefan\Documents\Meine Unterschrift

2016-02-16 13:57 - 2015-04-12 16:29 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Skype

2016-02-16 13:57 - 2014-06-22 13:47 - 00000000 ____D C:\Users\stefan\AppData\Roaming\TuneUp Software

2016-02-16 13:57 - 2014-03-28 16:43 - 00000000 ____D C:\Users\stefan\Desktop\Alte Firefox-Daten

2016-02-16 13:57 - 2014-03-02 22:08 - 00000000 ____D C:\Users\stefan\Documents\samsung

2016-02-16 13:57 - 2013-05-20 09:58 - 00000000 ____D C:\Users\stefan\Documents\Eigene Scans

2016-02-16 13:57 - 2010-12-09 20:40 - 00000000 ____D C:\Users\stefan\AppData\Roaming\vlc

2016-02-16 13:57 - 2010-06-13 11:36 - 00000000 ____D C:\Users\stefan\Documents\poster-forge

2016-02-16 13:57 - 2010-01-13 11:36 - 00000000 ____D C:\Users\stefan\Documents\CyberLink

2016-02-16 13:57 - 2009-12-12 20:02 - 00000000 ____D C:\Users\stefan\AppData\Roaming\TubeBox

2016-02-16 13:56 - 2014-03-02 22:08 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Samsung

2016-02-16 13:56 - 2014-02-05 16:32 - 00000000 ____D C:\Users\stefan\AppData\Roaming\RealNetworks

2016-02-16 13:56 - 2010-11-23 21:11 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Real

2016-02-16 13:56 - 2010-04-09 19:19 - 00000000 ____D C:\Users\stefan\AppData\Roaming\OpenOffice.org

2016-02-16 13:56 - 2009-08-23 17:09 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Pirates of the Atlantic

2016-02-16 13:55 - 2015-04-03 16:33 - 00000000 ____D C:\Users\stefan\AppData\Roaming\DVDVideoSoft

2016-02-16 13:55 - 2012-06-11 20:04 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Freemium

2016-02-16 13:55 - 2012-02-04 14:25 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Avery

2016-02-16 13:55 - 2011-08-04 19:11 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Jens Lorek

2016-02-16 13:55 - 2011-07-01 18:49 - 00000000 ____D C:\Users\stefan\AppData\Roaming\HpUpdate

2016-02-16 13:55 - 2010-05-13 14:07 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Ashampoo

2016-02-16 13:55 - 2010-03-01 20:49 - 00000000 ____D C:\Users\stefan\AppData\Roaming\HP

2016-02-16 13:55 - 2010-02-14 19:37 - 00000000 ____D C:\Users\stefan\AppData\LocalLow\Sun

2016-02-16 13:55 - 2009-12-12 20:02 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TubeBox!

2016-02-16 13:55 - 2009-08-23 13:41 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner

2016-02-16 13:55 - 2009-04-10 12:00 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Move Networks

2016-02-16 13:55 - 2009-04-10 12:00 - 00000000 ____D C:\Users\stefan\AppData\LocalLow\Move Networks

2016-02-16 13:55 - 2009-03-08 19:07 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Mozilla

2016-02-16 13:55 - 2008-12-20 16:57 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Google

2016-02-16 13:55 - 2008-12-20 16:48 - 00000000 ____D C:\Users\stefan\AppData\Roaming\InstallShield

2016-02-16 13:55 - 2008-12-18 23:23 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Intel

2016-02-16 13:55 - 2008-12-08 20:50 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Chromeflower

2016-02-16 13:55 - 2008-12-05 18:33 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Macromedia

2016-02-16 13:55 - 2008-12-02 19:15 - 00000000 ____D C:\Users\stefan\AppData\Roaming\CyberLink

2016-02-16 13:55 - 2008-12-02 19:13 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Adobe

2016-02-16 13:53 - 2015-04-12 16:29 - 00000000 ____D C:\Users\stefan\AppData\Local\Skype

2016-02-16 13:53 - 2014-06-22 13:47 - 00000000 ____D C:\Users\stefan\AppData\Local\TuneUp Software

2016-02-16 13:53 - 2014-03-02 22:08 - 00000000 ____D C:\Users\stefan\AppData\Local\Samsung

2016-02-16 13:53 - 2013-11-03 17:59 - 00000000 ____D C:\Users\stefan\AppData\Local\Screentime

2016-02-16 13:53 - 2013-07-11 17:11 - 00000000 ____D C:\Users\stefan\AppData\LocalLow\Adobe

2016-02-16 13:53 - 2012-10-27 17:01 - 00000000 ____D C:\Users\stefan\AppData\Local\TubeBox

2016-02-16 13:53 - 2010-11-23 21:21 - 00000000 ____D C:\Users\stefan\AppData\Local\Real

2016-02-16 13:53 - 2010-05-11 15:45 - 00000000 ____D C:\Users\stefan\AppData\Local\Paint.NET

2016-02-16 13:53 - 2009-12-20 12:30 - 00000000 ____D C:\Users\stefan\AppData\Local\Seven Zip

2016-02-16 13:53 - 2008-12-20 17:28 - 00000000 ____D C:\Users\stefan\AppData\LocalLow\Google

2016-02-16 13:53 - 2008-12-02 18:34 - 00000000 ____D C:\Users\stefan\AppData\Local\VirtualStore

2016-02-16 13:51 - 2015-11-15 12:22 - 00000000 ____D C:\Users\stefan\AppData\Local\Icecream

2016-02-16 13:51 - 2012-06-24 13:15 - 00000000 ____D C:\Users\stefan\AppData\Local\Macromedia

2016-02-16 13:51 - 2012-06-11 20:07 - 00000000 ____D C:\Users\stefan\AppData\Local\IsolatedStorage

2016-02-16 13:51 - 2010-03-01 20:44 - 00000000 ____D C:\Users\stefan\AppData\Local\HP

2016-02-16 13:51 - 2008-12-20 16:13 - 00000000 ____D C:\Users\stefan\AppData\Local\Google

2016-02-16 13:51 - 2008-12-02 22:50 - 00000000 ____D C:\Users\stefan\AppData\Local\Microsoft Games

2016-02-16 13:49 - 2015-04-03 16:33 - 00000000 ____D C:\Users\stefan\AppData\Local\5D515C96_stp

2016-02-16 13:49 - 2014-12-05 17:41 - 00000000 ____D C:\Users\stefan\AppData\Local\DVDVideoSoft_Ltd

2016-02-16 13:49 - 2012-09-25 10:32 - 00000000 ____D C:\Users\stefan\AppData\Local\Freetec

2016-02-16 13:49 - 2010-05-13 14:06 - 00000000 ____D C:\Users\stefan\AppData\Local\ashampoo

2016-02-16 13:49 - 2009-03-08 19:26 - 00000000 ____D C:\Users\stefan\AppData\Local\Apps\2.0

2016-02-16 13:49 - 2008-12-08 20:44 - 00000000 ____D C:\Users\stefan\AppData\Local\Downloaded Installations

2016-02-16 13:41 - 2013-07-14 13:12 - 00000000 ____D C:\Windows\system32\Adobe

2016-02-16 13:41 - 2011-04-12 02:29 - 00000000 ____D C:\Windows\system32\XPSViewer

2016-02-16 13:41 - 2009-07-14 20:00 - 00000000 ____D C:\Windows\system32\EventProviders

2016-02-16 13:41 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\sysprep

2016-02-16 13:41 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\oobe

2016-02-16 13:41 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF

2016-02-16 13:41 - 2008-07-08 15:49 - 00000000 ____D C:\Windows\WinClon

2016-02-16 13:41 - 2008-07-08 15:35 - 00000000 ____D C:\Windows\system32\NetsyncAgent

2016-02-16 13:41 - 2008-07-08 15:32 - 00000000 ____D C:\Windows\system32\Macromed

2016-02-16 13:41 - 2008-07-08 15:20 - 00000000 ____D C:\Windows\system32\es-MX

2016-02-16 13:41 - 2008-07-08 15:20 - 00000000 ____D C:\Windows\system32\es-AR

2016-02-16 13:41 - 2008-07-08 15:16 - 00000000 ____D C:\Windows\Options

2016-02-16 13:41 - 2008-07-08 15:13 - 00000000 ____D C:\Windows\system32\Lang

2016-02-16 13:41 - 2008-07-08 13:47 - 00000000 ____D C:\Windows\MSetup

2016-02-16 13:41 - 2008-02-08 10:30 - 00000000 ____D C:\Windows\Sec

2016-02-16 13:41 - 2006-11-02 13:42 - 00000000 ____D C:\Windows\WindowsMobile

2016-02-16 13:41 - 2006-11-02 13:42 - 00000000 ____D C:\Windows\system32\Branding

2016-02-16 13:41 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\RemInst

2016-02-16 13:41 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\nap

2016-02-16 13:40 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\LiveKernelReports

2016-02-16 13:39 - 2015-04-12 16:29 - 00000000 ____D C:\ProgramData\Skype

2016-02-16 13:39 - 2014-06-22 13:47 - 00000000 ____D C:\ProgramData\TuneUp Software

2016-02-16 13:39 - 2014-06-22 13:46 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}

2016-02-16 13:39 - 2014-03-02 22:01 - 00000000 ____D C:\ProgramData\Samsung

2016-02-16 13:39 - 2011-07-01 18:49 - 00000000 ____D C:\Windows\Hewlett-Packard

2016-02-16 13:39 - 2011-04-12 02:38 - 00000000 ___RD C:\Users\Public\Recorded TV

2016-02-16 13:39 - 2010-03-01 20:52 - 00000000 ____D C:\ProgramData\WEBREG

2016-02-16 13:39 - 2010-02-14 19:40 - 00000000 ____D C:\ProgramData\Sun

2016-02-16 13:39 - 2009-07-14 05:52 - 00000000 ____D C:\Windows\Downloaded Program Files

2016-02-16 13:39 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Help

2016-02-16 13:39 - 2008-12-03 20:00 - 00000000 __SHD C:\Users\Public\Documents\MCE Logs

2016-02-16 13:39 - 2008-12-02 19:15 - 00000000 ____D C:\Users\Public\CyberLink

2016-02-16 13:38 - 2015-04-12 15:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2016-02-16 13:38 - 2015-04-12 15:33 - 00000000 ____D C:\ProgramData\Malwarebytes

2016-02-16 13:38 - 2015-04-03 16:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft

2016-02-16 13:38 - 2014-12-14 15:46 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.3

2016-02-16 13:38 - 2014-02-05 16:31 - 00000000 ____D C:\ProgramData\RealNetworks

2016-02-16 13:38 - 2014-02-05 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks

2016-02-16 13:38 - 2012-09-25 10:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freetec

2016-02-16 13:38 - 2012-09-25 10:28 - 00000000 ____D C:\ProgramData\Package Cache

2016-02-16 13:38 - 2011-04-03 16:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2016-02-16 13:38 - 2010-12-09 20:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner

2016-02-16 13:38 - 2010-11-23 21:12 - 00000000 ____D C:\ProgramData\Real

2016-02-16 13:38 - 2010-06-19 15:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities

2016-02-16 13:38 - 2010-06-13 11:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Poster Forge

2016-02-16 13:38 - 2010-06-12 17:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2016-02-16 13:38 - 2010-04-09 19:17 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.1

2016-02-16 13:38 - 2010-03-07 14:49 - 00000000 ____D C:\ProgramData\HPSSUPPLY

2016-02-16 13:38 - 2010-03-01 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live

2016-02-16 13:38 - 2009-12-20 16:58 - 00000000 ____D C:\ProgramData\Intenium

2016-02-16 13:38 - 2009-07-14 05:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2016-02-16 13:38 - 2009-06-01 15:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Moorhuhn WE AYCS

2016-02-16 13:38 - 2009-04-13 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Moorhuhn 2

2016-02-16 13:38 - 2008-12-20 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Updater

2016-02-16 13:38 - 2008-12-08 20:07 - 00000000 ____D C:\ProgramData\Media Center Programs

2016-02-16 13:38 - 2008-12-05 20:56 - 00000000 ____D C:\ProgramData\LightScribe

2016-02-16 13:38 - 2008-07-08 15:56 - 00000000 ____D C:\ProgramData\NVIDIA

2016-02-16 13:38 - 2008-07-08 15:47 - 00000000 ____D C:\ProgramData\McAfee

2016-02-16 13:38 - 2008-07-08 15:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling

2016-02-16 13:38 - 2008-07-08 15:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite

2016-02-16 13:38 - 2008-07-08 15:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung

2016-02-16 13:37 - 2014-11-08 17:26 - 00000000 ____D C:\Program Files\WEB.DE MailCheck

2016-02-16 13:37 - 2012-02-04 14:24 - 00000000 ____D C:\ProgramData\Avery

2016-02-16 13:37 - 2010-12-09 20:36 - 00000000 ____D C:\Program Files\VideoLAN

2016-02-16 13:37 - 2010-05-13 14:06 - 00000000 ____D C:\ProgramData\ashampoo

2016-02-16 13:37 - 2010-03-01 20:32 - 00000000 ____D C:\Program Files\Windows Live SkyDrive

2016-02-16 13:37 - 2010-03-01 20:32 - 00000000 ____D C:\Program Files\Windows Live

2016-02-16 13:37 - 2008-12-20 16:12 - 00000000 ____D C:\ProgramData\Google

2016-02-16 13:37 - 2008-12-20 16:11 - 00000000 ____D C:\ProgramData\Google Updater

2016-02-16 13:37 - 2008-12-02 19:15 - 00000000 ____D C:\ProgramData\CyberLink

2016-02-16 13:37 - 2008-07-08 15:25 - 00000000 ____D C:\ProgramData\Adobe

2016-02-16 13:37 - 2008-07-08 15:23 - 00000000 ____D C:\Program Files\Samsung

2016-02-16 13:37 - 2008-07-08 15:22 - 00000000 ____D C:\Program Files\Vimicro Corporation

2016-02-16 13:37 - 2008-07-08 15:20 - 00000000 ____D C:\Program Files\WIDCOMM

2016-02-16 13:37 - 2006-11-02 13:37 - 00000000 ____D C:\Program Files\Windows Photo Gallery

2016-02-16 13:37 - 2006-11-02 13:37 - 00000000 ____D C:\Program Files\Windows Collaboration

2016-02-16 13:37 - 2006-11-02 13:37 - 00000000 ____D C:\Program Files\Windows Calendar

2016-02-16 13:36 - 2015-04-12 15:33 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware

2016-02-16 13:36 - 2014-12-18 20:13 - 00000000 ____D C:\Program Files\MarkAny

2016-02-16 13:36 - 2014-02-05 16:31 - 00000000 ____D C:\Program Files\RealNetworks

2016-02-16 13:36 - 2014-01-28 20:25 - 00000000 ____D C:\Program Files\McAfee Security Scan

2016-02-16 13:36 - 2013-05-01 11:10 - 00000000 ____D C:\Program Files\NVIDIA

Firefox öffnet selbst Tabs und Werbebanner

Hier noch der Rest:

Code:

2016-02-16 13:36 - 2014-12-18 20:13 - 00000000 ____D C:\Program Files\MarkAny

2016-02-16 13:36 - 2014-02-05 16:31 - 00000000 ____D C:\Program Files\RealNetworks

2016-02-16 13:36 - 2014-01-28 20:25 - 00000000 ____D C:\Program Files\McAfee Security Scan

2016-02-16 13:36 - 2013-05-01 11:10 - 00000000 ____D C:\Program Files\NVIDIA Corporation

2016-02-16 13:36 - 2010-11-23 21:13 - 00000000 ____D C:\Program Files\Real

2016-02-16 13:36 - 2010-06-13 11:37 - 00000000 ____D C:\Program Files\Poster Forge

2016-02-16 13:36 - 2010-06-12 14:53 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2016-02-16 13:36 - 2010-05-11 15:45 - 00000000 ____D C:\Program Files\Paint.NET

2016-02-16 13:36 - 2010-04-10 17:12 - 00000000 ____D C:\Program Files\phenomedia

2016-02-16 13:36 - 2010-04-09 19:16 - 00000000 ____D C:\Program Files\OpenOffice.org 3

2016-02-16 13:36 - 2010-03-01 20:43 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition

2016-02-16 13:36 - 2009-07-14 05:52 - 00000000 ____D C:\Program Files\Microsoft Games

2016-02-16 13:36 - 2009-04-13 17:45 - 00000000 ____D C:\Program Files\Phenomedia AG

2016-02-16 13:36 - 2008-07-08 15:44 - 00000000 ____D C:\Program Files\Microsoft SQL Server

2016-02-16 13:36 - 2008-07-08 15:40 - 00000000 ____D C:\Program Files\Microsoft Office

2016-02-16 13:36 - 2008-07-08 15:16 - 00000000 ____D C:\Program Files\Realtek

2016-02-16 13:36 - 2008-07-08 15:13 - 00000000 ___HD C:\Program Files\InstallShield Installation Information

2016-02-16 13:36 - 2008-07-08 15:11 - 00000000 ____D C:\Program Files\Intel

2016-02-16 13:35 - 2015-04-12 14:08 - 00000000 ____D C:\Program Files\Enigma Software Group

2016-02-16 13:35 - 2015-04-03 16:33 - 00000000 ____D C:\Program Files\DVDVideoSoft

2016-02-16 13:35 - 2014-11-08 17:22 - 00000000 ____D C:\Program Files\Free Codec Pack

2016-02-16 13:35 - 2012-09-25 10:29 - 00000000 ____D C:\Program Files\Freetec

2016-02-16 13:35 - 2012-06-11 20:06 - 00000000 ____D C:\Program Files\Freemium

2016-02-16 13:35 - 2010-09-14 13:36 - 00000000 ____D C:\Program Files\Freemake

2016-02-16 13:35 - 2008-12-20 16:11 - 00000000 ____D C:\Program Files\Google

2016-02-16 13:34 - 2015-04-03 16:33 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft

2016-02-16 13:34 - 2014-02-05 16:31 - 00000000 ____D C:\Program Files\Common Files\xing shared

2016-02-16 13:34 - 2012-11-06 22:50 - 00000000 ____D C:\Program Files\DevalVR

2016-02-16 13:34 - 2010-03-01 20:18 - 00000000 ____D C:\Program Files\Common Files\Windows Live

2016-02-16 13:34 - 2010-03-01 18:56 - 00000000 ____D C:\Program Files\Common Files\HP

2016-02-16 13:34 - 2010-03-01 18:53 - 00000000 ____D C:\Program Files\Common Files\Hewlett-Packard

2016-02-16 13:34 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2016-02-16 13:34 - 2008-07-08 15:34 - 00000000 ____D C:\Program Files\Common Files\MSSoap

2016-02-16 13:34 - 2008-07-08 15:29 - 00000000 ____D C:\Program Files\Common Files\LightScribe

2016-02-16 13:34 - 2008-07-08 15:25 - 00000000 ____D C:\Program Files\CyberLink

2016-02-16 13:34 - 2008-07-08 15:14 - 00000000 ____D C:\Program Files\Common Files\InstallShield

2016-02-16 13:33 - 2013-07-11 17:03 - 00000000 ____D C:\Program Files\Common Files\Adobe

2016-02-16 13:33 - 2010-06-19 15:51 - 00000000 ____D C:\Program Files\Canon

2016-02-16 13:33 - 2010-06-19 15:49 - 00000000 ____D C:\Program Files\Common Files\Canon

2016-02-16 13:33 - 2009-08-23 13:41 - 00000000 ____D C:\Program Files\CCleaner

2016-02-16 13:33 - 2008-12-31 12:10 - 00000000 ____D C:\Program Files\Adobe

2016-02-16 13:33 - 2008-07-08 15:18 - 00000000 ____D C:\Program Files\Atheros WLAN Client

2016-02-16 13:27 - 2009-07-14 05:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template

2016-02-16 13:27 - 2008-02-08 10:31 - 00008192 __RSH C:\BOOTSECT.BAK

2016-02-16 12:41 - 2006-11-02 13:47 - 00004784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0

2016-02-16 12:41 - 2006-11-02 13:47 - 00004784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0

2016-02-16 11:37 - 2008-07-09 07:09 - 00000012 _____ C:\Windows\bthservsdp.dat

2016-01-30 22:59 - 2015-04-03 16:33 - 00000000 ____D C:\Users\stefan\AppData\Local\69DD7379_stp

2016-01-30 16:01 - 2013-07-11 17:04 - 00002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk

2016-01-30 15:14 - 2015-04-12 15:34 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
 

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
 

2009-09-20 11:56 - 2009-09-20 11:56 - 0021064 _____ () C:\Users\stefan\AppData\Roaming\UserTile.png

2016-02-17 10:23 - 2016-02-17 10:58 - 0015872 _____ () C:\Users\stefan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2016-02-16 20:18 - 2016-02-16 22:21 - 0005189 _____ () C:\ProgramData\hpzinstall.log
 

==================== Bamital & volsnap =================
 

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
 

C:\Windows\explorer.exe => Datei ist digital signiert

C:\Windows\system32\winlogon.exe => Datei ist digital signiert

C:\Windows\system32\wininit.exe => Datei ist digital signiert

C:\Windows\system32\svchost.exe => Datei ist digital signiert

C:\Windows\system32\services.exe => Datei ist digital signiert

C:\Windows\system32\User32.dll => Datei ist digital signiert

C:\Windows\system32\userinit.exe => Datei ist digital signiert

C:\Windows\system32\rpcss.dll => Datei ist digital signiert

C:\Windows\system32\dnsapi.dll => Datei ist digital signiert

C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
 
 

LastRegBack: 2016-02-16 13:28
 

==================== Ende vom FRST.txt ============================

Firefox öffnet selbst Tabs und Werbebanner

Hier die Addition:

Code:

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version:21-02-2016

durchgeführt von stefan (2016-02-21 21:45:12)

Gestartet von C:\Users\stefan\Favorites\Downloads

Microsoft Windows 7 Home Premium  Service Pack 1 0(X86) (2016-02-16 13:27:48)

Start-Modus: Normal

==========================================================
 
 

==================== Konten: =============================
 

Administrator (S-1-5-21-3424759491-1413610708-398819693-500 - Administrator - Disabled)

Gast (S-1-5-21-3424759491-1413610708-398819693-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-3424759491-1413610708-398819693-1005 - Limited - Enabled)

stefan (S-1-5-21-3424759491-1413610708-398819693-1003 - Administrator - Enabled) => C:\Users\stefan
 

==================== Sicherheits-Center ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
 

AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}

AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}
 

==================== Installierte Programme ======================
 

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
 

32 Bit HP CIO Components Installer (Version: 6.1.2 - Hewlett-Packard) Hidden

Adobe Flash Player 20 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 20.0.0.306 - Adobe Systems Incorporated)

Adobe Flash Player 20 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated)

Adobe Reader X (10.1.16) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)

Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.4.154 - Adobe Systems, Inc.)

Agere Systems HDA Modem (HKLM\...\Agere Systems Soft Modem) (Version:  - Agere Systems)

Atheros WLAN Client (HKLM\...\{04983D37-2202-4295-94A2-8B547C66133F}) (Version: 1.00.000 - )

Avast Browser Cleanup (HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Avast Browser Cleanup) (Version: 10.4.2233.107 - AVAST Software)

B109a-m (Version: 140.0.690.000 - Hewlett-Packard) Hidden

BufferChm (Version: 140.0.212.000 - Hewlett-Packard) Hidden

CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM\...\CANON iMAGE GATEWAY Task) (Version: 1.7.2.11 - Canon Inc.)

Canon Internet Library for ZoomBrowser EX (HKLM\...\Canon Internet Library for ZoomBrowser EX) (Version: 1.6.3.9 - Canon Inc.)

Canon MovieEdit Task for ZoomBrowser EX (HKLM\...\MovieEditTask) (Version: 3.4.0.8 - Canon Inc.)

Canon Utilities CameraWindow (HKLM\...\CameraWindowLauncher) (Version: 7.4.0.7 - Canon Inc.)

Canon Utilities CameraWindow DC 8 (HKLM\...\CameraWindowDC8) (Version: 8.1.0.11 - Canon Inc.)

Canon Utilities Movie Uploader for YouTube (HKLM\...\MovieUploaderForYouTube) (Version: 1.0.0.11 - Canon Inc.)

Canon Utilities MyCamera (HKLM\...\MyCamera) (Version: 7.3.0.5 - Canon Inc.)

Canon Utilities PhotoStitch (HKLM\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)

Canon Utilities ZoomBrowser EX (HKLM\...\ZoomBrowser EX) (Version: 6.5.0.14 - Canon Inc.)

Canon ZoomBrowser EX Memory Card Utility (HKLM\...\ZoomBrowser EX Memory Card Utility) (Version: 1.3.0.4 - Canon Inc.)

CCleaner (HKLM\...\CCleaner) (Version: 3.01 - Piriform)

CyberLink DVD Suite (HKLM\...\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 5.0.2403 - CyberLink Corp.)

CyberLink Power2Go (HKLM\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.0.3825 - CyberLink Corp.)

Destinations (Version: 140.0.77.000 - Hewlett-Packard) Hidden

DevalVR plugin for Netscape and compatible browsers (HKLM\...\DevalVR for Netscape) (Version:  - )

DeviceDiscovery (Version: 140.0.212.000 - Hewlett-Packard) Hidden

Easy Battery Manager (HKLM\...\{6F730513-8688-4C3C-90A3-6B9792CE2EF3}) (Version: 3.2.1.7 - )

Easy Display Manager (HKLM\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 2.0.0.0 - Samsung)

Easy Network Manager 3.0 (HKLM\...\InstallShield_{4EA8EA5D-8E46-4698-9BF7-2F2AD8E1C185}) (Version: 3.0.0.0 - Ihr Firmenname)

Easy Network Manager 3.0 (Version: 3.0.0.0 - Ihr Firmenname) Hidden

Easy SpeedUp Manager (HKLM\...\{EF367AA4-070B-493C-9575-85BE59D789C9}) (Version: 2.0.1.0 - )

ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version:  - )

Free 3GP Video Converter version 5.0.19.1015 (HKLM\...\Free 3GP Video Converter_is1) (Version: 5.0.19.1015 - DVDVideoSoft Ltd.)

Free Audio CD Burner version 1.2 (HKLM\...\Free Audio CD Burner_is1) (Version:  - DVDVideoSoft Limited.)

Free Audio Dub version 1.7 (HKLM\...\Free Audio Dub_is1) (Version:  - DVDVideoSoft Limited.)

Free Disc Burner version 2.1 (HKLM\...\Free Disc Burner_is1) (Version:  - DVDVideoSoft Limited.)

Free DVD Video Burner version 2.1 (HKLM\...\Free DVD Video Burner_is1) (Version:  - DVDVideoSoft Limited.)

Free Studio version 6.5.0.324 (HKLM\...\Free Studio_is1) (Version: 6.5.0.324 - DVDVideoSoft Ltd.)

Free Video Dub version 1.7 (HKLM\...\Free Video Dub_is1) (Version:  - DVDVideoSoft Limited.)

Free Video to DVD Converter version 1.2 (HKLM\...\Free Video to DVD Converter_is1) (Version:  - DVDVideoSoft Limited.)

Free Video to MP3 Converter version 3.5 (HKLM\...\Free Video to MP3 Converter_is1) (Version:  - DVDVideoSoft Limited.)

Free YouTube Download 3 version 3.0.4.628 (HKLM\...\Free YouTube Download 3_is1) (Version:  - DVDVideoSoft Limited.)

Free YouTube Download version 3.1.39.1015 (HKLM\...\Free YouTube Download_is1) (Version: 3.1.39.1015 - DVDVideoSoft Ltd.)

Free YouTube to MP3 Converter version 3.12.39.604 (HKLM\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.39.604 - DVDVideoSoft Ltd.)

Google Chrome (HKLM\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.)

Google Earth (HKLM\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)

Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.7210.1528 - Google Inc.)

Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden

Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden

Google Update Helper (Version: 1.3.29.5 - Google Inc.) Hidden

Google Updater (HKLM\...\Google Updater) (Version: 2.4.2432.1652 - Google Inc.)

GPBaseService2 (Version: 140.0.211.000 - Hewlett-Packard) Hidden

HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)

HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)

HP Photosmart B109a-m All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{A253A57F-4319-49B5-B405-64587FFBCFE2}) (Version: 14.0 - HP)

HP Print Projects 1.0 (HKLM\...\HP Print Projects) (Version: 1.0 - HP)

HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)

HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)

HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)

HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden

hpPrintProjects (Version: 130.0.303.000 - Hewlett-Packard) Hidden

HPProductAssistant (Version: 140.0.212.000 - Hewlett-Packard) Hidden

HPSSupply (Version: 140.0.211.000 - Hewlett-Packard) Hidden

hpWLPGInstaller (Version: 130.0.303.000 - Hewlett-Packard) Hidden

imagine digital freedom - Samsung (HKLM\...\{00AF10C1-44BD-4862-9D7F-24E6BA3E87FD}) (Version: 1.0.2.0 - Samsung Electronics Co., LTD)

Intel(R) PROSet/Wireless WiFi-Software (HKLM\...\{B90E5EBE-DF18-44D5-9D18-689ADEE9DA6C}) (Version: 13.01.1000 - Intel Corporation)

Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)

Kaspersky Internet Security (HKLM\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab)

Kaspersky Internet Security (Version: 16.0.0.614 - Kaspersky Lab) Hidden

LabelPrint (HKLM\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: .2406 - CyberLink Corp.)

LightScribe System Software  1.12.37.1 (HKLM\...\{004C5DA2-2051-4D25-94BA-51CF810C91EB}) (Version: 1.12.37.1 - LightScribe)

Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)

MarketResearch (Version: 140.0.212.000 - Hewlett-Packard) Hidden

Microsoft .NET Framework 4.5.2 (DEU) (HKLM\...\{0000EF65-BE80-3B99-BDE5-84C515C3F64C}) (Version:  - )

Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)

Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)

Microsoft SOAP Toolkit 2.0 SP2 (HKLM\...\{36BEAD11-8577-49AD-9250-E06A50AE87B0}) (Version: 623.1 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft SQL Server Native Client (HKLM\...\{547DCEC7-DD2A-47E9-82C7-5CF1EAB526DA}) (Version: 9.00.2047.00 - Microsoft Corporation)

Microsoft SQL Server VSS Writer (HKLM\...\{2DFB5485-A3EF-4298-9280-4AF80C9F4BE9}) (Version: 9.00.2047.00 - Microsoft Corporation)

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)

Moorhuhn 2 V1.1 (HKLM\...\Moorhuhn 2 V1.1) (Version:  - )

Moorhuhn Pinball XS (HKLM\...\Moorhuhn Pinball XS) (Version:  - )

Moorhuhn Remake (HKLM\...\{52210D57-0B1F-4681-90DD-8659DF4BCC40}) (Version: 1.00.0000 - )

Moorhuhn WE AYCS (HKLM\...\{F92CDFEB-DB96-4589-B88C-BE181D153445}) (Version:  - )

Move Networks Media Player for Internet Explorer (HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Move Networks Player - IE) (Version:  - )

Mozilla Firefox 44.0.2 (x86 de) (HKLM\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla)

Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 44.0.2 - Mozilla)

MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version:  - )

NVIDIA HD-Audiotreiber 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)

OpenOffice.org 3.3 (HKLM\...\{4286716B-1287-48E7-9078-3DC8248DBA96}) (Version: 3.3.9567 - OpenOffice.org)

Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1BF}) (Version: 3.60.0 - dotPDN LLC)

Play AVStation (HKLM\...\InstallShield_{955597D8-E5E1-474D-B647-60AC44566D24}) (Version: 4.1.20.50 - Ihr Firmenname)

Play AVStation (Version: 4.1.20.50 - Ihr Firmenname) Hidden

PlayCamera (HKLM\...\{804F1285-8CBF-408D-8CDC-D4D40003B2E4}) (Version: 1.0.1.7 - )

Poster Forge 1.02 (HKLM\...\Poster Forge) (Version:  - )

PowerDirector (HKLM\...\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 5.0.3927 - CyberLink Corp.)

PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.0.3118.0 - CyberLink Corp.)

PowerProducer (HKLM\...\{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 085120(3.7)_Vista_SSPC - CyberLink Corp.)

PS_AIO_06_B109a-m_SW_Min (Version: 140.0.690.000 - Hewlett-Packard) Hidden

QuickTransfer (Version: 140.0.98.000 - Hewlett-Packard) Hidden

RealDownloader (Version: 1.3.3 - RealNetworks, Inc.) Hidden

RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden

RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden

RealPlayer (HKLM\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)

Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version:  - )

RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden

Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.)

Samsung Kies (Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.) Hidden

Samsung Magic Doctor (HKLM\...\{32D6A58F-9659-446C-BBFC-E6F2B41F24DC}) (Version: 5.00 - Samsung Electronics Co., LTD)

Samsung Recovery Solution III (HKLM\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 3.0.0.5 - Samsung)

Samsung Update Plus (HKLM\...\InstallShield_{A5F483F0-2D79-4FCA-AE09-D0D96E23EBF7}) (Version: 2.0 - Samsung Electronics Co., LTD)

Samsung Update Plus (Version: 2.0 - Samsung Electronics Co., LTD) Hidden

Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.55.0 - Samsung Electronics Co., Ltd.)

Scan (Version: 140.0.80.000 - Hewlett-Packard) Hidden

Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)

SmartWebPrinting (Version: 140.0.186.000 - Hewlett-Packard) Hidden

SolutionCenter (Version: 140.0.213.000 - Hewlett-Packard) Hidden

Status (Version: 140.0.212.000 - Hewlett-Packard) Hidden

swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 10.1.2.0 - Synaptics)

Toolbox (Version: 140.0.428.000 - Hewlett-Packard) Hidden

TrayApp (Version: 140.0.212.000 - Hewlett-Packard) Hidden

TubeBox (Version: 4.0.0.0 - Freetec) Hidden

Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch) (HKLM\...\{07629207-FAA0-4F1A-8092-BF5085BE511F}) (Version: 9.00.2047.00 - Microsoft Corporation)

User Guide (HKLM\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.0 - )

Vimicro UVC Camera (HKLM\...\{71A51B09-E7D3-11DB-A386-005056C00008}) (Version: 1.00.0000 - Vimicro Corporation)

VLC media player 1.1.8 (HKLM\...\VLC media player) (Version: 1.1.8 - VideoLAN)

WarrantyExtension (Version: 1.00.0000 - Hewlett-Packard) Hidden

WEB.DE MailCheck für Mozilla Firefox (HKLM\...\1&1 Mail & Media GmbH Toolbar FF) (Version: 2.10.1.1735 - 1&1 Mail & Media GmbH)

WebReg (Version: 140.0.212.017 - Hewlett-Packard) Hidden

WIDCOMM Bluetooth Software 6.0.1.6300 (HKLM\...\{03D1988F-469F-4843-8E6E-E5FE9D17889D}) (Version: 6.0.1.6300 - WIDCOMM, Inc.)

Windows 7 Upgrade Advisor (HKLM\...\{9A4D182C-35C7-4791-8484-4304EBC9101A}) (Version: 2.0.5000.0 - Microsoft Corporation)

Windows Live Anmelde-Assistent (HKLM\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation)

Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)

Windows Live Sync (HKLM\...\{76618402-179D-4699-A66B-D351C59436BC}) (Version: 14.0.8089.726 - Microsoft Corporation)

Windows Live-Uploadtool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
 

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

CustomCLSID: HKU\S-1-5-21-3424759491-1413610708-398819693-1003_Classes\CLSID\{e3e02f12-2adb-478c-8742-5f0819f9f0f4}\InprocServer32 -> C:\Users\stefan\AppData\Roaming\Move Networks\ie_bin\qsp2ie071303000004.dll (Move Networks)

CustomCLSID: HKU\S-1-5-21-3424759491-1413610708-398819693-1003_Classes\CLSID\{e473a65c-8087-49a3-affd-c5bc4a10669b}\InprocServer32 -> C:\Users\stefan\AppData\Roaming\Move Networks\ie_bin\qsp2ie071303000004.dll (Move Networks)

CustomCLSID: HKU\S-1-5-21-3424759491-1413610708-398819693-1003_Classes\CLSID\{fc345d4c-b8f4-4674-bff7-3c37d2e535ee}\InprocServer32 -> C:\Users\stefan\AppData\Roaming\Move Networks\ie_bin\qsp2ie071303000004.dll (Move Networks)

CustomCLSID: HKU\S-1-5-21-3424759491-1413610708-398819693-1003_Classes\CLSID\{fd6484ed-ebe3-4c3d-938a-8238003b41b7}\InprocServer32 -> C:\Users\stefan\AppData\Roaming\Move Networks\ie_bin\qsp2ie071303000004.dll (Move Networks)
 

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

Task: {114973CF-9B65-45D6-9392-C55C5606E18C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {174CC3CB-6FC2-4F68-A35D-EC0A14DE98EB} - System32\Tasks\Tomb Raider - Underworld Demo => C:\Program Files\Eidos\Tomb Raider - Underworld Demo\TRU.exe

Task: {18DC378C-388C-4220-885B-CBBC2173EE2D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-21] (Adobe Systems Incorporated)

Task: {2235C39C-DEA4-4EA9-97AB-891F40F401C6} - \50e20e46-d6d5-4edb-a34a-d4450f192076-7 -> Keine Datei <==== ACHTUNG

Task: {2E732A46-FA5A-4E92-8AA5-5838B99625ED} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3424759491-1413610708-398819693-1003 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {3048F55A-A266-40E3-8960-C82CC5E9F0A2} - System32\Tasks\SamsungMagicDoctor => C:\Program Files\Samsung\Samsung Magic Doctor\MagicDoctorKbdHk.exe [2007-07-04] (Samsung Electronics Co., Ltd.)

Task: {31FA9A83-5883-4749-B6BE-B1A9E0BA3929} - System32\Tasks\{3C4D3054-EAE4-4207-9ADC-B7768722FDDF} => pcalua.exe -a C:\Users\stefan\Downloads\Setup_MoorhuhnWE_AYCS.exe -d C:\Users\stefan\Downloads

Task: {3E21E1AC-D61F-4D06-85AE-7BA3CE25479D} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EBM\EasyBatteryMgr3.exe [2008-04-17] (SAMSUNG Electronics co., LTD.)

Task: {43551B9E-AF60-4183-AEB1-CF9D2F5F525C} - \50e20e46-d6d5-4edb-a34a-d4450f192076-4 -> Keine Datei <==== ACHTUNG

Task: {43682574-B274-48D3-8E81-3613B9C99093} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {4C17566B-875B-4FC3-96E6-A7ADFB76287D} - System32\Tasks\avastBCLS-1-5-21-3424759491-1413610708-398819693-1003 => C:\Users\stefan\AppData\Roaming\AVAST Software\Browser Cleanup\BCUSched.exe [2015-10-16] (AVAST Software)

Task: {561375CB-FF5A-417B-B297-BA73DE149581} - System32\Tasks\Microsoft\Windows\Wired\GatherWiredInfo => C:\Windows\system32\gatherWiredInfo.vbs

Task: {56FC5C7B-173D-4CF6-8A5E-EACC301EBB6F} - System32\Tasks\EasyDisplayMgr => C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe [2008-05-22] (SAMSUNG Electronics)

Task: {63E35EE5-CA15-459C-B7A4-D79C51DC4B89} - \50e20e46-d6d5-4edb-a34a-d4450f192076-1 -> Keine Datei <==== ACHTUNG

Task: {7062C5D5-8297-45E8-88B6-B0A3AF304690} - \50e20e46-d6d5-4edb-a34a-d4450f192076-2 -> Keine Datei <==== ACHTUNG

Task: {79658C18-C37E-4F66-B6D4-C4B2202C860A} - \tuzq1rKFUmy3X -> Keine Datei <==== ACHTUNG

Task: {7D2ABED4-35AA-49FE-9641-27851FC13250} - System32\Tasks\{BEDE272E-8337-4498-A776-7864098A483C} => pcalua.exe -a C:\PHENOM~2\MOORHU~1\UNWISE.EXE -c C:\PHENOM~2\MOORHU~1\INSTALL.LOG

Task: {81BE2CF2-6FE1-476A-A12C-8EAB07F090F7} - System32\Tasks\DMEPeriodicTask => C:\Program Files\HP\Digital Imaging\bin\warrantyextension\HPPromo.exe [2009-06-16] (Hewlett-Packard)

Task: {855D2225-EF5E-4134-B0E6-901F7D19312F} - System32\Tasks\avast! BCU UpdateS-1-5-21-3424759491-1413610708-398819693-1003 => C:\Users\stefan\AppData\Roaming\AVAST Software\Browser Cleanup\BCUUpdate.exe [2015-03-18] (AVAST Software)

Task: {9136A61A-F203-4156-9DC3-6588D4B755DA} - \50e20e46-d6d5-4edb-a34a-d4450f192076-11 -> Keine Datei <==== ACHTUNG

Task: {9993C8EB-D032-47CD-AD23-8F70E1F1EFA6} - System32\Tasks\{F41BFD08-6FAC-4749-BF95-C9CEA07C23A8} => pcalua.exe -a "C:\Users\stefan\Favorites\Downloads\Firefox Setup 3.5.3.exe" -d C:\Users\stefan\Favorites\Downloads

Task: {AB9CB478-3E5D-45EC-B726-E9060BE723C4} - System32\Tasks\SupBackGroundTask => C:\Program Files\Samsung\Samsung Update Plus\SUPBackGround.exe [2010-04-20] ()

Task: {B06C4837-DD7F-483B-9FA4-A6C4C919A891} - System32\Tasks\{DB399477-2738-40CE-BAE5-AC7A78B4568B} => pcalua.exe -a C:\Users\stefan\Desktop\OOo_3.3.0_Win_x86_install-wJRE_de.exe -d C:\Users\stefan\Desktop

Task: {B0BD41E1-5436-470C-A32C-5F9B11906B3A} - \50e20e46-d6d5-4edb-a34a-d4450f192076-5 -> Keine Datei <==== ACHTUNG

Task: {B8DB9965-3D28-4AFA-938E-816202145DCA} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-12] (Google)

Task: {C1D902DC-2F5B-4D2A-BB1B-FCEB91AC1681} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3424759491-1413610708-398819693-1003 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {CC6FB878-D653-4A6F-ABCA-D082E770468A} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3424759491-1413610708-398819693-1003 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {D3BA54BE-BAA3-4C5D-B94C-8EB619DBEF3C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)

Task: {D8EB21EC-65B1-4FF7-87A2-0075CFF9BAA1} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3424759491-1413610708-398819693-1003 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {DD141509-A44D-4331-B160-3828F2E6BFA3} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3424759491-1413610708-398819693-1003 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {E0F0A262-46E4-41B9-AA65-0A6203AB8DA0} - \50e20e46-d6d5-4edb-a34a-d4450f192076-6 -> Keine Datei <==== ACHTUNG

Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs

Task: {E790BBF9-CB37-431E-9B9E-11D8EA3C7557} - \50e20e46-d6d5-4edb-a34a-d4450f192076-5_user -> Keine Datei <==== ACHTUNG

Task: {EA244A5D-9316-4BD4-8EDD-606E1A9F8C7C} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-3424759491-1413610708-398819693-1003 => C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe [2013-08-14] (RealNetworks, Inc.)

Task: {EF046821-8F8F-48D4-8518-F0CEC1A43395} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3424759491-1413610708-398819693-1003 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {F7940E26-DC0D-491C-A190-EFA517D15C18} - \trivia_games_notification_service -> Keine Datei <==== ACHTUNG

Task: {F918F692-93D7-4C52-8973-EF9BE1534BB8} - \trivia_games_updating_service -> Keine Datei <==== ACHTUNG
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
 

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\Windows\Tasks\DMEPeriodicTask.job => C:\Program Files\HP\Digital Imaging\bin\warrantyextension\HPPromo.exe

Task: C:\Windows\Tasks\Google Software Updater.job => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe <==== ACHTUNG

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\SupBackGroundTask.job => C:\Program Files\Samsung\Samsung Update Plus\SUPBackGround.exe

Task: C:\Windows\Tasks\tuzq1rKFUmy3X.job => C:\Users\stefan\AppData\Roaming\tuzq1rKFUmy3X.exe <==== ACHTUNG
 

==================== Verknüpfungen =============================
 

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
 

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
 

2015-07-08 23:18 - 2015-07-08 23:18 - 00794920 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kpcengine.2.3.dll

2013-08-14 15:19 - 2013-08-14 15:19 - 00039056 _____ () C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe

2008-07-08 15:26 - 2006-12-19 14:23 - 00272024 _____ () C:\Program Files\CyberLink\Shared Files\RichVideo.exe

2008-07-08 15:32 - 2006-08-12 04:48 - 00049152 _____ () C:\Program Files\Samsung\Samsung Magic Doctor\HookDllPS2.dll

2008-07-08 15:31 - 2006-08-12 04:48 - 00049152 _____ () C:\Program Files\Samsung\Easy Display Manager\HookDllPS2.dll

2016-02-20 23:37 - 2016-02-20 23:37 - 00182272 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Commonc65c5a95#\1d7a004ad81dc22008c9cdd84c0d3e74\Kies.Common.DeviceServiceLib.Interface.ni.dll

2016-02-20 23:38 - 2016-02-20 23:38 - 14995456 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Theme\45ef027dc015e342d6242626be0e2e71\Kies.Theme.ni.dll

2016-02-20 23:37 - 2016-02-20 23:37 - 01913856 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.UI\05103fa124505be9fb589f4f69596a5d\Kies.UI.ni.dll

2016-02-20 23:37 - 2016-02-20 23:37 - 00079360 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.MVVM\49f7346a902dd5f3a8deae1df9642e92\Kies.MVVM.ni.dll

2016-02-20 23:37 - 2016-02-20 23:37 - 00233984 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\ASF_cSharpAPI\95d6431d349947dc6abb817c2e237039\ASF_cSharpAPI.ni.dll

2007-07-12 05:55 - 2007-07-12 05:55 - 01581056 _____ () C:\Program Files\Common Files\LightScribe\QtCore4.dll

2007-08-14 05:59 - 2007-08-14 05:59 - 06365184 _____ () C:\Program Files\Common Files\LightScribe\QtGui4.dll

2007-07-12 05:55 - 2007-07-12 05:55 - 00131072 _____ () C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll

2011-01-17 16:19 - 2014-12-14 15:47 - 00985088 _____ () C:\Program Files\OpenOffice.org 3\program\libxml2.dll

2015-04-04 20:48 - 2014-02-10 12:44 - 04592128 _____ () C:\Users\stefan\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll

2015-04-04 20:48 - 2014-02-10 12:44 - 00112128 _____ () C:\Users\stefan\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll

2016-02-09 19:57 - 2016-02-21 19:16 - 17891008 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll
 

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
 
 

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
 
 

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
 
 

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
 
 

==================== Hosts Inhalt: ===============================
 

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
 

2006-11-02 11:23 - 2006-09-18 22:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
 

127.0.0.1       localhost

::1             localhost
 

==================== Andere Bereiche ============================
 

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
 

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

DNS Servers: 192.168.1.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall ist aktiviert.
 

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
 

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
 
 

==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

FirewallRules: [UDP Query User{96E57586-AB40-4EA7-89DB-D66C296AAD95}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe

FirewallRules: [TCP Query User{3BB02DF0-875B-4CCD-B746-31BCB74C733F}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe

FirewallRules: [{CD6AD3D2-BC8C-422E-AFB5-1200488F5E2A}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

FirewallRules: [UDP Query User{3850577B-551B-4DEE-8E70-0CED497746D2}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe

FirewallRules: [TCP Query User{486FD20D-EB63-426C-A1A4-858974B28D15}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe

FirewallRules: [UDP Query User{53CAEC3D-5184-4C33-8159-F2966BCCC63E}C:\program files\google\google earth\plugin\geplugin.exe] => (Block) C:\program files\google\google earth\plugin\geplugin.exe

FirewallRules: [TCP Query User{DB0714D8-7682-4D5C-A324-F4AAECB6CD0B}C:\program files\google\google earth\plugin\geplugin.exe] => (Block) C:\program files\google\google earth\plugin\geplugin.exe

FirewallRules: [UDP Query User{AE04BE38-ABB9-4A75-A71A-C2D520EFB9D9}C:\program files\real\realplayer\realplay.exe] => (Block) C:\program files\real\realplayer\realplay.exe

FirewallRules: [TCP Query User{492982D9-D343-442C-B1F3-CAFAA54A595F}C:\program files\real\realplayer\realplay.exe] => (Block) C:\program files\real\realplayer\realplay.exe

FirewallRules: [UDP Query User{C157AF04-35CB-46C9-8A15-A5CBA0666057}C:\program files\google\google earth\client\googleearth.exe] => (Block) C:\program files\google\google earth\client\googleearth.exe

FirewallRules: [TCP Query User{4A407687-6927-468A-98C5-982A8FBFCADE}C:\program files\google\google earth\client\googleearth.exe] => (Block) C:\program files\google\google earth\client\googleearth.exe

FirewallRules: [UDP Query User{E671AADD-EF54-4594-A545-5B034F297E6A}C:\program files\ultramixer\jre\bin\javaw.exe] => (Block) C:\program files\ultramixer\jre\bin\javaw.exe

FirewallRules: [TCP Query User{4806A18B-71B3-4D93-B9C7-03B2CFE11D82}C:\program files\ultramixer\jre\bin\javaw.exe] => (Block) C:\program files\ultramixer\jre\bin\javaw.exe

FirewallRules: [{93468ACF-E526-4870-855D-9EBC8DFAB61E}] => (Allow) C:\Program Files\HP\digital imaging\smart web printing\smartwebprintexe.exe

FirewallRules: [{8A2D74DA-7BCA-48EE-9F70-6144F0CBFDFB}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe

FirewallRules: [{03C122AF-D358-466B-B184-EFCD174A5980}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe

FirewallRules: [{5B068D04-4D7E-4931-A592-4D05B4E711B6}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe

FirewallRules: [{B822E9C3-D00C-4D5B-A866-65A4281E7465}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe

FirewallRules: [{16732263-C85C-4A81-B6AD-6DDE0CC9B1DB}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe

FirewallRules: [{FFF3C08A-1C8B-4AD2-B7B4-02253EE56FD6}] => (Allow) C:\Program Files\common files\hp\digital imaging\bin\hpqphotocrm.exe

FirewallRules: [{EDFA8DD3-DDD8-4BB5-BA9D-547F91A55DF4}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe

FirewallRules: [{1F6CCD0C-5816-4032-85AE-8D9F7280A424}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe

FirewallRules: [{04DE7099-005B-4BD2-8E4D-7C7277B73DD3}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe

FirewallRules: [{2ED57526-9444-486A-A466-FFC09334335C}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe

FirewallRules: [{62D421C6-3DC8-4E49-99CD-ECED4CB29B9A}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe

FirewallRules: [{B1DF18C2-3232-4416-ACFA-DD686EE41171}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe

FirewallRules: [{7E904C45-E034-4917-BFE4-EFD3AEE0B373}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

FirewallRules: [{85DDD69D-31D6-4B5B-B86B-044E98B5247A}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe

FirewallRules: [UDP Query User{24E8AE01-CE41-4A70-87BC-1D3B1845A7E6}C:\program files\tmnationsforever\tmforever.exe] => (Block) C:\program files\tmnationsforever\tmforever.exe

FirewallRules: [TCP Query User{D7628B8E-3127-43D7-AE6A-07F34A277967}C:\program files\tmnationsforever\tmforever.exe] => (Block) C:\program files\tmnationsforever\tmforever.exe

FirewallRules: [UDP Query User{45FEB5FA-3A8E-4462-A3F7-472285FCF27A}C:\program files\tmnationsforever\tmforever.exe] => (Block) C:\program files\tmnationsforever\tmforever.exe

FirewallRules: [TCP Query User{750C76E6-4DC5-4E87-B62C-8D53C5A8D454}C:\program files\tmnationsforever\tmforever.exe] => (Block) C:\program files\tmnationsforever\tmforever.exe

FirewallRules: [UDP Query User{49FD6115-D21C-43F1-9D55-92693D1B7A91}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe

FirewallRules: [TCP Query User{4C79B4AA-7813-43A7-BDFB-870BFC58BB6D}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe

FirewallRules: [UDP Query User{21D99F9E-A1CD-480E-985B-81BFBF9CFBD6}C:\programdata\kaspersky lab setup files\kaspersky internet security 2009\german\setup.exe] => (Allow) C:\programdata\kaspersky lab setup files\kaspersky internet security 2009\german\setup.exe

FirewallRules: [TCP Query User{B4FF7A67-2918-4925-B36C-3B53FED30208}C:\programdata\kaspersky lab setup files\kaspersky internet security 2009\german\setup.exe] => (Allow) C:\programdata\kaspersky lab setup files\kaspersky internet security 2009\german\setup.exe

FirewallRules: [{FFE802C9-B147-4651-9BE1-5B48A6CDC045}] => (Allow) C:\Program Files\CyberLink\PowerDirector\PDR.EXE

FirewallRules: [{E75CBF35-506F-418D-825D-14AC26E40972}] => (Allow) C:\Program Files\CyberLink\PowerDVD\PowerDVD.EXE

FirewallRules: [{E2A494E0-1340-409A-ADAE-42B1E4AB3C88}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

FirewallRules: [{B5E67F40-D6CB-45D8-87F0-57A15C5502D5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe

FirewallRules: [{2ACB1D6A-20C5-4878-A797-D2ACB59F250B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
 

==================== Wiederherstellungspunkte =========================
 

16-02-2016 14:26:01 Windows Update

16-02-2016 15:07:23 Windows-Sicherung

16-02-2016 16:13:17 Windows-Sicherung

18-02-2016 10:46:57 Windows Update

18-02-2016 20:14:26 Windows Update

18-02-2016 21:08:46 Windows Update

18-02-2016 21:27:27 Windows Update

20-02-2016 00:18:01 Windows Update
 

==================== Fehlerhafte Geräte im Gerätemanager =============
 
 

==================== Fehlereinträge in der Ereignisanzeige: =========================
 

Applikationsfehler:

==================

Error: (02/21/2016 07:00:29 PM) (Source: Windows Backup) (EventID: 4103) (User: )

Description: Die Sicherung wurde aufgrund eines Fehlers beim Schreiben am Sicherungsspeicherort "F:\" nicht abgeschlossen. Fehler: "Der Sicherungsort wurde nicht gefunden oder ist ungültig. Überprüfen Sie die Sicherungseinstellungen und den Sicherungsort. (0x81000006)"
 

Error: (02/21/2016 06:03:02 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (02/21/2016 06:01:30 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)

Description: Überspringen: Eap method DLL path name Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
 

Error: (02/21/2016 05:52:33 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 43.0.1.5828, Zeitstempel: 0x56723a12

Name des fehlerhaften Moduls: mozglue.dll, Version: 43.0.1.5828, Zeitstempel: 0x56722c0b

Ausnahmecode: 0x80000003

Fehleroffset: 0x0000ed63

ID des fehlerhaften Prozesses: 0x1c74

Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0

Pfad der fehlerhaften Anwendung: plugin-container.exe1

Pfad des fehlerhaften Moduls: plugin-container.exe2

Berichtskennung: plugin-container.exe3
 

Error: (02/21/2016 05:52:33 PM) (Source: Application Hang) (EventID: 1002) (User: )

Description: Programm firefox.exe, Version 43.0.1.5828 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
 

Prozess-ID: 100c
 

Startzeit: 01d16cc7a2e2c54c
 

Endzeit: 77
 

Anwendungspfad: C:\Program Files\Mozilla Firefox\firefox.exe
 

Berichts-ID: 7c1fe7bc-d8bb-11e5-afe8-0013779f3146
 

Error: (02/21/2016 08:58:25 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (02/21/2016 08:57:26 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)

Description: Überspringen: Eap method DLL path name Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
 

Error: (02/20/2016 11:10:54 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (02/20/2016 11:09:26 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)

Description: Überspringen: Eap method DLL path name Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
 

Error: (02/20/2016 11:07:23 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)

Description: Überspringen: Eap method DLL path name Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
 
 

Systemfehler:

=============

Error: (02/20/2016 11:08:17 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT-AUTORITÄT)

Description: Fehler bei der CBS-Clientinitialisierung. Letzter Fehler: 0x8007045b
 

Error: (02/19/2016 09:44:38 AM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: Der Dienst "Windows Update" wurde mit folgendem Fehler beendet: 

%%-2147467243
 

Error: (02/18/2016 09:04:27 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1001) (User: NT-AUTORITÄT)

Description: Fehler beim Starten des Assistenten für das Sprachpaket-Setup. Führen Sie einen Neustart des Systems aus, und führen Sie den Assistenten erneut aus.
 

Error: (02/18/2016 09:04:26 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT-AUTORITÄT)

Description: Fehler bei der CBS-Clientinitialisierung. Letzter Fehler: 0x80080005
 

Error: (02/18/2016 09:04:26 PM) (Source: DCOM) (EventID: 10010) (User: )

Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}
 

Error: (02/18/2016 09:04:18 PM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet: 

%%16405
 

Error: (02/18/2016 07:30:11 PM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet: 

%%16405
 

Error: (02/18/2016 07:29:18 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT-AUTORITÄT)

Description: Fehler bei der CBS-Clientinitialisierung. Letzter Fehler: 0x80080005
 

Error: (02/18/2016 07:29:18 PM) (Source: DCOM) (EventID: 10010) (User: )

Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}
 

Error: (02/18/2016 07:24:31 PM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: Der Dienst "Windows Defender" wurde mit folgendem Fehler beendet: 

%%32
 
 

CodeIntegrity:

===================================

  Date: 2016-02-16 20:26:43.876

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2016-02-16 20:26:43.735

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2016-02-16 20:26:43.486

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2016-02-16 20:26:43.408

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2016-02-16 18:38:17.071

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2016-02-16 18:38:17.067

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2016-02-16 18:38:17.062

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2016-02-16 18:38:17.031

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2016-02-16 18:38:17.026

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2016-02-16 18:38:17.021

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 
 

==================== Memory info =========================== 
 

Processor: Intel(R) Core(TM)2 Duo CPU P8400 @ 2.26GHz

Prozentuale Nutzung des RAM: 72%

Installierter physikalischer RAM: 3066.61 MB

Verfügbarer physikalischer RAM: 851.57 MB

Summe virtueller Speicher: 6129.48 MB

Verfügbarer virtueller Speicher: 3346.28 MB
 

==================== Laufwerke ================================
 

Drive c: () (Fixed) (Total:144.09 GB) (Free:79.68 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]

Drive d: () (Fixed) (Total:144 GB) (Free:135.18 GB) NTFS
 

==================== MBR & Partitionstabelle ==================
 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: B6394A61)

Partition 1: (Not Active) - (Size=10 GB) - (Type=27)

Partition 2: (Active) - (Size=144.1 GB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=144 GB) - (Type=07 NTFS)
 

==================== Ende vom Addition.txt ============================

Hallo und :hallo:

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

http://www.trojaner-board.de/picture...&pictureid=307

Hallo,
das Problem besteht etwa seit einem knappen Jahr.Habe den Firefox nicht mehr benutzt weil ich nicht mehr weiter wußte ,also keine Logs . Dann bin ich auf dieses Forum hier gestoßen und dachte ihr könnt mir helfen !

aber du hast doch malwarebytes installiert. Sind da nun Logs oder nicht, oder sind die zu alt?

Hallo ,
hatte gestern noch einen Scan gemacht .

Code:

Malwarebytes Anti-Malware

www.malwarebytes.org
 

Suchlaufdatum: 22.02.2016

Suchlaufzeit: 20:48

Protokolldatei: Anti Maleware Log.txt

Administrator: Ja
 

Version: 2.2.0.1024

Malware-Datenbank: v2016.02.22.05

Rootkit-Datenbank: v2016.02.17.01

Lizenz: Kostenlose Version

Malware-Schutz: Deaktiviert

Schutz vor bösartigen Websites: Deaktiviert

Selbstschutz: Deaktiviert
 

Betriebssystem: Windows 7 Service Pack 1

CPU: x86

Dateisystem: NTFS

Benutzer: stefan
 

Suchlauftyp: Bedrohungssuchlauf

Ergebnis: Abgeschlossen

Durchsuchte Objekte: 315367

Abgelaufene Zeit: 31 Min., 48 Sek.
 

Speicher: Aktiviert

Start: Aktiviert

Dateisystem: Aktiviert

Archive: Aktiviert

Rootkits: Deaktiviert

Heuristik: Aktiviert

PUP: Aktiviert

PUM: Aktiviert
 

Prozesse: 0

(keine bösartigen Elemente erkannt)
 

Module: 0

(keine bösartigen Elemente erkannt)
 

Registrierungsschlüssel: 0

(keine bösartigen Elemente erkannt)
 

Registrierungswerte: 0

(keine bösartigen Elemente erkannt)
 

Registrierungsdaten: 0

(keine bösartigen Elemente erkannt)
 

Ordner: 0

(keine bösartigen Elemente erkannt)
 

Dateien: 0

(keine bösartigen Elemente erkannt)
 

Physische Sektoren: 0

(keine bösartigen Elemente erkannt)
 
 

(end)

Hier ist noch ein älterer Scan.

Code:

Malwarebytes Anti-Malware

www.malwarebytes.org
 

Suchlaufdatum: 12.04.2015

Suchlaufzeit: 16:46

Protokolldatei: Anti Maleware Log.txt alt.txt

Administrator: Ja
 

Version: 2.01.4.1018

Malware-Datenbank: v2015.04.12.02

Rootkit-Datenbank: v2015.03.31.01

Lizenz: Kostenlose Version

Malware-Schutz: Deaktiviert

Schutz vor bösartigen Websites: Deaktiviert

Selbstschutz: Deaktiviert
 

Betriebssystem: Windows Vista Service Pack 2

CPU: x86

Dateisystem: NTFS

Benutzer: stefan
 

Suchlauftyp: Bedrohungssuchlauf

Ergebnis: Abgeschlossen

Durchsuchte Objekte: 307865

Abgelaufene Zeit: 18 Min., 58 Sek.
 

Speicher: Aktiviert

Start: Aktiviert

Dateisystem: Aktiviert

Archive: Aktiviert

Rootkits: Deaktiviert

Heuristik: Aktiviert

PUP: Aktiviert

PUM: Aktiviert
 

Prozesse: 0

(keine bösartigen Elemente erkannt)
 

Module: 0

(keine bösartigen Elemente erkannt)
 

Registrierungsschlüssel: 4

PUP.Optional.RadioCanyon.A, HKLM\SOFTWARE\Radio Canyon-nv, In Quarantäne, [bdf5cf9c7d0ddb5b1d233317877e56aa], 

PUP.Optional.Dregol.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\ihokndmjeombjojnfkmapfnjeghjohim, In Quarantäne, [743ecaa1abdfb28498a6dbe6986bf30d], 

PUP.Optional.RadioCanyon.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\Radio Canyon, In Quarantäne, [4171adbe068436008eb4da708283d927], 

PUP.Optional.Dregol.A, HKU\S-1-5-21-3424759491-1413610708-398819693-1003\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\ihokndmjeombjojnfkmapfnjeghjohim, In Quarantäne, [8c26d9924644d06680bf705106fd619f], 
 

Registrierungswerte: 10

PUP.Optional.Dregol.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, hxxp://www.dregol.com/results.php?f=4&q={searchTerms}&a=drg_fsvideosft_15_14&cd=2XzuyEtN2Y1L1QzutDtDtCyC0E0A0CzztAyB0A0AzytDtBzytN0D0Tzu0StCtCzzzztN1L2XzutAtFzytFyBtFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyB0AtA0AtAzy0DtDtGyB0E0FyDtG0EtDyCtBtGtAyEzyyCtGtA0C0EtDtBtAzz0E0A0EyD0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0AtBtD0E0B0C0B0DtGtDtAtC0AtGyEzztByEtG0AyCzzyBtGyE0FyB0FzzyE0B0E0EyDtBzz2QtN0A0LzuyEtN1B2Z1V1T1S1NzuyCyDyC&cr=846519543&ir=, In Quarantäne, [d9d9e388beccf145b8564a098085b848]

PUP.Optional.Dregol.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TopResultURLFallback, hxxp://www.dregol.com/results.php?f=4&q={searchTerms}&a=drg_fsvideosft_15_14&cd=2XzuyEtN2Y1L1QzutDtDtCyC0E0A0CzztAyB0A0AzytDtBzytN0D0Tzu0StCtCzzzztN1L2XzutAtFzytFyBtFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyB0AtA0AtAzy0DtDtGyB0E0FyDtG0EtDyCtBtGtAyEzyyCtGtA0C0EtDtBtAzz0E0A0EyD0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0AtBtD0E0B0C0B0DtGtDtAtC0AtGyEzztByEtG0AyCzzyBtGyE0FyB0FzzyE0B0E0EyDtBzz2QtN0A0LzuyEtN1B2Z1V1T1S1NzuyCyDyC&cr=846519543&ir=, In Quarantäne, [2a884c1f93f778beef1f9eb5ce37867a]

PUP.Optional.Dregol.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|FaviconPath, C:\Users\stefan\AppData\LocalLow\Microsoft\Internet Explorer\Services\Run_Dregol.ico, In Quarantäne, [ecc67fec0b7f4cea8a84d083ca3b32ce]

PUP.Optional.Dregol.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, Dregol, In Quarantäne, [dcd67fecddadd85e11fd8ac9ac5915eb]

PUP.Optional.Dregol.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|DisplayName, Dregol, In Quarantäne, [e3cfd09beaa0999db05e153ef60fbc44]

PUP.Optional.Dregol.A, HKU\S-1-5-21-3424759491-1413610708-398819693-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, hxxp://www.dregol.com/results.php?f=4&q={searchTerms}&a=drg_fsvideosft_15_14&cd=2XzuyEtN2Y1L1QzutDtDtCyC0E0A0CzztAyB0A0AzytDtBzytN0D0Tzu0StCtCzzzztN1L2XzutAtFzytFyBtFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyB0AtA0AtAzy0DtDtGyB0E0FyDtG0EtDyCtBtGtAyEzyyCtGtA0C0EtDtBtAzz0E0A0EyD0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0AtBtD0E0B0C0B0DtGtDtAtC0AtGyEzztByEtG0AyCzzyBtGyE0FyB0FzzyE0B0E0EyDtBzz2QtN0A0LzuyEtN1B2Z1V1T1S1NzuyCyDyC&cr=846519543&ir=, In Quarantäne, [6949ff6cc2c87fb73dd088cb40c5827e]

PUP.Optional.Dregol.A, HKU\S-1-5-21-3424759491-1413610708-398819693-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TopResultURLFallback, hxxp://www.dregol.com/results.php?f=4&q={searchTerms}&a=drg_fsvideosft_15_14&cd=2XzuyEtN2Y1L1QzutDtDtCyC0E0A0CzztAyB0A0AzytDtBzytN0D0Tzu0StCtCzzzztN1L2XzutAtFzytFyBtFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyB0AtA0AtAzy0DtDtGyB0E0FyDtG0EtDyCtBtGtAyEzyyCtGtA0C0EtDtBtAzz0E0A0EyD0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0AtBtD0E0B0C0B0DtGtDtAtC0AtGyEzztByEtG0AyCzzyBtGyE0FyB0FzzyE0B0E0EyDtBzz2QtN0A0LzuyEtN1B2Z1V1T1S1NzuyCyDyC&cr=846519543&ir=, In Quarantäne, [872b76f57c0ee84e24e9e66d91747b85]

PUP.Optional.Dregol.A, HKU\S-1-5-21-3424759491-1413610708-398819693-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|FaviconPath, C:\Users\stefan\AppData\LocalLow\Microsoft\Internet Explorer\Services\Run_Dregol.ico, In Quarantäne, [585a99d26b1fef47c7468ac9d82db64a]

PUP.Optional.Dregol.A, HKU\S-1-5-21-3424759491-1413610708-398819693-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, Dregol, In Quarantäne, [367c5912addd0333e429064d91742cd4]

PUP.Optional.Dregol.A, HKU\S-1-5-21-3424759491-1413610708-398819693-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|DisplayName, Dregol, In Quarantäne, [d4de7bf0cdbd4ee8739a9cb7828347b9]
 

Registrierungsdaten: 0

(keine bösartigen Elemente erkannt)
 

Ordner: 1

PUP.Optional.TriviaGames.A, C:\Program Files\trivia games, In Quarantäne, [8e249ecd99f15adc7e5f3586689bca36], 
 

Dateien: 8

PUP.Optional.Updating.A, C:\Windows\Tasks\trivia_games_updating_service.job, In Quarantäne, [00b2e784acde280ecfa94e6e986bd42c], 

PUP.Optional.Notification.A, C:\Windows\Tasks\trivia_games_notification_service.job, In Quarantäne, [3a78a1ca385237ffaffaf4c8ab58d62a], 

PUP.Optional.Dregol.A, C:\Users\stefan\AppData\Roaming\Mozilla\Firefox\Profiles\z1jr1cyo.default-1428068173933\searchplugins\dregol.xml, In Quarantäne, [5a58e487e8a2201669d9f5cc43c0a45c], 

PUP.Optional.SelectNGo.A, C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.selectgo00.selectgo.net_0.localstorage, In Quarantäne, [f6bc7fec008a82b4ffd92f9bae55ba46], 

PUP.Optional.SelectNGo.A, C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.selectgo00.selectgo.net_0.localstorage-journal, In Quarantäne, [f3bfbfac2367092d32a6bc0e14ef1ae6], 

Trojan.Banker, C:\www.exe, In Quarantäne, [a1112645523870c6b781d6d420e436ca], 

PUP.Optional.Dregol.A, C:\Users\stefan\AppData\Roaming\Mozilla\Firefox\Profiles\z1jr1cyo.default-1428068173933\search.json, Gut: (), Schlecht: (dregol.xml), Ersetzt,[2989d893dcaecb6b2d85a795976fb050]

PUP.Optional.Dregol.A, C:\Users\stefan\AppData\Roaming\Mozilla\Firefox\Profiles\z1jr1cyo.default-1428068173933\search.json, Gut: (), Schlecht: (dregol.com), Ersetzt,[476bd9923d4df83e565c86b65ea8f010]
 

Physische Sektoren: 0

(keine bösartigen Elemente erkannt)
 
 

(end)

Hatte Kaspersky Funde? Muss ich jetzt bei jedem Tool/Programm einzeln nachfragen?

Bei Kaspersky gab es keine Funde !Sorry.

okay :)

Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Der Scan hat nichts gefunden.

Code:

Malwarebytes Anti-Rootkit BETA 1.9.3.1001

www.malwarebytes.org
 

Database version:

  main:    v2016.02.23.02

  rootkit: v2016.02.17.01
 

Windows 7 Service Pack 1 x86 NTFS

Internet Explorer 11.0.9600.18204

stefan :: STEFAN-PC [administrator]
 

23.02.2016 13:46:52

mbar-log-2016-02-23 (13-46-52).txt
 

Scan type: Quick scan

Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken

Scan options disabled: 

Objects scanned: 317334

Time elapsed: 45 minute(s), 23 second(s)
 

Memory Processes Detected: 0

(No malicious items detected)
 

Memory Modules Detected: 0

(No malicious items detected)
 

Registry Keys Detected: 0

(No malicious items detected)
 

Registry Values Detected: 0

(No malicious items detected)
 

Registry Data Items Detected: 0

(No malicious items detected)
 

Folders Detected: 0

(No malicious items detected)
 

Files Detected: 0

(No malicious items detected)
 

Physical Sectors Detected: 0

(No malicious items detected)
 

(end)

Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!

1. Schritt: adwCleaner

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

3. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

AdwareCleaner

Code:

# AdwCleaner v5.036 - Bericht erstellt am 23/02/2016 um 15:10:46

# Aktualisiert am 22/02/2016 von Xplode

# Datenbank : 2016-02-22.2 [Server]

# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x86)

# Benutzername : stefan - STEFAN-PC

# Gestartet von : C:\Users\stefan\Favorites\Downloads\AdwCleaner_5.036.exe

# Option : Löschen

# Unterstützung : hxxp://toolslib.net/forum
 

***** [ Dienste ] *****
 
 

***** [ Ordner ] *****
 
 

***** [ Dateien ] *****
 

[-] Datei Gelöscht : C:\Program Files\Mozilla Firefox\my.cfg
 

***** [ DLLs ] *****
 
 

***** [ Verknüpfungen ] *****
 
 

***** [ Aufgabenplanung ] *****
 
 

***** [ Registrierungsdatenbank ] *****
 
 

***** [ Internetbrowser ] *****
 
 

*************************
 

:: "Tracing" Schlüssel gelöscht

:: Proxy Einstellungen zurückgesetzt

:: Winsock Einstellungen zurückgesetzt

:: Chrome Richtlinien gelöscht
 

*************************
 

C:\AdwCleaner\AdwCleaner[C1].txt - [928 Bytes] - [23/02/2016 15:10:46]

C:\AdwCleaner\AdwCleaner[S1].txt - [790 Bytes] - [21/02/2016 21:05:57]

C:\AdwCleaner\AdwCleaner[S2].txt - [790 Bytes] - [21/02/2016 23:15:42]

C:\AdwCleaner\AdwCleaner[S3].txt - [1037 Bytes] - [23/02/2016 15:08:50]
 

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1217 Bytes] ##########

Junkware Tool

Code:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Malwarebytes

Version: 8.0.3 (02.09.2016)

Operating System: Windows 7 Home Premium x86 

Ran by stefan (Administrator) on 23.02.2016 at 15:18:48,28

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 

File System: 18 
 

Successfully deleted: C:\Users\stefan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3N05UMUH (Temporary Internet Files Folder) 

Successfully deleted: C:\Users\stefan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4D261TYX (Temporary Internet Files Folder) 

Successfully deleted: C:\Users\stefan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\59ZZDYP6 (Temporary Internet Files Folder) 

Successfully deleted: C:\Users\stefan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7OW44F9M (Temporary Internet Files Folder) 

Successfully deleted: C:\Users\stefan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M06IKBZQ (Temporary Internet Files Folder) 

Successfully deleted: C:\Users\stefan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MR6H20GS (Temporary Internet Files Folder) 

Successfully deleted: C:\Users\stefan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SFNFENQQ (Temporary Internet Files Folder) 

Successfully deleted: C:\Users\stefan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W5A93SV9 (Temporary Internet Files Folder) 

Successfully deleted: C:\Windows\prefetch\GOOGLETOOLBARNOTIFIER.EXE-EB3F2433.pf (File) 

Successfully deleted: C:\Windows\prefetch\IMAGINE DIGITAL FREEDOM.SCR-449097F8.pf (File) 

Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3N05UMUH (Temporary Internet Files Folder) 

Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4D261TYX (Temporary Internet Files Folder) 

Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\59ZZDYP6 (Temporary Internet Files Folder) 

Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7OW44F9M (Temporary Internet Files Folder) 

Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M06IKBZQ (Temporary Internet Files Folder) 

Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MR6H20GS (Temporary Internet Files Folder) 

Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SFNFENQQ (Temporary Internet Files Folder) 

Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W5A93SV9 (Temporary Internet Files Folder) 
 
 
 

Registry: 0 
 
 
 
 
 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on 23.02.2016 at 15:21:41,97

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:21-02-2016

durchgeführt von stefan (Administrator) auf STEFAN-PC (23-02-2016 15:25:35)

Gestartet von C:\Users\stefan\Favorites\Downloads

Geladene Profile: stefan (Verfügbare Profile: stefan)

Platform: Microsoft Windows 7 Home Premium  Service Pack 1 0(X86) Sprache: Deutsch (Deutschland)

Internet Explorer Version 11 (Standard-Browser: FF)

Start-Modus: Normal

Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 

==================== Prozesse (Nicht auf der Ausnahmeliste) =================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe

(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe

() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe

() C:\Program Files\CyberLink\Shared Files\RichVideo.exe

(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe

(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.bin

(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe

(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe

(Microsoft Corporation) C:\Windows\System32\cmd.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe
 
 

==================== Registry (Nicht auf der Ausnahmeliste) ===========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
 

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-10-26] (Synaptics, Inc.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [6111232 2008-04-17] (Realtek Semiconductor)

HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)

HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2015-07-27] (Samsung Electronics Co., Ltd.)

HKLM\...\Run: [LanguageShortcut] => C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [52256 2007-01-08] ()

HKLM\...\Run: [RemoteControl] => C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [71216 2007-03-14] (Cyberlink Corp.)

HKLM\...\Run: [TkBellExe] => c:\program files\real\realplayer\Update\realsched.exe [295512 2014-02-05] (RealNetworks, Inc.)

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Run: [Battery-Tool] => C:\Users\stefan\Favorites\Downloads\Battery-Tool.exe [414208 2016-01-22] (Sciper)

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [144384 2010-11-20] (Microsoft Corporation)

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1566016 2015-07-27] (Samsung)

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Run: [LightScribe Control Panel] => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2289664 2008-03-17] (Hewlett-Packard Company)

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2008-12-20] (Google Inc.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BTTray.lnk [2008-07-08]

ShortcutTarget: BTTray.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-02-16]

ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

Startup: C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk [2014-12-14]

ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
 

==================== Internet (Nicht auf der Ausnahmeliste) ====================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
 

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{86602508-A4F0-4FD4-AA67-02B048ABA103}: [DhcpNameServer] 192.168.1.1
 

Internet Explorer:

==================

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp:\\www.samsungcomputer.com

HKU\S-1-5-21-3424759491-1413610708-398819693-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.web.de/

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)

BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-16] (AO Kaspersky Lab)

Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)

Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-16] (AO Kaspersky Lab)

Toolbar: HKU\S-1-5-21-3424759491-1413610708-398819693-1003 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)

DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
 

FireFox:

========

FF ProfilePath: C:\Users\stefan\AppData\Roaming\Mozilla\Firefox\Profiles\lu6yq3li.default-1454154928179

FF NewTab: about:newtab

FF DefaultSearchEngine: Google (avast)

FF DefaultSearchUrl: hxxps://www.google.com/search?trackid=sp-004-752

FF SearchEngineOrder.1: Google (avast)

FF SelectedSearchEngine: Google (avast)

FF Homepage: hxxps://www.google.com/?trackid=sp-004-752

FF Keyword.URL: hxxps://www.google.com/search?trackid=sp-004-752

FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll [2016-02-21] ()

FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1214154.dll [2014-11-07] (Adobe Systems, Inc.)

FF Plugin: @canon.com/MycameraPlugin -> C:\Program Files\Canon\ZoomBrowser EX\Program\NPCIG.dll [2008-10-15] (CANON INC.)

FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)

FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)

FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)

FF Plugin: @pack.google.com/Google Updater;version=14 -> C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll [2011-10-07] (Google)

FF Plugin: @real.com/nppl3260;version=16.0.3.51 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll [2014-02-05] (RealNetworks, Inc.)

FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)

FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)

FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)

FF Plugin: @real.com/nprpplugin;version=16.0.3.51 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll [2014-02-05] (RealPlayer)

FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)

FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)

FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)

FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011-10-03] (Sun Microsystems, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdevalvr.dll [2012-11-06] (www.devalvr.com)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdevalvr_.dll [2012-11-06] (www.devalvr.com)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2014-02-05] (RealNetworks, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll [2014-02-05] (RealPlayer)

FF SearchPlugin: C:\Users\stefan\AppData\Roaming\Mozilla\Firefox\Profiles\lu6yq3li.default-1454154928179\searchplugins\google-avast.xml [2016-01-30]

FF Extension: Adblock Plus - C:\Users\stefan\AppData\Roaming\Mozilla\Firefox\Profiles\lu6yq3li.default-1454154928179\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-01-30]

FF Extension: Anti-Banner - C:\Program Files\Mozilla Firefox\extensions\KavAntiBanner@kaspersky.ru_bak2 [2016-02-16] [ist nicht signiert]

FF Extension: Kaspersky URL Advisor - C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak [2016-02-16] [ist nicht signiert]

FF Extension: Modul zur Link-Untersuchung - C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak2 [2016-02-16] [ist nicht signiert]

FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2016-02-16] [ist nicht signiert]

FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension

FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2016-02-16] [ist nicht signiert]

FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext

FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2016-02-16] [ist nicht signiert]

FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext

FF HKLM\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox

FF Extension: Kaspersky Protection - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2016-02-16]

FF HKLM\...\Thunderbird\Extensions: [{eea12ec4-729d-4703-bc37-106ce9879ce2}] - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\THBExt => nicht gefunden

FF HKU\S-1-5-21-3424759491-1413610708-398819693-1003\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF ExtraCheck: C:\Program Files\mozilla firefox\browser\defaults\preferences\my-prefs.js [2015-03-25] <==== ACHTUNG (Zeigt auf eine *.cfg Datei)
 

Chrome: 

=======

CHR HomePage: Default -> hxxp://www%2Cweb.deyetn2y1l1qzutdtdtcyc0e0a0czztayb0a0azytdtbzytn0d0tzu0stctczzzztn1l2xzutatfzytfybtftdtn1l1czutcyetbzytdyd1v1ttn1l1g1b1v1n2y1l1qzu2syb0ata0atazy0dtdtgyb0e0fydtg0etdyctbtgtayezyyctgta0c0etdtbtazz0e0a0eyd0c2qtn1m1f1b2z1v1n2y1l1qzu2s0atbtd0e0b0c0b0dtgtdtatc0atgyezztbyetg0ayczzybtgye0fyb0fzzye0b0e0eydtbzz2qtn0a0lzuyetn1b2z1v1t1s1nzuycydyc%26cr%3D846519543%26ir%3D/

CHR StartupUrls: Default -> "hxxp://web.de/"

CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\48.0.2564.116\ppGoogleNaClPluginChrome.dll => Keine Datei

CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\48.0.2564.116\pdf.dll => Keine Datei

CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\48.0.2564.116\gcswf32.dll => Keine Datei

CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll => Keine Datei

CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\plugin/npABPlugin.dll => Keine Datei

CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.477_0\plugin/npVKPlugin.dll => Keine Datei

CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.477_0\plugin/npUrlAdvisor.dll => Keine Datei

CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll => Keine Datei

CHR Plugin: (Java Deployment Toolkit 6.0.290.11) - C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.)

CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)

CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll => Keine Datei

CHR Plugin: (RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll => Keine Datei

CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll => Keine Datei

CHR Plugin: (NPCIG.dll) - C:\Program Files\Canon\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)

CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)

CHR Plugin: (Google Updater) - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)

CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll => Keine Datei

CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => Keine Datei

CHR Plugin: (Windows Live® Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

CHR Profile: C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Adblock Plus) - C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-02-16]

CHR Extension: (Kaspersky Protection) - C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\eahebamiopdhefndnmappcihfajigkka [2016-02-16]

CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\stefan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-16]

CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka

CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
 

==================== Dienste (Nicht auf der Ausnahmeliste) ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

R2 AVP16.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2016-02-16] (Kaspersky Lab ZAO)

S2 gupdate1c98932dd8af594; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.)

R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2008-03-17] (Hewlett-Packard Company) [Datei ist nicht signiert]

S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)

R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2009-05-14] (Hewlett-Packard) [Datei ist nicht signiert]

R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2009-05-14] (Hewlett-Packard) [Datei ist nicht signiert]

R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()

R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2006-12-19] ()

R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.)

R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
 

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [201912 2015-07-06] (Kaspersky Lab ZAO)

R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [153784 2015-06-22] (Kaspersky Lab ZAO)

R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [46776 2015-06-06] (Kaspersky Lab ZAO)

R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [58224 2015-06-27] (Kaspersky Lab ZAO)

R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [58040 2015-06-06] (Kaspersky Lab ZAO)

R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [147328 2016-02-16] (AO Kaspersky Lab)

R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [44728 2016-02-16] (AO Kaspersky Lab)

R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [783744 2016-02-16] (AO Kaspersky Lab)

R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [33976 2015-06-11] (Kaspersky Lab ZAO)

R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [37048 2015-06-06] (Kaspersky Lab ZAO)

R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [38072 2015-06-07] (Kaspersky Lab ZAO)

R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [39304 2016-02-16] (AO Kaspersky Lab)

R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [54328 2015-06-11] (Kaspersky Lab ZAO)

R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [87736 2015-06-16] (Kaspersky Lab ZAO)

R2 KMDFMEMIO; C:\Windows\System32\DRIVERS\kmdfmemio.sys [13312 2007-05-23] (SAMSUNG ELECTRONICS CO., LTD.)

R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [156856 2015-06-23] (Kaspersky Lab ZAO)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)

S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)

R3 VMC302; C:\Windows\System32\Drivers\VMC302.sys [243840 2009-01-23] (Vimicro Corporation)

U4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X]

S3 NETw5v32; system32\DRIVERS\NETw5v32.sys [X]
 

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 
 

==================== Ein Monat: Erstellte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2016-02-23 15:21 - 2016-02-23 15:21 - 00003368 _____ C:\Users\stefan\Desktop\JRT.txt

2016-02-23 13:46 - 2016-02-23 14:32 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)

2016-02-23 13:45 - 2016-02-23 14:32 - 00000000 ____D C:\Users\stefan\Desktop\mbar

2016-02-23 13:13 - 2016-02-23 13:13 - 00007123 _____ C:\Anti Maleware Log.txt alt.txt

2016-02-23 13:04 - 2016-02-23 13:04 - 00001224 _____ C:\Anti Maleware Log.txt

2016-02-23 13:04 - 2016-02-23 13:04 - 00000554 _____ C:\Users\stefan\Desktop\Anti Maleware Log.txt.lnk

2016-02-21 21:43 - 2016-02-23 15:25 - 00000000 ____D C:\FRST

2016-02-21 18:32 - 2016-02-21 18:32 - 00001117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk

2016-02-21 18:32 - 2016-02-21 18:32 - 00001105 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk

2016-02-21 18:32 - 2016-02-21 18:32 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service

2016-02-21 17:40 - 2016-02-21 17:40 - 00026624 ___SH C:\Users\stefan\Desktop\Thumbs.db

2016-02-19 14:50 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL

2016-02-19 14:50 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL

2016-02-19 14:50 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL

2016-02-19 14:50 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL

2016-02-19 14:50 - 2014-07-09 02:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL

2016-02-19 14:50 - 2012-02-11 06:37 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe

2016-02-19 14:50 - 2011-03-11 06:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys

2016-02-19 14:50 - 2011-03-11 06:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys

2016-02-19 14:50 - 2011-03-11 06:38 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys

2016-02-19 14:50 - 2011-03-11 06:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys

2016-02-19 14:50 - 2011-03-11 06:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys

2016-02-19 14:50 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll

2016-02-19 14:50 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe

2016-02-19 14:50 - 2011-03-11 05:01 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS

2016-02-18 21:09 - 2016-02-18 21:09 - 144254680 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2016-02-18 21:06 - 2016-02-18 21:06 - 00000000 ____D C:\Users\stefan\AppData\Local\GWX

2016-02-18 20:59 - 2016-02-18 20:59 - 00000000 ___SD C:\Windows\system32\CompatTel

2016-02-18 20:59 - 2016-02-18 20:59 - 00000000 ____D C:\Windows\system32\appraiser

2016-02-18 20:34 - 2015-01-09 00:44 - 00419936 _____ C:\Windows\system32\locale.nls

2016-02-18 19:52 - 2016-02-06 11:01 - 20366848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2016-02-18 19:52 - 2016-02-06 10:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2016-02-18 19:52 - 2016-02-06 10:43 - 02280448 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2016-02-18 19:52 - 2016-02-06 10:38 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2016-02-18 19:52 - 2016-02-06 10:16 - 12857856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2016-02-18 19:52 - 2016-02-06 09:54 - 01312256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2016-02-18 19:52 - 2016-01-22 21:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2016-02-18 19:52 - 2016-01-22 07:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2016-02-18 19:52 - 2016-01-22 07:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2016-02-18 19:52 - 2016-01-22 07:01 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2016-02-18 19:52 - 2016-01-22 06:55 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2016-02-18 19:52 - 2016-01-22 06:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2016-02-18 19:52 - 2016-01-22 06:52 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2016-02-18 19:52 - 2016-01-22 06:51 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2016-02-18 19:52 - 2016-01-22 06:51 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2016-02-18 19:52 - 2016-01-22 06:46 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2016-02-18 19:52 - 2016-01-22 06:43 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2016-02-18 19:52 - 2016-01-22 06:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2016-02-18 19:52 - 2016-01-22 06:38 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2016-02-18 19:52 - 2016-01-22 06:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2016-02-18 19:52 - 2016-01-22 06:34 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2016-02-18 19:52 - 2016-01-22 06:33 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2016-02-18 19:52 - 2016-01-22 06:27 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2016-02-18 19:52 - 2016-01-22 06:25 - 00687104 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2016-02-18 19:52 - 2016-01-22 06:25 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2016-02-18 19:52 - 2016-01-22 06:24 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2016-02-18 19:52 - 2016-01-22 06:07 - 02120704 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2016-02-18 19:52 - 2016-01-22 06:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2016-02-18 19:52 - 2016-01-16 19:42 - 00022464 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe

2016-02-18 19:52 - 2016-01-16 19:34 - 00949760 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2016-02-18 19:52 - 2016-01-11 15:07 - 01198080 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll

2016-02-18 19:52 - 2016-01-11 15:07 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll

2016-02-18 19:52 - 2016-01-11 15:07 - 00544768 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll

2016-02-18 19:52 - 2016-01-11 15:07 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll

2016-02-18 19:52 - 2016-01-11 15:07 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll

2016-02-18 19:52 - 2015-11-16 21:12 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll

2016-02-18 19:52 - 2015-06-03 21:17 - 01167520 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe

2016-02-18 19:51 - 2016-01-22 07:02 - 00496640 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2016-02-18 19:51 - 2016-01-22 07:01 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2016-02-18 19:51 - 2016-01-22 07:00 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2016-02-18 19:51 - 2016-01-22 06:51 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2016-02-18 19:51 - 2016-01-22 06:35 - 04611072 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2016-02-18 19:51 - 2016-01-22 06:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2016-02-18 19:51 - 2016-01-22 06:24 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2016-02-18 19:51 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll

2016-02-18 19:50 - 2015-11-10 19:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll

2016-02-18 19:50 - 2015-11-10 19:39 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll

2016-02-18 19:50 - 2015-11-10 19:39 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll

2016-02-18 19:50 - 2015-02-03 04:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll

2016-02-18 19:39 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll

2016-02-18 19:39 - 2015-07-30 18:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll

2016-02-18 19:38 - 2015-02-04 03:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll

2016-02-18 19:23 - 2016-02-18 19:29 - 00000000 ___SD C:\Windows\system32\GWX

2016-02-18 11:38 - 2012-07-26 04:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe

2016-02-18 11:38 - 2012-07-26 04:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll

2016-02-18 11:38 - 2012-07-26 04:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll

2016-02-18 11:38 - 2012-07-26 04:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll

2016-02-18 11:38 - 2012-07-26 04:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll

2016-02-18 11:38 - 2012-07-26 03:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys

2016-02-18 11:38 - 2012-07-26 03:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys

2016-02-18 11:38 - 2012-06-02 15:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf

2016-02-18 11:35 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll

2016-02-18 11:35 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe

2016-02-18 11:35 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe

2016-02-18 11:35 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll

2016-02-18 11:34 - 2012-03-01 06:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys

2016-02-18 11:34 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2016-02-18 11:00 - 2016-02-18 11:00 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2016-02-18 11:00 - 2016-02-18 11:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2016-02-18 11:00 - 2016-02-18 11:00 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2016-02-18 11:00 - 2016-02-18 11:00 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2016-02-18 11:00 - 2016-02-18 11:00 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2016-02-18 11:00 - 2016-02-18 11:00 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2016-02-18 11:00 - 2016-02-18 11:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2016-02-18 11:00 - 2016-02-18 11:00 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2016-02-18 10:59 - 2016-02-18 10:59 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll

2016-02-18 10:59 - 2016-02-18 10:59 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe

2016-02-18 10:56 - 2016-02-18 10:56 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2016-02-18 10:56 - 2016-02-18 10:56 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2016-02-18 10:55 - 2016-02-18 10:55 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll

2016-02-18 10:53 - 2015-07-30 14:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2016-02-18 09:41 - 2016-02-18 09:41 - 00201216 ___SH C:\Users\stefan\Documents\Thumbs.db

2016-02-17 22:20 - 2015-01-09 03:48 - 00635904 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll

2016-02-17 22:20 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll

2016-02-17 22:20 - 2015-01-09 03:48 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll

2016-02-17 22:17 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll

2016-02-17 22:17 - 2015-07-10 18:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll

2016-02-17 22:17 - 2015-07-10 18:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll

2016-02-17 22:17 - 2015-07-10 18:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll

2016-02-17 22:17 - 2015-01-29 04:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll

2016-02-17 22:17 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll

2016-02-17 22:17 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll

2016-02-17 22:17 - 2013-07-03 05:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys

2016-02-17 22:17 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys

2016-02-17 22:17 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys

2016-02-17 22:17 - 2013-04-12 14:45 - 01211752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys

2016-02-17 22:17 - 2012-07-04 20:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys

2016-02-17 22:16 - 2016-01-16 19:36 - 01413632 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll

2016-02-17 22:16 - 2015-11-11 19:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll

2016-02-17 22:16 - 2015-11-11 19:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll

2016-02-17 22:16 - 2013-02-12 04:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys

2016-02-17 22:16 - 2011-04-29 03:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys

2016-02-17 22:16 - 2011-04-29 03:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys

2016-02-17 22:16 - 2011-04-29 03:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys

2016-02-17 22:15 - 2016-01-22 07:05 - 12877824 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2016-02-17 22:15 - 2016-01-22 07:00 - 01498624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll

2016-02-17 22:15 - 2016-01-22 06:59 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll

2016-02-17 22:15 - 2016-01-22 06:12 - 02973184 _____ (Microsoft Corporation) C:\Windows\explorer.exe

2016-02-17 22:15 - 2016-01-07 18:47 - 02386944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2016-02-17 22:15 - 2016-01-06 19:41 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll

2016-02-17 22:15 - 2016-01-06 18:56 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll

2016-02-17 22:15 - 2015-08-27 18:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll

2016-02-17 22:15 - 2015-08-27 18:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

2016-02-17 22:15 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll

2016-02-17 22:15 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll

2016-02-17 22:15 - 2015-07-09 18:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe

2016-02-17 22:15 - 2015-07-09 18:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\notepad.exe

2016-02-17 22:15 - 2015-07-01 21:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll

2016-02-17 22:15 - 2015-07-01 21:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll

2016-02-17 22:15 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll

2016-02-17 22:15 - 2013-01-24 05:47 - 00196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys

2016-02-17 22:15 - 2012-11-02 06:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll

2016-02-17 22:15 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll

2016-02-17 22:15 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe

2016-02-17 22:14 - 2015-08-05 18:41 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll

2016-02-17 22:14 - 2015-06-15 22:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll

2016-02-17 22:14 - 2015-06-15 22:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll

2016-02-17 22:14 - 2015-06-15 22:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe

2016-02-17 22:14 - 2015-06-15 22:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll

2016-02-17 22:14 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll

2016-02-17 22:14 - 2014-06-16 02:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys

2016-02-17 22:14 - 2014-06-16 02:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys

2016-02-17 22:14 - 2014-06-16 02:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll

2016-02-17 22:14 - 2014-03-04 10:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll

2016-02-17 22:14 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll

2016-02-17 22:14 - 2011-03-03 06:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll

2016-02-17 22:14 - 2011-03-03 06:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll

2016-02-17 22:14 - 2011-03-03 06:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe

2016-02-17 22:13 - 2015-11-05 20:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll

2016-02-17 22:13 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll

2016-02-17 22:13 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll

2016-02-17 22:13 - 2015-10-29 18:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll

2016-02-17 22:13 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe

2016-02-17 22:13 - 2015-07-15 18:59 - 00078784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys

2016-02-17 22:13 - 2015-07-15 18:55 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll

2016-02-17 22:13 - 2015-07-15 18:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll

2016-02-17 22:13 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL

2016-02-17 22:13 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx

2016-02-17 22:13 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll

2016-02-17 22:13 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe

2016-02-17 22:13 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe

2016-02-17 22:13 - 2012-08-21 21:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe

2016-02-17 22:13 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl

2016-02-17 22:13 - 2011-08-17 05:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll

2016-02-17 22:13 - 2011-08-17 05:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax

2016-02-17 22:13 - 2011-05-24 11:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll

2016-02-17 22:12 - 2016-01-07 18:35 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys

2016-02-17 22:12 - 2015-11-03 19:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\els.dll

2016-02-17 22:12 - 2015-10-13 17:31 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys

2016-02-17 22:12 - 2015-10-13 17:31 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys

2016-02-17 22:12 - 2015-10-13 05:50 - 00712640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys

2016-02-17 22:12 - 2015-09-02 03:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll

2016-02-17 22:12 - 2015-09-02 03:48 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll

2016-02-17 22:12 - 2015-09-02 03:48 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll

2016-02-17 22:12 - 2015-09-02 03:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll

2016-02-17 22:12 - 2015-09-02 02:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll

2016-02-17 22:12 - 2015-04-11 04:07 - 00054656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys

2016-02-17 22:12 - 2015-03-04 05:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys

2016-02-17 22:12 - 2015-03-04 05:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll

2016-02-17 22:12 - 2015-01-17 03:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll

2016-02-17 22:12 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll

2016-02-17 22:12 - 2014-02-04 03:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys

2016-02-17 22:12 - 2014-02-04 03:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys

2016-02-17 22:12 - 2014-02-04 03:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys

2016-02-17 22:12 - 2014-02-04 03:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll

2016-02-17 22:12 - 2014-01-28 03:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll

2016-02-17 22:12 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll

2016-02-17 22:12 - 2013-05-13 04:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe

2016-02-17 22:12 - 2013-05-13 04:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll

2016-02-17 22:12 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll

2016-02-17 22:12 - 2013-04-26 05:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll

2016-02-17 22:12 - 2013-03-19 04:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll

2016-02-17 22:12 - 2011-08-27 05:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll

2016-02-17 22:12 - 2011-05-03 05:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll

2016-02-17 22:11 - 2015-07-22 18:53 - 00937984 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll

2016-02-17 22:11 - 2015-07-22 18:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll

2016-02-17 22:11 - 2015-07-22 17:38 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll

2016-02-17 22:11 - 2015-07-09 18:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll

2016-02-17 22:11 - 2015-07-09 18:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll

2016-02-17 22:11 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll

2016-02-17 22:11 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll

2016-02-17 22:11 - 2012-10-03 17:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll

2016-02-17 22:11 - 2012-10-03 16:21 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys

2016-02-17 22:11 - 2012-06-06 06:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll

2016-02-17 22:11 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll

2016-02-17 22:11 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll

2016-02-17 22:11 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll

2016-02-17 22:11 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll

2016-02-17 22:11 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll

2016-02-17 22:11 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll

2016-02-17 22:11 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe

2016-02-17 22:11 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe

2016-02-17 22:11 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe

2016-02-17 22:11 - 2011-02-12 06:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe

2016-02-17 22:10 - 2016-01-22 07:13 - 03993536 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe

2016-02-17 22:10 - 2016-01-22 07:13 - 03938752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2016-02-17 22:10 - 2016-01-22 07:13 - 00138176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2016-02-17 22:10 - 2016-01-22 07:13 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2016-02-17 22:10 - 2016-01-22 07:09 - 01310232 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2016-02-17 22:10 - 2016-01-22 07:06 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll

2016-02-17 22:10 - 2016-01-22 07:06 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2016-02-17 22:10 - 2016-01-22 07:06 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll

2016-02-17 22:10 - 2016-01-22 07:06 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2016-02-17 22:10 - 2016-01-22 07:06 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2016-02-17 22:10 - 2016-01-22 07:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll

2016-02-17 22:10 - 2016-01-22 07:05 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll

2016-02-17 22:10 - 2016-01-22 07:05 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2016-02-17 22:10 - 2016-01-22 07:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2016-02-17 22:10 - 2016-01-22 07:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll

2016-02-17 22:10 - 2016-01-22 07:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 01060864 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00293888 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll

2016-02-17 22:10 - 2016-01-22 07:02 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 06:07 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe

2016-02-17 22:10 - 2016-01-22 06:01 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe

2016-02-17 22:10 - 2016-01-22 06:00 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe

2016-02-17 22:10 - 2016-01-22 05:53 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys

2016-02-17 22:10 - 2016-01-22 05:53 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys

2016-02-17 22:10 - 2016-01-22 05:53 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys

2016-02-17 22:10 - 2016-01-22 05:51 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe

2016-02-17 22:10 - 2016-01-22 05:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll

2016-02-17 22:10 - 2016-01-22 05:51 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2016-02-17 22:10 - 2016-01-22 05:51 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2016-02-17 22:10 - 2016-01-22 05:51 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 05:51 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 05:51 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2016-02-17 22:10 - 2016-01-22 05:51 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2016-02-17 22:10 - 2015-09-23 14:09 - 00371920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

2016-02-17 22:10 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll

2016-02-17 22:10 - 2015-05-25 19:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll

2016-02-17 22:10 - 2015-05-25 19:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe

2016-02-17 22:10 - 2015-05-25 19:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe

2016-02-17 22:10 - 2015-05-25 19:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe

2016-02-17 22:10 - 2015-05-25 19:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe

2016-02-17 22:10 - 2015-05-25 19:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe

2016-02-17 22:10 - 2014-06-18 02:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe

2016-02-17 22:10 - 2012-07-04 22:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll

2016-02-17 22:10 - 2012-07-04 22:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll

2016-02-17 22:10 - 2012-07-04 22:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll

2016-02-17 22:09 - 2015-11-03 19:56 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll

2016-02-17 22:09 - 2015-04-27 20:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll

2016-02-17 22:09 - 2015-04-27 20:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2016-02-17 22:09 - 2015-04-27 20:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll

2016-02-17 22:09 - 2015-04-27 20:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll

2016-02-17 22:09 - 2015-04-18 03:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll

2016-02-17 22:09 - 2015-04-13 04:19 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe

2016-02-17 22:09 - 2010-12-23 06:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll

2016-02-17 22:09 - 2010-12-23 06:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax

2016-02-17 22:08 - 2015-12-08 22:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll

2016-02-17 22:08 - 2015-12-08 22:53 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2016-02-17 22:08 - 2015-10-01 18:50 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe

2016-02-17 22:08 - 2015-10-01 18:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll

2016-02-17 22:08 - 2015-10-01 18:50 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll

2016-02-17 22:08 - 2015-10-01 18:50 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll

2016-02-17 22:08 - 2015-10-01 18:50 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe

2016-02-17 22:08 - 2015-10-01 17:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys

2016-02-17 22:08 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll

2016-02-17 22:08 - 2014-04-05 03:25 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2016-02-17 22:08 - 2014-04-05 03:24 - 00187840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS

2016-02-17 22:08 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys

2016-02-17 22:07 - 2015-11-05 20:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll

2016-02-17 22:07 - 2015-11-05 10:48 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys

2016-02-17 22:07 - 2014-12-19 03:43 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll

2016-02-17 22:07 - 2014-12-11 18:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe

2016-02-17 22:07 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll

2016-02-17 22:07 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll

2016-02-17 22:07 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll

2016-02-17 22:07 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll

2016-02-17 22:07 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll

2016-02-17 22:07 - 2012-12-07 13:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll

2016-02-17 22:07 - 2012-12-07 13:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll

2016-02-17 22:07 - 2012-12-07 11:46 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs

2016-02-17 22:07 - 2012-12-07 11:46 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs

2016-02-17 22:07 - 2011-12-16 08:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll

2016-02-17 22:07 - 2011-11-17 06:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll

2016-02-17 22:07 - 2011-06-15 09:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll

2016-02-17 22:07 - 2011-06-15 09:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll

2016-02-17 22:07 - 2011-06-15 09:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll

2016-02-17 22:07 - 2011-06-15 09:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll

2016-02-17 22:07 - 2011-06-15 09:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll

2016-02-17 22:06 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll

2016-02-17 22:06 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll

2016-02-17 22:06 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe

2016-02-17 22:06 - 2015-06-25 10:48 - 00105408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe

2016-02-17 22:06 - 2015-06-25 10:44 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll

2016-02-17 22:06 - 2015-02-18 08:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe

2016-02-17 22:06 - 2015-02-03 04:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll

2016-02-17 22:06 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe

2016-02-17 22:06 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll

2016-02-17 22:06 - 2014-07-17 02:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe

2016-02-17 22:06 - 2014-07-17 02:39 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe

2016-02-17 22:06 - 2014-07-17 02:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll

2016-02-17 22:06 - 2014-07-17 02:03 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys

2016-02-17 22:06 - 2014-07-17 02:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys

2016-02-17 22:06 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll

2016-02-17 22:06 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL

2016-02-17 22:06 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL

2016-02-17 22:06 - 2013-08-05 02:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys

2016-02-17 22:06 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll

2016-02-17 22:06 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll

2016-02-17 22:06 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll

2016-02-17 22:06 - 2012-09-25 23:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll

2016-02-17 22:06 - 2012-05-14 05:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll

2016-02-17 22:06 - 2012-04-26 05:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll

2016-02-17 22:06 - 2012-04-26 05:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe

2016-02-17 22:06 - 2012-03-17 08:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys

2016-02-17 22:06 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll

2016-02-17 22:05 - 2015-07-15 03:55 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll

2016-02-17 22:05 - 2015-04-29 19:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll

2016-02-17 22:05 - 2015-04-29 19:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll

2016-02-17 22:05 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx

2016-02-17 22:05 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll

2016-02-17 22:05 - 2015-04-29 19:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL

2016-02-17 22:05 - 2015-02-25 04:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys

2016-02-17 22:05 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll

2016-02-17 22:05 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys

2016-02-17 22:04 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll

2016-02-17 22:04 - 2015-12-08 22:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL

2016-02-17 22:04 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax

2016-02-17 22:04 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL

2016-02-17 22:04 - 2015-12-08 22:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll

2016-02-17 22:04 - 2015-12-08 22:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe

2016-02-17 22:04 - 2015-12-08 22:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe

2016-02-17 22:04 - 2015-12-08 22:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll

2016-02-17 22:04 - 2015-12-08 22:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll

2016-02-17 22:04 - 2015-12-08 22:43 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys

2016-02-17 22:04 - 2015-12-08 22:11 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys

2016-02-17 22:04 - 2015-12-08 22:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys

2016-02-17 22:04 - 2015-06-02 00:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll

2016-02-17 22:04 - 2014-12-06 04:50 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll

2016-02-17 22:04 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys

2016-02-17 22:04 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys

2016-02-17 22:04 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys

2016-02-17 22:04 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys

2016-02-17 22:04 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys

2016-02-17 22:04 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys

2016-02-17 22:04 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys

2016-02-17 22:04 - 2012-11-28 23:57 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys

2016-02-17 22:04 - 2012-11-28 23:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll

2016-02-17 22:04 - 2012-11-28 23:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf

2016-02-17 22:04 - 2012-10-03 17:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll

2016-02-17 22:04 - 2012-10-03 17:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll

2016-02-17 22:04 - 2011-03-11 06:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll

2016-02-17 22:04 - 2011-03-11 06:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll

2016-02-17 22:04 - 2011-02-23 05:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys

2016-02-17 22:03 - 2015-02-03 04:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll

2016-02-17 22:03 - 2015-02-03 04:12 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll

2016-02-17 22:03 - 2015-02-03 04:11 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe

2016-02-17 22:03 - 2015-02-03 04:11 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe

2016-02-17 22:03 - 2015-02-03 04:11 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe

2016-02-17 22:03 - 2015-02-03 04:10 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll

2016-02-17 22:03 - 2015-02-03 04:00 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys

2016-02-17 22:03 - 2014-10-31 23:22 - 00521384 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe

2016-02-17 22:03 - 2014-06-28 01:21 - 00455752 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe

2016-02-17 22:03 - 2014-06-28 01:21 - 00409272 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll

2016-02-17 22:03 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll

2016-02-17 22:03 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll

2016-02-17 22:03 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll

2016-02-17 22:03 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll

2016-02-17 22:03 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll

2016-02-17 22:03 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe

2016-02-17 22:03 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe

2016-02-17 22:03 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe

2016-02-17 22:03 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe

2016-02-17 22:02 - 2016-01-11 19:47 - 02956288 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2016-02-17 22:02 - 2016-01-11 19:47 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll

2016-02-17 22:02 - 2016-01-11 19:35 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll

2016-02-17 22:02 - 2016-01-11 19:17 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2016-02-17 22:02 - 2016-01-11 19:14 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll

2016-02-17 22:02 - 2016-01-11 19:14 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2016-02-17 22:02 - 2016-01-11 19:14 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll

2016-02-17 22:02 - 2016-01-11 19:14 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2016-02-17 22:02 - 2016-01-11 19:14 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

2016-02-17 22:02 - 2016-01-11 19:14 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll

2016-02-17 22:02 - 2016-01-11 19:14 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll

2016-02-17 22:02 - 2015-04-24 18:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll

2016-02-17 22:02 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll

2016-02-17 22:02 - 2014-10-14 02:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll

2016-02-17 22:01 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll

2016-02-17 22:01 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll

2016-02-17 22:01 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll

2016-02-17 22:01 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll

2016-02-17 22:01 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe

2016-02-17 21:38 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll

2016-02-17 21:38 - 2012-02-17 05:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys

2016-02-17 10:23 - 2016-02-17 10:58 - 00015872 _____ C:\Users\stefan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2016-02-16 21:24 - 2016-02-16 21:24 - 00000000 ____D C:\ProgramData\HP Product Assistant

2016-02-16 20:18 - 2016-02-16 20:34 - 00178847 ____N C:\Windows\hpoins38.dat.temp

2016-02-16 20:18 - 2010-01-30 13:26 - 00000548 ____N C:\Windows\hpomdl38.dat.temp

2016-02-16 20:12 - 2016-02-16 20:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf

2016-02-16 17:43 - 2016-02-16 17:43 - 00002392 _____ C:\Users\stefan\Desktop\Sicherer Zahlungsverkehr.lnk

2016-02-16 17:42 - 2016-02-16 17:42 - 00002110 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk

2016-02-16 17:42 - 2016-02-16 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security

2016-02-16 17:41 - 2016-02-16 17:54 - 00783744 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys

2016-02-16 17:41 - 2016-02-16 17:54 - 00147328 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys

2016-02-16 17:41 - 2016-02-16 17:41 - 00000000 ____D C:\Windows\ELAMBKUP

2016-02-16 17:41 - 2016-02-16 17:41 - 00000000 ____D C:\Program Files\Kaspersky Lab

2016-02-16 16:35 - 2016-02-16 16:35 - 00000000 ____D C:\Users\stefan\AppData\Local\ElevatedDiagnostics

2016-02-16 14:37 - 2016-02-18 21:14 - 00122560 _____ C:\Users\stefan\AppData\Local\GDIPFONTCACHEV1.DAT

2016-02-16 14:28 - 2016-02-16 14:28 - 00001409 _____ C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2016-02-16 14:28 - 2016-02-16 14:28 - 00000020 ___SH C:\Users\stefan\ntuser.ini

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Vorlagen

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Startmenü

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\ProgramData\Vorlagen

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\ProgramData\Startmenü

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\ProgramData\Favoriten

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\ProgramData\Dokumente

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten

2016-02-16 14:27 - 2016-02-16 14:27 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien

2016-02-16 14:04 - 2016-02-16 14:04 - 00021532 _____ C:\Windows\system32\emptyregdb.dat

2016-02-16 13:58 - 2016-02-16 13:58 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite

2016-02-16 13:58 - 2016-02-16 13:58 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia

2016-02-16 13:58 - 2016-02-16 13:58 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite

2016-02-16 13:58 - 2016-02-16 13:58 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia

2016-02-16 13:33 - 2016-02-21 17:40 - 00000000 ____D C:\Users\stefan\Desktop\Meine Bilder

2016-02-16 13:31 - 2016-02-23 15:21 - 00011552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2016-02-16 13:31 - 2016-02-23 15:21 - 00011552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2016-02-16 13:31 - 2016-02-16 14:28 - 00000000 ____D C:\Users\stefan

2016-02-16 13:31 - 2016-02-16 13:31 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk

2016-02-16 13:31 - 2016-02-16 13:31 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Vorlagen

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Startmenü

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Netzwerkumgebung

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Lokale Einstellungen

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Eigene Dateien

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Druckumgebung

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Documents\Eigene Videos

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Documents\Eigene Musik

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Documents\Eigene Bilder

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\AppData\Local\Verlauf

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\AppData\Local\Anwendungsdaten

2016-02-16 13:31 - 2016-02-16 13:31 - 00000000 _SHDL C:\Users\stefan\Anwendungsdaten

2016-02-16 13:31 - 2011-04-12 02:38 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Media Center Programs

2016-02-16 13:30 - 2016-02-16 13:30 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01000.Wdf

2016-02-16 13:30 - 2016-02-16 13:30 - 00000000 ____D C:\Windows\system32\RTCOM

2016-02-16 13:30 - 2016-02-16 13:30 - 00000000 ____D C:\Program Files\Synaptics

2016-02-16 13:30 - 2008-07-27 03:24 - 01079840 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpluir.dll

2016-02-16 13:30 - 2008-07-27 03:24 - 00768544 _____ (NVIDIA Corporation) C:\Windows\system32\nvcplui.exe

2016-02-16 13:30 - 2008-07-27 03:24 - 00446464 _____ (NVIDIA Corporation) C:\Windows\system32\nvuninst.exe

2016-02-16 13:30 - 2008-07-27 03:24 - 00420384 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.cpl

2016-02-16 13:30 - 2008-07-27 03:24 - 00313888 _____ (NVIDIA Corporation) C:\Windows\system32\nvexpbar.dll

2016-02-16 13:27 - 2016-02-16 14:27 - 00000000 ____D C:\Windows\Panther

2016-02-16 13:24 - 2016-02-16 13:24 - 00262144 _____ C:\Windows\system32\config\userdiff

2016-02-16 13:17 - 2016-02-16 14:05 - 00000000 ___HD C:\$WINDOWS.~Q

2016-02-16 13:07 - 2016-02-16 13:14 - 00000000 ___HD C:\$INPLACE.~TR

2016-02-16 11:49 - 2016-02-16 11:49 - 00002544 _____ C:\Windows\diagwrn.xml

2016-02-16 11:49 - 2016-02-16 11:49 - 00001890 _____ C:\Windows\diagerr.xml

2016-02-12 11:23 - 2016-02-16 13:51 - 00000000 ____D C:\Users\stefan\AppData\Local\Microsoft Corporation

2016-02-12 11:20 - 2016-02-16 13:36 - 00000000 ____D C:\Program Files\Microsoft Windows 7 Upgrade Advisor

2016-02-12 11:20 - 2016-02-12 11:20 - 00001996 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 7 Upgrade Advisor.lnk

2016-02-12 11:20 - 2016-02-12 11:20 - 00001984 _____ C:\Users\Public\Desktop\Windows 7 Upgrade Advisor.lnk

2016-01-30 20:34 - 2016-02-16 13:55 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Avast Browser Cleanup

2016-01-30 20:34 - 2016-02-16 13:55 - 00000000 ____D C:\Users\stefan\AppData\Roaming\AVAST Software

2016-01-30 20:34 - 2016-01-30 20:34 - 00001057 _____ C:\Users\stefan\Desktop\Avast Browser Cleanup.lnk

2016-01-30 17:14 - 2016-02-16 13:35 - 00000000 ____D C:\Program Files\ESET
 

==================== Ein Monat: Geänderte Dateien und Ordner ========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2016-02-23 15:26 - 2009-07-01 20:25 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2016-02-23 15:19 - 2008-12-24 16:14 - 00000416 ____H C:\Windows\Tasks\SupBackGroundTask.job

2016-02-23 15:15 - 2009-12-20 11:33 - 00000000 ____D C:\ProgramData\Kaspersky Lab

2016-02-23 15:13 - 2008-12-02 18:34 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite

2016-02-23 15:12 - 2015-04-03 11:33 - 00001002 _____ C:\Windows\Tasks\tuzq1rKFUmy3X.job

2016-02-23 15:12 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2016-02-23 15:12 - 2009-07-01 20:25 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2016-02-23 15:10 - 2015-04-03 16:16 - 00000000 ____D C:\AdwCleaner

2016-02-23 15:10 - 2015-03-31 19:28 - 00000000 ____D C:\Program Files\Mozilla Firefox

2016-02-23 15:02 - 2012-04-17 08:13 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2016-02-23 14:52 - 2016-01-03 14:52 - 00000000 ____D C:\Users\stefan\Documents\Stundenzettel EMC

2016-02-23 14:34 - 2010-03-01 20:52 - 00002710 _____ C:\Users\Public\Documents\DME-SETTINGS.xml

2016-02-23 14:34 - 2010-03-01 20:52 - 00000302 _____ C:\Windows\Tasks\DMEPeriodicTask.job

2016-02-23 13:46 - 2015-04-12 15:34 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2016-02-23 13:45 - 2015-04-12 15:33 - 00094936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys

2016-02-23 13:21 - 2011-04-12 02:30 - 00698926 _____ C:\Windows\system32\perfh007.dat

2016-02-23 13:21 - 2011-04-12 02:30 - 00149034 _____ C:\Windows\system32\perfc007.dat

2016-02-23 13:21 - 2010-11-20 22:01 - 01618320 _____ C:\Windows\system32\PerfStringBackup.INI

2016-02-23 13:21 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf

2016-02-23 13:19 - 2008-12-20 16:11 - 00001052 _____ C:\Windows\Tasks\Google Software Updater.job

2016-02-21 19:16 - 2012-04-17 08:13 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe

2016-02-21 19:16 - 2011-05-23 20:25 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl

2016-02-21 19:16 - 2008-12-02 19:13 - 00000000 ____D C:\Users\stefan\AppData\Local\Adobe

2016-02-21 18:58 - 2009-03-08 19:07 - 00000000 ____D C:\Users\stefan\AppData\Local\Mozilla

2016-02-21 08:57 - 2009-07-14 05:33 - 00450576 _____ C:\Windows\system32\FNTCACHE.DAT

2016-02-20 23:53 - 2012-06-11 20:15 - 00002150 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2016-02-20 23:53 - 2012-06-11 20:15 - 00002121 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2016-02-19 09:28 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\AppCompat

2016-02-18 21:26 - 2013-07-13 17:08 - 00000000 ____D C:\Windows\system32\MRT

2016-02-18 20:59 - 2011-04-12 02:38 - 00000000 ____D C:\Program Files\Windows Journal

2016-02-18 20:59 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\tracing

2016-02-18 20:59 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\Dism

2016-02-18 20:59 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\AdvancedInstallers

2016-02-18 20:59 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\PolicyDefinitions

2016-02-18 20:59 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\System

2016-02-18 19:23 - 2009-07-14 05:52 - 00000000 ____D C:\Program Files\Windows Defender

2016-02-18 15:42 - 2008-07-08 15:11 - 00000000 ____D C:\Intel

2016-02-18 09:41 - 2016-01-17 20:03 - 00000000 ____D C:\Users\stefan\Documents\Autoversicherung AllSecure

2016-02-16 22:21 - 2010-03-01 18:48 - 00188477 _____ C:\Windows\hpoins38.dat

2016-02-16 21:25 - 2010-03-01 18:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP

2016-02-16 21:25 - 2010-03-01 18:50 - 00000000 ____D C:\Program Files\HP

2016-02-16 21:25 - 2010-03-01 18:47 - 00000000 ____D C:\ProgramData\HP

2016-02-16 21:24 - 2010-03-01 20:34 - 00001315 _____ C:\ProgramData\Microsoft\Windows\Start Menu\HP Solution Center.lnk

2016-02-16 21:24 - 2010-03-01 20:34 - 00001309 _____ C:\Users\Public\Desktop\HP Solution Center.lnk

2016-02-16 20:30 - 2006-11-02 11:23 - 00000163 _____ C:\Windows\win.ini

2016-02-16 20:23 - 2008-12-29 17:32 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files

2016-02-16 19:58 - 2009-07-14 03:37 - 00000000 __RHD C:\Users\Public\Libraries

2016-02-16 17:54 - 2015-06-08 19:43 - 00039304 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klpd.sys

2016-02-16 17:45 - 2015-07-04 02:18 - 00044728 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys

2016-02-16 16:28 - 2008-07-08 15:23 - 00000000 ____D C:\Windows\VMC302

2016-02-16 14:27 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Windows NT

2016-02-16 14:22 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache

2016-02-16 14:04 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Registration

2016-02-16 14:03 - 2009-07-14 03:37 - 00000000 __RSD C:\Windows\Media

2016-02-16 13:59 - 2009-07-14 05:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2016-02-16 13:57 - 2016-01-18 16:12 - 00000000 ____D C:\Users\stefan\Documents\Meine Unterschrift

2016-02-16 13:57 - 2015-04-12 16:29 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Skype

2016-02-16 13:57 - 2014-06-22 13:47 - 00000000 ____D C:\Users\stefan\AppData\Roaming\TuneUp Software

2016-02-16 13:57 - 2014-03-28 16:43 - 00000000 ____D C:\Users\stefan\Desktop\Alte Firefox-Daten

2016-02-16 13:57 - 2014-03-02 22:08 - 00000000 ____D C:\Users\stefan\Documents\samsung

2016-02-16 13:57 - 2013-05-20 09:58 - 00000000 ____D C:\Users\stefan\Documents\Eigene Scans

2016-02-16 13:57 - 2010-12-09 20:40 - 00000000 ____D C:\Users\stefan\AppData\Roaming\vlc

2016-02-16 13:57 - 2010-06-13 11:36 - 00000000 ____D C:\Users\stefan\Documents\poster-forge

2016-02-16 13:57 - 2010-01-13 11:36 - 00000000 ____D C:\Users\stefan\Documents\CyberLink

2016-02-16 13:57 - 2009-12-12 20:02 - 00000000 ____D C:\Users\stefan\AppData\Roaming\TubeBox

2016-02-16 13:56 - 2014-03-02 22:08 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Samsung

2016-02-16 13:56 - 2014-02-05 16:32 - 00000000 ____D C:\Users\stefan\AppData\Roaming\RealNetworks

2016-02-16 13:56 - 2010-11-23 21:11 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Real

2016-02-16 13:56 - 2010-04-09 19:19 - 00000000 ____D C:\Users\stefan\AppData\Roaming\OpenOffice.org

2016-02-16 13:56 - 2009-08-23 17:09 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Pirates of the Atlantic

2016-02-16 13:55 - 2015-04-03 16:33 - 00000000 ____D C:\Users\stefan\AppData\Roaming\DVDVideoSoft

2016-02-16 13:55 - 2012-06-11 20:04 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Freemium

2016-02-16 13:55 - 2012-02-04 14:25 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Avery

2016-02-16 13:55 - 2011-08-04 19:11 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Jens Lorek

2016-02-16 13:55 - 2011-07-01 18:49 - 00000000 ____D C:\Users\stefan\AppData\Roaming\HpUpdate

2016-02-16 13:55 - 2010-05-13 14:07 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Ashampoo

2016-02-16 13:55 - 2010-03-01 20:49 - 00000000 ____D C:\Users\stefan\AppData\Roaming\HP

2016-02-16 13:55 - 2010-02-14 19:37 - 00000000 ____D C:\Users\stefan\AppData\LocalLow\Sun

2016-02-16 13:55 - 2009-12-12 20:02 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TubeBox!

2016-02-16 13:55 - 2009-08-23 13:41 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner

2016-02-16 13:55 - 2009-04-10 12:00 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Move Networks

2016-02-16 13:55 - 2009-04-10 12:00 - 00000000 ____D C:\Users\stefan\AppData\LocalLow\Move Networks

2016-02-16 13:55 - 2009-03-08 19:07 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Mozilla

2016-02-16 13:55 - 2008-12-20 16:57 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Google

2016-02-16 13:55 - 2008-12-20 16:48 - 00000000 ____D C:\Users\stefan\AppData\Roaming\InstallShield

2016-02-16 13:55 - 2008-12-18 23:23 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Intel

2016-02-16 13:55 - 2008-12-08 20:50 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Chromeflower

2016-02-16 13:55 - 2008-12-05 18:33 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Macromedia

2016-02-16 13:55 - 2008-12-02 19:15 - 00000000 ____D C:\Users\stefan\AppData\Roaming\CyberLink

2016-02-16 13:55 - 2008-12-02 19:13 - 00000000 ____D C:\Users\stefan\AppData\Roaming\Adobe

2016-02-16 13:53 - 2015-04-12 16:29 - 00000000 ____D C:\Users\stefan\AppData\Local\Skype

2016-02-16 13:53 - 2014-06-22 13:47 - 00000000 ____D C:\Users\stefan\AppData\Local\TuneUp Software

2016-02-16 13:53 - 2014-03-02 22:08 - 00000000 ____D C:\Users\stefan\AppData\Local\Samsung

2016-02-16 13:53 - 2013-11-03 17:59 - 00000000 ____D C:\Users\stefan\AppData\Local\Screentime

2016-02-16 13:53 - 2013-07-11 17:11 - 00000000 ____D C:\Users\stefan\AppData\LocalLow\Adobe

2016-02-16 13:53 - 2012-10-27 17:01 - 00000000 ____D C:\Users\stefan\AppData\Local\TubeBox

2016-02-16 13:53 - 2010-11-23 21:21 - 00000000 ____D C:\Users\stefan\AppData\Local\Real

2016-02-16 13:53 - 2010-05-11 15:45 - 00000000 ____D C:\Users\stefan\AppData\Local\Paint.NET

2016-02-16 13:53 - 2009-12-20 12:30 - 00000000 ____D C:\Users\stefan\AppData\Local\Seven Zip

2016-02-16 13:53 - 2008-12-20 17:28 - 00000000 ____D C:\Users\stefan\AppData\LocalLow\Google

2016-02-16 13:53 - 2008-12-02 18:34 - 00000000 ____D C:\Users\stefan\AppData\Local\VirtualStore

2016-02-16 13:51 - 2015-11-15 12:22 - 00000000 ____D C:\Users\stefan\AppData\Local\Icecream

2016-02-16 13:51 - 2012-06-24 13:15 - 00000000 ____D C:\Users\stefan\AppData\Local\Macromedia

2016-02-16 13:51 - 2012-06-11 20:07 - 00000000 ____D C:\Users\stefan\AppData\Local\IsolatedStorage

2016-02-16 13:51 - 2010-03-01 20:44 - 00000000 ____D C:\Users\stefan\AppData\Local\HP

2016-02-16 13:51 - 2008-12-20 16:13 - 00000000 ____D C:\Users\stefan\AppData\Local\Google

2016-02-16 13:51 - 2008-12-02 22:50 - 00000000 ____D C:\Users\stefan\AppData\Local\Microsoft Games

2016-02-16 13:49 - 2015-04-03 16:33 - 00000000 ____D C:\Users\stefan\AppData\Local\5D515C96_stp

2016-02-16 13:49 - 2014-12-05 17:41 - 00000000 ____D C:\Users\stefan\AppData\Local\DVDVideoSoft_Ltd

2016-02-16 13:49 - 2012-09-25 10:32 - 00000000 ____D C:\Users\stefan\AppData\Local\Freetec

2016-02-16 13:49 - 2010-05-13 14:06 - 00000000 ____D C:\Users\stefan\AppData\Local\ashampoo

2016-02-16 13:49 - 2009-03-08 19:26 - 00000000 ____D C:\Users\stefan\AppData\Local\Apps\2.0

2016-02-16 13:49 - 2008-12-08 20:44 - 00000000 ____D C:\Users\stefan\AppData\Local\Downloaded Installations

2016-02-16 13:41 - 2013-07-14 13:12 - 00000000 ____D C:\Windows\system32\Adobe

2016-02-16 13:41 - 2011-04-12 02:29 - 00000000 ____D C:\Windows\system32\XPSViewer

2016-02-16 13:41 - 2009-07-14 20:00 - 00000000 ____D C:\Windows\system32\EventProviders

2016-02-16 13:41 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\sysprep

2016-02-16 13:41 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\oobe

2016-02-16 13:41 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF

2016-02-16 13:41 - 2008-07-08 15:49 - 00000000 ____D C:\Windows\WinClon

2016-02-16 13:41 - 2008-07-08 15:35 - 00000000 ____D C:\Windows\system32\NetsyncAgent

2016-02-16 13:41 - 2008-07-08 15:32 - 00000000 ____D C:\Windows\system32\Macromed

2016-02-16 13:41 - 2008-07-08 15:20 - 00000000 ____D C:\Windows\system32\es-MX

2016-02-16 13:41 - 2008-07-08 15:20 - 00000000 ____D C:\Windows\system32\es-AR

2016-02-16 13:41 - 2008-07-08 15:16 - 00000000 ____D C:\Windows\Options

2016-02-16 13:41 - 2008-07-08 15:13 - 00000000 ____D C:\Windows\system32\Lang

2016-02-16 13:41 - 2008-07-08 13:47 - 00000000 ____D C:\Windows\MSetup

2016-02-16 13:41 - 2008-02-08 10:30 - 00000000 ____D C:\Windows\Sec

2016-02-16 13:41 - 2006-11-02 13:42 - 00000000 ____D C:\Windows\WindowsMobile

2016-02-16 13:41 - 2006-11-02 13:42 - 00000000 ____D C:\Windows\system32\Branding

2016-02-16 13:41 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\RemInst

2016-02-16 13:41 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\nap

2016-02-16 13:40 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\LiveKernelReports

2016-02-16 13:39 - 2015-04-12 16:29 - 00000000 ____D C:\ProgramData\Skype

2016-02-16 13:39 - 2014-06-22 13:47 - 00000000 ____D C:\ProgramData\TuneUp Software

2016-02-16 13:39 - 2014-06-22 13:46 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}

2016-02-16 13:39 - 2014-03-02 22:01 - 00000000 ____D C:\ProgramData\Samsung

2016-02-16 13:39 - 2011-07-01 18:49 - 00000000 ____D C:\Windows\Hewlett-Packard

2016-02-16 13:39 - 2011-04-12 02:38 - 00000000 ___RD C:\Users\Public\Recorded TV

2016-02-16 13:39 - 2010-03-01 20:52 - 00000000 ____D C:\ProgramData\WEBREG

2016-02-16 13:39 - 2010-02-14 19:40 - 00000000 ____D C:\ProgramData\Sun

2016-02-16 13:39 - 2009-07-14 05:52 - 00000000 ____D C:\Windows\Downloaded Program Files

2016-02-16 13:39 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Help

2016-02-16 13:39 - 2008-12-03 20:00 - 00000000 __SHD C:\Users\Public\Documents\MCE Logs

2016-02-16 13:39 - 2008-12-02 19:15 - 00000000 ____D C:\Users\Public\CyberLink

2016-02-16 13:38 - 2015-04-12 15:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2016-02-16 13:38 - 2015-04-12 15:33 - 00000000 ____D C:\ProgramData\Malwarebytes

2016-02-16 13:38 - 2015-04-03 16:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft

2016-02-16 13:38 - 2014-12-14 15:46 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.3

2016-02-16 13:38 - 2014-02-05 16:31 - 00000000 ____D C:\ProgramData\RealNetworks

2016-02-16 13:38 - 2014-02-05 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks

2016-02-16 13:38 - 2012-09-25 10:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freetec

2016-02-16 13:38 - 2012-09-25 10:28 - 00000000 ____D C:\ProgramData\Package Cache

2016-02-16 13:38 - 2011-04-03 16:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2016-02-16 13:38 - 2010-12-09 20:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner

2016-02-16 13:38 - 2010-11-23 21:12 - 00000000 ____D C:\ProgramData\Real

2016-02-16 13:38 - 2010-06-19 15:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities

2016-02-16 13:38 - 2010-06-13 11:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Poster Forge

2016-02-16 13:38 - 2010-06-12 17:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2016-02-16 13:38 - 2010-04-09 19:17 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.1

2016-02-16 13:38 - 2010-03-07 14:49 - 00000000 ____D C:\ProgramData\HPSSUPPLY

2016-02-16 13:38 - 2010-03-01 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live

2016-02-16 13:38 - 2009-12-20 16:58 - 00000000 ____D C:\ProgramData\Intenium

2016-02-16 13:38 - 2009-07-14 05:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2016-02-16 13:38 - 2009-06-01 15:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Moorhuhn WE AYCS

2016-02-16 13:38 - 2009-04-13 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Moorhuhn 2

2016-02-16 13:38 - 2008-12-20 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Updater

2016-02-16 13:38 - 2008-12-08 20:07 - 00000000 ____D C:\ProgramData\Media Center Programs

2016-02-16 13:38 - 2008-12-05 20:56 - 00000000 ____D C:\ProgramData\LightScribe

2016-02-16 13:38 - 2008-07-08 15:56 - 00000000 ____D C:\ProgramData\NVIDIA

2016-02-16 13:38 - 2008-07-08 15:47 - 00000000 ____D C:\ProgramData\McAfee

2016-02-16 13:38 - 2008-07-08 15:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling

2016-02-16 13:38 - 2008-07-08 15:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite

2016-02-16 13:38 - 2008-07-08 15:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung

2016-02-16 13:37 - 2014-11-08 17:26 - 00000000 ____D C:\Program Files\WEB.DE MailCheck

2016-02-16 13:37 - 2012-02-04 14:24 - 00000000 ____D C:\ProgramData\Avery

2016-02-16 13:37 - 2010-12-09 20:36 - 00000000 ____D C:\Program Files\VideoLAN

2016-02-16 13:37 - 2010-05-13 14:06 - 00000000 ____D C:\ProgramData\ashampoo

2016-02-16 13:37 - 2010-03-01 20:32 - 00000000 ____D C:\Program Files\Windows Live SkyDrive

2016-02-16 13:37 - 2010-03-01 20:32 - 00000000 ____D C:\Program Files\Windows Live

2016-02-16 13:37 - 2008-12-20 16:12 - 00000000 ____D C:\ProgramData\Google

2016-02-16 13:37 - 2008-12-20 16:11 - 00000000 ____D C:\ProgramData\Google Updater

2016-02-16 13:37 - 2008-12-02 19:15 - 00000000 ____D C:\ProgramData\CyberLink

2016-02-16 13:37 - 2008-07-08 15:25 - 00000000 ____D C:\ProgramData\Adobe

2016-02-16 13:37 - 2008-07-08 15:23 - 00000000 ____D C:\Program Files\Samsung

2016-02-16 13:37 - 2008-07-08 15:22 - 00000000 ____D C:\Program Files\Vimicro Corporation

2016-02-16 13:37 - 2008-07-08 15:20 - 00000000 ____D C:\Program Files\WIDCOMM

2016-02-16 13:37 - 2006-11-02 13:37 - 00000000 ____D C:\Program Files\Windows Photo Gallery

2016-02-16 13:37 - 2006-11-02 13:37 - 00000000 ____D C:\Program Files\Windows Collaboration

2016-02-16 13:37 - 2006-11-02 13:37 - 00000000 ____D C:\Program Files\Windows Calendar

2016-02-16 13:36 - 2015-04-12 15:33 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware

2016-02-16 13:36 - 2014-12-18 20:13 - 00000000 ____D C:\Program Files\MarkAny

2016-02-16 13:36 - 2014-02-05 16:31 - 00000000 ____D C:\Program Files\RealNetworks

2016-02-16 13:36 - 2014-01-28 20:25 - 00000000 ____D C:\Program Files\McAfee Security Scan

2016-02-16 13:36 - 2013-05-01 11:10 - 00000000 ____D C:\Program Files\NVIDIA Corporation

2016-02-16 13:36 - 2010-11-23 21:13 - 00000000 ____D C:\Program Files\Real

2016-02-16 13:36 - 2010-06-13 11:37 - 00000000 ____D C:\Program Files\Poster Forge

2016-02-16 13:36 - 2010-06-12 14:53 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2016-02-16 13:36 - 2010-05-11 15:45 - 00000000 ____D C:\Program Files\Paint.NET

2016-02-16 13:36 - 2010-04-10 17:12 - 00000000 ____D C:\Program Files\phenomedia

2016-02-16 13:36 - 2010-04-09 19:16 - 00000000 ____D C:\Program Files\OpenOffice.org 3

2016-02-16 13:36 - 2010-03-01 20:43 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition

2016-02-16 13:36 - 2009-07-14 05:52 - 00000000 ____D C:\Program Files\Microsoft Games

2016-02-16 13:36 - 2009-04-13 17:45 - 00000000 ____D C:\Program Files\Phenomedia AG

2016-02-16 13:36 - 2008-07-08 15:44 - 00000000 ____D C:\Program Files\Microsoft SQL Server

2016-02-16 13:36 - 2008-07-08 15:40 - 00000000 ____D C:\Program Files\Microsoft Office

2016-02-16 13:36 - 2008-07-08 15:16 - 00000000 ____D C:\Program Files\Realtek

2016-02-16 13:36 - 2008-07-08 15:13 - 00000000 ___HD C:\Program Files\InstallShield Installation Information

2016-02-16 13:36 - 2008-07-08 15:11 - 00000000 ____D C:\Program Files\Intel

2016-02-16 13:35 - 2015-04-12 14:08 - 00000000 ____D C:\Program Files\Enigma Software Group

2016-02-16 13:35 - 2015-04-03 16:33 - 00000000 ____D C:\Program Files\DVDVideoSoft

2016-02-16 13:35 - 2014-11-08 17:22 - 00000000 ____D C:\Program Files\Free Codec Pack

2016-02-16 13:35 - 2012-09-25 10:29 - 00000000 ____D C:\Program Files\Freetec

2016-02-16 13:35 - 2012-06-11 20:06 - 00000000 ____D C:\Program Files\Freemium

2016-02-16 13:35 - 2010-09-14 13:36 - 00000000 ____D C:\Program Files\Freemake

2016-02-16 13:35 - 2008-12-20 16:11 - 00000000 ____D C:\Program Files\Google

2016-02-16 13:34 - 2015-04-03 16:33 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft

2016-02-16 13:34 - 2014-02-05 16:31 - 00000000 ____D C:\Program Files\Common Files\xing shared

2016-02-16 13:34 - 2012-11-06 22:50 - 00000000 ____D C:\Program Files\DevalVR

2016-02-16 13:34 - 2010-03-01 20:18 - 00000000 ____D C:\Program Files\Common Files\Windows Live

2016-02-16 13:34 - 2010-03-01 18:56 - 00000000 ____D C:\Program Files\Common Files\HP

2016-02-16 13:34 - 2010-03-01 18:53 - 00000000 ____D C:\Program Files\Common Files\Hewlett-Packard

2016-02-16 13:34 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2016-02-16 13:34 - 2008-07-08 15:34 - 00000000 ____D C:\Program Files\Common Files\MSSoap

2016-02-16 13:34 - 2008-07-08 15:29 - 00000000 ____D C:\Program Files\Common Files\LightScribe

2016-02-16 13:34 - 2008-07-08 15:25 - 00000000 ____D C:\Program Files\CyberLink

2016-02-16 13:34 - 2008-07-08 15:14 - 00000000 ____D C:\Program Files\Common Files\InstallShield

2016-02-16 13:33 - 2013-07-11 17:03 - 00000000 ____D C:\Program Files\Common Files\Adobe

2016-02-16 13:33 - 2010-06-19 15:51 - 00000000 ____D C:\Program Files\Canon

2016-02-16 13:33 - 2010-06-19 15:49 - 00000000 ____D C:\Program Files\Common Files\Canon

2016-02-16 13:33 - 2009-08-23 13:41 - 00000000 ____D C:\Program Files\CCleaner

2016-02-16 13:33 - 2008-12-31 12:10 - 00000000 ____D C:\Program Files\Adobe

2016-02-16 13:33 - 2008-07-08 15:18 - 00000000 ____D C:\Program Files\Atheros WLAN Client

2016-02-16 13:27 - 2009-07-14 05:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template

2016-02-16 13:27 - 2008-02-08 10:31 - 00008192 __RSH C:\BOOTSECT.BAK

2016-02-16 12:41 - 2006-11-02 13:47 - 00004784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0

2016-02-16 12:41 - 2006-11-02 13:47 - 00004784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0

2016-02-16 11:37 - 2008-07-09 07:09 - 00000012 _____ C:\Windows\bthservsdp.dat

2016-01-30 22:59 - 2015-04-03 16:33 - 00000000 ____D C:\Users\stefan\AppData\Local\69DD7379_stp

2016-01-30 16:01 - 2013-07-11 17:04 - 00002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
 

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
 

2009-09-20 11:56 - 2009-09-20 11:56 - 0021064 _____ () C:\Users\stefan\AppData\Roaming\UserTile.png

2016-02-17 10:23 - 2016-02-17 10:58 - 0015872 _____ () C:\Users\stefan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2016-02-16 20:18 - 2016-02-16 22:21 - 0005189 _____ () C:\ProgramData\hpzinstall.log
 

Einige Dateien in TEMP:

====================

C:\Users\stefan\AppData\Local\Temp\sqlite3.dll
 
 

==================== Bamital & volsnap =================
 

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
 

C:\Windows\explorer.exe => Datei ist digital signiert

C:\Windows\system32\winlogon.exe => Datei ist digital signiert

C:\Windows\system32\wininit.exe => Datei ist digital signiert

C:\Windows\system32\svchost.exe => Datei ist digital signiert

C:\Windows\system32\services.exe => Datei ist digital signiert

C:\Windows\system32\User32.dll => Datei ist digital signiert

C:\Windows\system32\userinit.exe => Datei ist digital signiert

C:\Windows\system32\rpcss.dll => Datei ist digital signiert

C:\Windows\system32\dnsapi.dll => Datei ist digital signiert

C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
 
 

LastRegBack: 2016-02-16 13:28
 

==================== Ende vom FRST.txt ============================

Hast du alle Optionen vom adwCleaner aktiviert?

http://img.trojaner-board.de/anleitu...einstellen.png