Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit (https://www.trojaner-board.de/176379-unerwuenschte-werbe-ueberfaelle-firefox-windows-10-64-bit.html)

gzielos 25.02.2016 20:02

Unerwünschte Werbe"überfälle" unter Firefox und Windows 10 64 Bit
 
Hallo,
zuerst ein Lob über die Art, wie Ihr hier:
http://www.trojaner-board.de/175888-...me-64-bit.html
ein ähnliches Problem gelöst habt - ich bin echt begeistert!

Nach einem totalen Ausfall meines Windows 7 Laptops musste ich mir einen neuen (Windows !0) kaufen und deshalb alles neu einrichten. Eine Sache war mir besonders wichtig, die ATMEGA/ATTiny-Programmierung mit meinem AVRisp mk2 Programmer, die unter Windows 7 (32 Bit) gut funktionierte. Das Ding ging nicht unter Windows 10 und ich habe verzweifelt nach einem Treiber gesucht. Einen Hinweis gab es und der war der Ausgangspunkt für das jetzige Problem. Ich habe zwar sofort gemerkt, dass da ganz was anderes installiert wurde und sofort alles gestoppt. Trotzdem habe ich jetzt ständig unter Firefox unerwünschte Werbung (Gewinn-Mitteilungen, Videos, Partnersuche, Spielaufforderungen). Das alles fast bei jedem Eintrag in die Google-Suche. Für mich ist unklar, wie das trotz Kaspersky Internet Security passieren konnte. Auch die Suche nach dem (wahrscheinlichen) Trojaner mit Kaspersky ergab "keine Gefährdungen" oder andere Hinweise.
Unter "Microsoft Edge" tritt das Problem scheinbar nicht auf. Ich möchte aber gern Firefox weiter benutzen aus Gewohnheit und weil ich das Programm auch für andere Zwecke als zum Suchen nutze (Simple Mail usw.).
Meine Frage - könnt Ihr mir helfen und was soll ich machen?

Vielen Dank für Eure Hilfe im Voraus und viele Grüße

burningice 26.02.2016 09:57

:hallo:
Mein Name ist Rafael und ich werde dir bei der Bereinigung helfen.

Damit ich dir optimal helfen kann, halte dich bitte an folgende Regeln:
  • Bitte lies meine Posts komplett durch bevor du sie abarbeitest
  • Wenn ein Problem auftauchen sollte oder dir etwas unklar ist, unterbreche deine Arbeit und beschreibe es so genau wie möglich.
  • Bitte kein Crossposting
  • Installiere oder Deinstalliere keine Software ohne Aufforderung
  • Bitte verwende nur die Tools, welche hier im Thread erwähnt werden und führe sie nur gemäß Anweisung aus
  • Bitte antworte innerhalb von 24h um eine sinnvolle Bereinigung zu ermöglichen
  • Poste die Logs immer in CODE-Tags (#-Button), zur Not die Logs einfach aufteilen
  • Wichtig: Nur weil dein Problem mit einem Schritt plötzlich behoben ist, bedeutet das nicht, dass dein PC auch sauber ist. Mache solange weiter, bis ich dir sage, dass dein PC "clean" ist
Los geht's :abklatsch:

Schritt 1
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


gzielos 26.02.2016 10:24

Hallo Rafael,
vielen Dank für die schnelle Reaktion! Hier der erste Teil - ich muss die Dateien, glaube ich, in vier Teilen senden. Hoffentlich mache ich alles richtig???

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:21-02-2016 01
durchgeführt von Gunther (Administrator) auf DESKTOP-L5KOO87 (26-02-2016 10:01:47)
Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
Geladene Profile: Gunther (Verfügbare Profile: Gunther)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGiftBoxDesktop.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Zhuhai Kingsoft Office Software Co.,Ltd) C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe
() C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
() C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\SecureLine.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSPanel.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2016.27.2.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6568.46121.0_x64__8wekyb3d8bbwe\HxCalendarAppImm.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6568.46121.0_x64__8wekyb3d8bbwe\HxTsr.exe
() C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\Windows\System32\wuapihost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe [63272 2015-05-31] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595504 2016-01-29] (Oracle Corporation)
HKU\S-1-5-21-2421830386-3516612503-909366600-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-18] (Electronic Arts)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avast! SecureLine.lnk [2015-11-11]
ShortcutTarget: avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

AutoConfigURL: [S-1-5-21-2421830386-3516612503-909366600-1001] => hxxp://stop-block.org/wpad.dat?ccff5aa26c527adfe15c5d9946411f206451327
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{db2c9de7-f35d-44c5-8037-6eea81e0d451}: [DhcpNameServer] 192.168.2.1
ManualProxies: 0hxxp://stop-block.org/wpad.dat?ccff5aa26c527adfe15c5d9946411f206451327

Internet Explorer:
==================
HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus15.msn.com/?pc=ASTE
HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKU\S-1-5-21-2421830386-3516612503-909366600-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2421830386-3516612503-909366600-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-21] (Oracle Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-21] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)

FireFox:
========
FF ProfilePath: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\v07uout6.default
FF Homepage: hxxps://www.google.de/?gws_rd=ssl
about:preferences
FF Plugin: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-21] (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-18] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-15] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Extension: Simple Mail - C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\v07uout6.default\extensions\simplemail@telega.phpnet.us [2016-02-18]
FF Extension: Adblock Plus - C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\v07uout6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-24]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2016-02-17]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe [71168 2015-05-31] (ASUS Cloud Corporation) [Datei ist nicht signiert]
R2 ASUSGiftBoxDekstop; C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe [315704 2015-07-20] (ASUS)
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2016-02-17] (Kaspersky Lab ZAO)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1385640 2015-08-17] (Intel Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-04-14] (WildTangent)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [353896 2015-10-06] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
R2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe [133480 2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
R3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-18] (Electronic Arts)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [445240 2015-04-29] ()
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.5.471.0\McCSPServiceHost.exe" [X]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4317808 2015-07-14] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [97680 2015-08-17] (ASUS Corporation)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [53752 2015-08-17] (Intel Corporation)
R3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [50696 2015-08-17] (Intel Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-02-19] ()
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [261624 2015-08-17] (Intel Corporation)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [68280 2015-06-06] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [181640 2016-02-17] (AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [227512 2016-02-17] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [934272 2016-02-17] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39608 2015-06-11] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2016-02-17] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [87944 2016-02-17] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [52832 2016-02-20] (hxxp://libusb-win32.sourceforge.net)
S3 libusbK; C:\Windows\System32\drivers\libusbK.sys [47928 2016-02-20] (hxxp://libusb-win32.sourceforge.net)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-28] (Intel Corporation)
S3 PCTV_NTAMD64; C:\Windows\system32\DRIVERS\pctv4XXe_amd64.sys [571552 2016-02-21] (Pinnacle Systems GmbH)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek                                            )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [420440 2015-05-27] (Realsil Semiconductor Corporation)
S2 TVicPort; kein ImagePath
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [254976 2010-08-31] (Jungo)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-02-26 09:58 - 2016-02-26 09:58 - 00016148 _____ C:\Windows\system32\DESKTOP-L5KOO87_Gunther_HistoryPrediction.bin
2016-02-25 09:06 - 2016-02-25 10:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\DesignCAD 22
2016-02-25 09:06 - 2016-02-25 10:36 - 00000000 ____D C:\ProgramData\TEMP
2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22
2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\ProgramData\IMSIDesign
2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\Program Files (x86)\IMSIDesign
2016-02-25 09:01 - 2016-02-25 09:01 - 52116093 _____ (Franzis Verlag GmbH ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\30812-0-DesignCAD-V22-Basistoolkit.exe
2016-02-24 09:36 - 2016-02-24 13:26 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\ATMEGA_Programmierung
2016-02-23 16:46 - 2016-02-23 17:52 - 00000000 ____D C:\Program Files (x86)\Atmel
2016-02-23 16:36 - 2016-02-23 16:37 - 05198040 _____ (akeo.ie) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\zadig_2.2.exe
2016-02-23 13:25 - 2016-02-23 13:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Mauer
2016-02-23 09:26 - 2016-02-26 10:01 - 00000000 ____D C:\FRST
2016-02-23 09:19 - 2016-02-26 10:01 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
2016-02-23 09:18 - 2016-02-23 09:18 - 02371072 _____ (Farbar) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\FRST64.exe
2016-02-22 13:53 - 2016-02-22 13:53 - 00048680 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\GDIPFONTCACHEV1.DAT
2016-02-22 10:20 - 2016-02-22 10:20 - 00000000 ____D C:\ProgramData\Brother
2016-02-22 10:19 - 2016-02-22 10:19 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\NetworkRepairTool
2016-02-22 10:18 - 2016-02-22 10:19 - 00983784 _____ (A.I.SOFT,INC.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Nettool_12140.EXE
2016-02-22 10:09 - 2016-02-22 10:09 - 00000034 _____ C:\Windows\SysWOW64\BD2040.DAT
2016-02-22 09:49 - 2016-02-26 08:47 - 00004174 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BF62B9E7-975F-45F1-9CC0-00F0D4052F41}
2016-02-22 09:33 - 2016-02-22 09:33 - 01120672 _____ (Malunu ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\adobe_flash_player.exe
2016-02-22 08:05 - 2016-02-22 08:06 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Audacity
2016-02-22 08:05 - 2016-02-22 08:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Audacity
2016-02-22 08:04 - 2016-02-22 08:05 - 00000000 ____D C:\Program Files (x86)\Audacity
2016-02-22 08:04 - 2016-02-22 08:04 - 00001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2016-02-21 17:54 - 2016-02-21 17:54 - 00002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk
2016-02-21 17:54 - 2016-02-21 17:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Google
2016-02-21 17:53 - 2016-02-21 17:53 - 00987728 _____ (Google Inc.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\GoogleEarthSetup.exe
2016-02-21 17:44 - 2016-02-21 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi
2016-02-21 17:44 - 2016-02-21 17:44 - 00001107 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Fugawi Global Navigator 4.5.LNK
2016-02-21 17:43 - 2016-02-21 17:43 - 00000000 ____D C:\Program Files (x86)\Fugawi
2016-02-21 17:10 - 2016-02-21 17:44 - 00000037 _____ C:\Windows\iltwain.ini
2016-02-21 15:38 - 2016-02-21 15:45 - 00000017 ____H C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\19720201.dat
2016-02-21 15:35 - 2016-02-21 18:04 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Fugawi
2016-02-21 15:35 - 2016-02-21 17:44 - 00000000 ____D C:\ProgramData\Fugawi
2016-02-21 15:35 - 2016-02-21 15:51 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Fugawi
2016-02-21 15:35 - 2016-02-21 15:35 - 00000000 ____D C:\Program Files (x86)\Earth Resource Mapping
2016-02-21 15:35 - 2016-02-21 15:35 - 00000000 _____ C:\Windows\Lmvk32.INI
2016-02-21 15:35 - 2003-03-18 19:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2016-02-21 15:35 - 2003-02-21 03:42 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2016-02-21 15:35 - 2002-01-05 04:48 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll
2016-02-21 15:35 - 2002-01-05 04:36 - 00964608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll
2016-02-21 15:32 - 2016-02-21 15:32 - 55326352 _____ (Northport Systems Inc. ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\fugawi45565615.exe
2016-02-21 13:13 - 2016-02-22 16:39 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.mediathek3
2016-02-21 13:13 - 2016-02-21 13:13 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Sun
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Sun
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.oracle_jre_usage
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Oracle
2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\ProgramData\Oracle
2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\Program Files\Java
2016-02-21 13:07 - 2016-02-21 13:12 - 57099360 _____ (Oracle Corporation) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\jre-8u73-windows-x64.exe
2016-02-21 12:24 - 2016-02-21 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
2016-02-21 12:24 - 2016-02-21 12:24 - 00000000 ____D C:\Program Files (x86)\LAV Filters
2016-02-21 12:23 - 2016-02-21 12:23 - 09532984 _____ (1f0.de ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\LAVFilters-0.67-Installer.exe
2016-02-21 12:21 - 2016-02-21 12:21 - 07185389 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\LAVFilters-0.67-x64.zip
2016-02-21 12:13 - 2016-02-21 12:13 - 00318223 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_Filter_3_8_1.zip
2016-02-21 10:09 - 2016-02-21 10:09 - 00571552 _____ (Pinnacle Systems GmbH) C:\Windows\system32\Drivers\pctv4XXe_amd64.sys
2016-02-21 10:03 - 2016-02-21 10:06 - 00000000 ____D C:\Program Files (x86)\DVBViewer
2016-02-21 10:03 - 2016-02-21 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer
2016-02-21 10:03 - 2016-02-21 10:03 - 00000000 ____D C:\ProgramData\CMUV
2016-02-21 10:00 - 2016-02-21 12:30 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\DVBViewer
2016-02-21 09:58 - 2016-02-21 09:58 - 01082553 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_GE_Anleitung.zip
2016-02-21 09:57 - 2016-02-21 09:57 - 07436126 _____ (CM&V ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_setup.exe
2016-02-21 09:55 - 2016-02-21 09:55 - 00001024 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\9DD6626F58261648.dvbvkey
2016-02-21 09:26 - 2016-02-21 09:26 - 00000706 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Geräte - Shortcut.lnk
2016-02-21 09:05 - 2016-02-21 09:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Pico Technology
2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Downloaded Installations
2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pico Technology
2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\Program Files (x86)\Pico Technology
2016-02-21 08:57 - 2016-02-21 08:57 - 00000000 ____D C:\Program Files\Pico Technology
2016-02-20 17:27 - 2016-02-20 17:27 - 111098163 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Microsoft-Spiele-x64.zip
2016-02-20 17:26 - 2016-02-20 17:26 - 01116040 _____ (Feme ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Microsoft-Spiele-x64.exe
2016-02-20 17:03 - 2016-02-24 09:56 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\MyPhoneExplorer
2016-02-20 17:03 - 2016-02-20 17:03 - 00002128 _____ C:\Users\Public\Desktop\MyPhoneExplorer.lnk
2016-02-20 17:03 - 2016-02-20 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer
2016-02-20 17:03 - 2016-02-20 17:03 - 00000000 ____D C:\Program Files (x86)\MyPhoneExplorer
2016-02-20 17:01 - 2016-02-20 17:02 - 07886000 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\MyPhoneExplorer_Setup_1.8.7.exe
2016-02-20 15:24 - 2016-02-20 15:24 - 00003668 _____ C:\Windows\System32\Tasks\{FCC43C23-C686-4530-BB4D-97C7E689F677}
2016-02-20 15:23 - 2016-02-20 15:23 - 00000000 ____D C:\ProgramData\VS
2016-02-20 15:18 - 2016-02-20 15:18 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010
2016-02-20 15:18 - 2016-02-20 15:18 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010
2016-02-20 12:53 - 2016-02-20 12:53 - 00003758 _____ C:\Windows\System32\Tasks\DriverMaxAgent
2016-02-20 12:53 - 2016-02-20 12:53 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Innovative Solutions
2016-02-20 12:53 - 2016-02-20 12:53 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Innovative Solutions
2016-02-20 12:52 - 2016-02-20 12:52 - 00000000 ____D C:\Program Files (x86)\Innovative Solutions
2016-02-20 11:49 - 2016-02-23 17:17 - 00000306 __RSH C:\ProgramData\ntuser.pol
2016-02-20 11:49 - 2016-02-20 12:59 - 00067680 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusb0.dll
2016-02-20 11:49 - 2016-02-20 12:59 - 00052832 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusb0.sys
2016-02-20 11:49 - 2016-02-20 11:58 - 00099128 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusbK.dll
2016-02-20 11:49 - 2016-02-20 11:58 - 00084280 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusbK.dll
2016-02-20 11:49 - 2016-02-20 11:58 - 00076384 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusb0.dll
2016-02-20 11:49 - 2016-02-20 11:58 - 00047928 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusbK.sys
2016-02-20 11:49 - 2016-02-20 11:55 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\usb_driver
2016-02-20 11:49 - 2016-02-20 11:49 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2016-02-20 11:36 - 2016-02-20 11:36 - 00000000 ____D C:\ProgramData\Atmel
2016-02-20 10:37 - 2016-02-20 10:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft Corporation
2016-02-20 10:32 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\VisualAssist
2016-02-20 10:32 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\VisualAssist
2016-02-20 10:32 - 2016-02-20 10:32 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\IsolatedStorage
2016-02-20 10:31 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Atmel
2016-02-20 10:27 - 2016-02-20 10:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Atmel Studio
2016-02-20 10:27 - 2016-02-20 10:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Atmel
2016-02-20 10:27 - 2016-02-20 10:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Atmel
2016-02-20 10:26 - 2016-02-20 10:26 - 00000000 ____D C:\Program Files\Seggger
2016-02-20 10:25 - 2016-02-20 10:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0
2016-02-20 10:25 - 2010-08-31 13:23 - 00254976 _____ (Jungo) C:\Windows\system32\Drivers\windrvr6.sys
2016-02-20 10:25 - 2010-01-17 20:13 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi1011.dll
2016-02-20 10:25 - 2009-09-02 11:48 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1010.dll
2016-02-20 10:25 - 2009-07-14 10:07 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1002.dll
2016-02-20 10:25 - 2009-05-14 13:21 - 00157184 _____ (Jungo) C:\Windows\SysWOW64\wdapi1001.dll
2016-02-20 10:25 - 2008-07-04 09:51 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi921.dll
2016-02-20 10:25 - 2006-10-18 15:39 - 00141824 _____ (Jungo) C:\Windows\SysWOW64\wdapi811.dll
2016-02-20 10:24 - 2016-02-20 10:24 - 00000000 ____D C:\Program Files\Microsoft Help Viewer
2016-02-20 10:24 - 2016-02-20 10:24 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Windows\SysWOW64\1033
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Visual Studio 2010
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-02-20 09:37 - 2016-02-20 09:37 - 00000771 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte - Shortcut.lnk
2016-02-20 09:32 - 2016-02-20 09:32 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte
2016-02-20 09:29 - 2016-02-20 09:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\MCS Electronics
2016-02-20 09:28 - 2016-02-20 09:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\MCS Electronics
2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\MCS Electronics
2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics
2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\Program Files (x86)\MCS Electronics
2016-02-19 20:10 - 2016-02-19 20:10 - 00001230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-02-19 20:10 - 2016-02-19 20:10 - 00001218 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-02-19 17:41 - 2016-02-19 17:41 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
2016-02-19 17:41 - 2016-02-19 17:41 - 00003450 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Enigma Software Group
2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 ____D C:\sh4ldr
2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 _____ C:\autoexec.bat
2016-02-19 16:40 - 2016-02-19 16:49 - 00000000 ____D C:\Program Files (x86)\SprgFiles
2016-02-19 16:40 - 2016-02-19 16:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverRestore
2016-02-19 16:40 - 2016-02-19 16:40 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\SpringFiles
2016-02-19 13:43 - 2016-02-19 13:43 - 00003972 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-02-19 13:43 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Adobe
2016-02-19 13:43 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\CEF
2016-02-19 13:42 - 2016-02-19 13:45 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-02-19 13:42 - 2016-02-19 13:44 - 00000000 ____D C:\ProgramData\Adobe
2016-02-19 13:42 - 2016-02-19 13:42 - 00002126 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-02-19 13:42 - 2016-02-19 13:42 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-02-19 13:41 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Adobe
2016-02-19 10:06 - 2016-02-19 10:06 - 00000000 ____D C:\Windows\system32\SleepStudy
2016-02-18 19:57 - 2016-02-26 10:02 - 00001144 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-18 19:57 - 2016-02-18 19:57 - 00004202 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-18 19:57 - 2016-02-18 19:57 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Google
2016-02-18 19:56 - 2016-02-25 20:01 - 00001140 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-18 19:56 - 2016-02-21 17:54 - 00000000 ____D C:\Program Files (x86)\Google
2016-02-18 19:56 - 2016-02-18 19:56 - 00003970 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-18 19:53 - 2016-02-18 19:53 - 00000764 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Arbeitsdateien - Shortcut.lnk
2016-02-18 19:50 - 2016-02-18 19:50 - 00000675 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\GPS - Shortcut.lnk
2016-02-18 19:49 - 2016-02-18 19:49 - 00000780 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kranich_Projekte - Shortcut.lnk
2016-02-18 19:43 - 2016-02-18 19:43 - 00000707 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\TK102-2 -Shortcut.lnk
2016-02-18 19:33 - 2016-02-22 08:07 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio
2016-02-18 18:46 - 2016-02-18 18:46 - 31367109 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\vlc-2.2.2-win64.exe
2016-02-18 16:44 - 2016-02-18 16:47 - 00000000 ____D C:\Windows\system32\MRT
2016-02-18 16:44 - 2016-02-18 16:44 - 146614896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-02-18 16:33 - 2016-02-18 16:33 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-02-18 16:33 - 2016-02-18 16:33 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-02-18 16:30 - 2016-01-31 07:23 - 02601160 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2016-02-18 16:30 - 2016-01-31 07:04 - 01811360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2016-02-18 16:30 - 2016-01-31 06:38 - 21873152 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-02-18 16:30 - 2016-01-31 06:34 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll
2016-02-18 16:30 - 2016-01-31 06:33 - 24593920 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 12504576 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-02-18 16:30 - 2016-01-31 06:23 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-02-18 16:30 - 2016-01-31 06:22 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2016-02-18 16:30 - 2016-01-31 06:17 - 19324928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-02-18 16:30 - 2016-01-31 06:17 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2016-02-18 16:30 - 2016-01-31 06:14 - 07525376 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-02-18 16:30 - 2016-01-31 06:14 - 03588096 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-02-18 16:30 - 2016-01-31 06:13 - 04791808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-02-18 16:30 - 2016-01-31 06:11 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-02-18 16:30 - 2016-01-31 06:07 - 18802176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-02-18 16:30 - 2016-01-31 06:04 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2016-02-18 16:30 - 2016-01-31 06:02 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-02-18 16:30 - 2016-01-31 06:00 - 11263488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-02-18 16:30 - 2016-01-31 05:59 - 05457408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-02-18 16:30 - 2016-01-05 04:06 - 08022368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-02-18 16:30 - 2016-01-05 04:06 - 01063504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-02-18 16:30 - 2016-01-05 04:06 - 00119800 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-02-18 16:30 - 2016-01-05 04:04 - 02824248 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-02-18 16:30 - 2016-01-05 03:30 - 00882208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-02-18 16:30 - 2016-01-05 03:30 - 00100712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-02-18 16:30 - 2016-01-05 03:28 - 02445128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-02-18 16:30 - 2016-01-05 03:09 - 01234944 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-02-18 16:30 - 2016-01-05 02:57 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-02-18 16:30 - 2016-01-05 02:57 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-02-18 16:30 - 2016-01-05 02:29 - 00650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-02-18 16:30 - 2016-01-05 02:29 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-02-18 16:30 - 2016-01-05 02:26 - 00373760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-02-18 16:30 - 2015-11-25 06:40 - 00516448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2016-02-18 16:30 - 2015-11-25 05:49 - 01569280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2016-02-18 16:30 - 2015-11-25 05:30 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-02-18 16:30 - 2015-11-25 05:30 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2016-02-18 16:30 - 2015-11-25 05:22 - 01383424 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-02-18 16:30 - 2015-11-25 05:18 - 01233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2016-02-18 16:30 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2016-02-18 16:30 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-02-18 16:30 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-02-18 16:30 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-02-18 16:30 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2016-02-18 16:30 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2016-02-18 16:30 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-02-18 16:30 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2016-02-18 16:30 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-02-18 16:30 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-02-18 16:30 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-02-18 16:30 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-02-18 16:30 - 2015-09-17 07:48 - 02432336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-02-18 16:30 - 2015-09-17 07:48 - 00406864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-02-18 16:30 - 2015-09-17 07:06 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll
2016-02-18 16:30 - 2015-09-17 07:06 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2016-02-18 16:30 - 2015-09-17 07:03 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2016-02-18 16:30 - 2015-09-17 07:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2016-02-18 16:30 - 2015-09-17 06:55 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll
2016-02-18 16:30 - 2015-09-17 06:52 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2016-02-18 16:30 - 2015-09-17 06:52 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-02-18 16:30 - 2015-09-17 06:51 - 01812480 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2016-02-18 16:30 - 2015-09-17 06:50 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-02-18 16:30 - 2015-09-17 06:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\buttonconverter.sys
2016-02-18 16:30 - 2015-09-17 06:48 - 02093056 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2016-02-18 16:30 - 2015-09-17 06:47 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2016-02-18 16:30 - 2015-09-17 06:46 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2016-02-18 16:30 - 2015-09-17 06:46 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll
2016-02-18 16:30 - 2015-09-17 06:44 - 01844736 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2016-02-18 16:30 - 2015-09-17 06:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2016-02-18 16:30 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2016-02-18 16:30 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-02-18 16:30 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2016-02-18 16:30 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-02-18 16:30 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2016-02-18 16:30 - 2015-08-11 11:03 - 00442208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-02-18 16:30 - 2015-08-11 11:02 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2016-02-18 16:30 - 2015-08-11 10:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\tetheringclient.dll
2016-02-18 16:30 - 2015-08-11 10:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2016-02-18 16:29 - 2016-01-31 07:25 - 01951872 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-02-18 16:29 - 2016-01-31 07:25 - 01248896 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2016-02-18 16:29 - 2016-01-31 07:24 - 01824880 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-02-18 16:29 - 2016-01-31 07:23 - 01420392 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-02-18 16:29 - 2016-01-31 07:06 - 01535032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-02-18 16:29 - 2016-01-31 07:06 - 01531368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-02-18 16:29 - 2016-01-31 07:06 - 00809336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2016-02-18 16:29 - 2016-01-31 07:04 - 01180696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-02-18 16:29 - 2016-01-31 06:33 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\IoTAssignedAccessLockFramework.dll
2016-02-18 16:29 - 2016-01-31 06:29 - 11557888 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-02-18 16:29 - 2016-01-31 06:26 - 06787072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-02-18 16:29 - 2016-01-31 06:26 - 03793408 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-02-18 16:29 - 2016-01-31 06:20 - 02849792 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-02-18 16:29 - 2016-01-31 06:19 - 01602560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-02-18 16:29 - 2016-01-31 06:19 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll
2016-02-18 16:29 - 2016-01-31 06:16 - 09889280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-02-18 16:29 - 2016-01-31 06:16 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-02-18 16:29 - 2016-01-31 06:11 - 05156352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-02-18 16:29 - 2016-01-31 06:11 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2016-02-18 16:29 - 2016-01-31 06:06 - 02316800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-02-18 16:29 - 2016-01-31 06:05 - 01380864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-02-18 16:29 - 2016-01-31 06:02 - 00768000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-02-18 16:29 - 2016-01-05 04:07 - 02463704 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2016-02-18 16:29 - 2016-01-05 04:07 - 00377592 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-02-18 16:29 - 2016-01-05 04:06 - 01991120 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-02-18 16:29 - 2016-01-05 04:06 - 01270104 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 02641928 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 01150816 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00862056 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00787720 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 00784136 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00779928 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00772448 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00751992 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 00667856 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00233992 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00115704 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 00090912 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00083704 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-02-18 16:29 - 2016-01-05 03:59 - 00781976 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-02-18 16:29 - 2016-01-05 03:50 - 01083072 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-02-18 16:29 - 2016-01-05 03:50 - 00723648 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-02-18 16:29 - 2016-01-05 03:50 - 00345080 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-02-18 16:29 - 2016-01-05 03:50 - 00205072 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-02-18 16:29 - 2016-01-05 03:30 - 02459096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-02-18 16:29 - 2016-01-05 03:30 - 02162064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-02-18 16:29 - 2016-01-05 03:30 - 02152744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2016-02-18 16:29 - 2016-01-05 03:30 - 01106872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2016-02-18 16:29 - 2016-01-05 03:30 - 00368776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-02-18 16:29 - 2016-01-05 03:29 - 00208688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00714808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00696192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-02-18 16:29 - 2016-01-05 03:28 - 00695752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-02-18 16:29 - 2016-01-05 03:28 - 00645144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00635312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00497896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00107952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-02-18 16:29 - 2016-01-05 03:28 - 00082096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00072808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-02-18 16:29 - 2016-01-05 03:21 - 00658528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-02-18 16:29 - 2016-01-05 03:15 - 00931328 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-02-18 16:29 - 2016-01-05 03:15 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\usermgrcli.dll
2016-02-18 16:29 - 2016-01-05 03:10 - 00305776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-02-18 16:29 - 2016-01-05 03:10 - 00188032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-02-18 16:29 - 2016-01-05 03:09 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-02-18 16:29 - 2016-01-05 03:02 - 01672192 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-02-18 16:29 - 2016-01-05 03:02 - 00678912 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-02-18 16:29 - 2016-01-05 03:00 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-02-18 16:29 - 2016-01-05 02:59 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-02-18 16:29 - 2016-01-05 02:57 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2016-02-18 16:29 - 2016-01-05 02:51 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 01009664 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:44 - 00159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2016-02-18 16:29 - 2016-01-05 02:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usermgrcli.dll
2016-02-18 16:29 - 2016-01-05 02:42 - 00871936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-02-18 16:29 - 2016-01-05 02:32 - 01541632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-02-18 16:29 - 2016-01-05 02:32 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-02-18 16:29 - 2016-01-05 02:31 - 00563200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-02-18 16:29 - 2016-01-05 02:20 - 00890880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 01070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 00747008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 00409088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 00404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-02-18 16:29 - 2015-12-01 07:03 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\gpuenergydrv.sys
2016-02-18 16:29 - 2015-11-25 06:42 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-02-18 16:29 - 2015-11-25 06:42 - 00168288 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.exe
2016-02-18 16:29 - 2015-11-25 06:33 - 03622272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-02-18 16:29 - 2015-11-25 06:27 - 01366680 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-02-18 16:29 - 2015-11-25 06:12 - 04047288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-02-18 16:29 - 2015-11-25 06:09 - 01310880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-02-18 16:29 - 2015-11-25 06:01 - 02879024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-02-18 16:29 - 2015-11-25 05:49 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:49 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:49 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\RasMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:48 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\EthernetMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:48 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\DAMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:37 - 02350592 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-02-18 16:29 - 2015-11-25 05:36 - 01710592 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2016-02-18 16:29 - 2015-11-25 05:35 - 00929792 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2016-02-18 16:29 - 2015-11-25 05:35 - 00845824 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2016-02-18 16:29 - 2015-11-25 05:31 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll
2016-02-18 16:29 - 2015-11-25 05:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll
2016-02-18 16:29 - 2015-11-25 05:29 - 01649152 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-02-18 16:29 - 2015-11-25 05:29 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\ninput.dll
2016-02-18 16:29 - 2015-11-25 05:27 - 02180608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-02-18 16:29 - 2015-11-25 05:23 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-02-18 16:29 - 2015-11-25 05:22 - 01717248 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-02-18 16:29 - 2015-11-25 05:22 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2016-02-18 16:29 - 2015-11-25 05:19 - 01795584 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-02-18 16:29 - 2015-11-25 05:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2016-02-18 16:29 - 2015-11-25 05:17 - 00774656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2016-02-18 16:29 - 2015-11-25 05:16 - 01442816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll
2016-02-18 16:29 - 2015-11-25 05:16 - 00786432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2016-02-18 16:29 - 2015-11-25 05:13 - 02153984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-02-18 16:29 - 2015-11-25 05:10 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-02-18 16:29 - 2015-11-25 05:04 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-02-18 16:29 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2016-02-18 16:29 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2016-02-18 16:29 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2016-02-18 16:29 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2016-02-18 16:29 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2016-02-18 16:29 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2016-02-18 16:29 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2016-02-18 16:29 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-02-18 16:29 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2016-02-18 16:29 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2016-02-18 16:29 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2016-02-18 16:29 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2016-02-18 16:29 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-02-18 16:29 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2016-02-18 16:29 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2016-02-18 16:29 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-02-18 16:29 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-02-18 16:29 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-02-18 16:29 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2016-02-18 16:29 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-02-18 16:29 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2016-02-18 16:29 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-02-18 16:29 - 2015-09-17 07:50 - 00099664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-02-18 16:29 - 2015-09-17 07:49 - 06487248 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2016-02-18 16:29 - 2015-09-17 07:49 - 00894256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-02-18 16:29 - 2015-09-17 07:49 - 00553808 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ C:\Windows\system32\CoreUIComponents.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 02156400 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 01983824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-02-18 16:29 - 2015-09-17 07:48 - 00555768 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 00476760 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2016-02-18 16:29 - 2015-09-17 07:37 - 01295712 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2016-02-18 16:29 - 2015-09-17 07:28 - 05120056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2016-02-18 16:29 - 2015-09-17 07:28 - 00441168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-02-18 16:29 - 2015-09-17 07:28 - 00074880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2016-02-18 16:29 - 2015-09-17 07:27 - 01766952 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2016-02-18 16:29 - 2015-09-17 07:27 - 00454512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2016-02-18 16:29 - 2015-09-17 07:26 - 01895568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2016-02-18 16:29 - 2015-09-17 07:26 - 00434376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2016-02-18 16:29 - 2015-09-17 07:05 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2016-02-18 16:29 - 2015-09-17 07:05 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-02-18 16:29 - 2015-09-17 07:04 - 07569408 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2016-02-18 16:29 - 2015-09-17 07:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2016-02-18 16:29 - 2015-09-17 07:00 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll
2016-02-18 16:29 - 2015-09-17 06:57 - 02228736 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2016-02-18 16:29 - 2015-09-17 06:56 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2016-02-18 16:29 - 2015-09-17 06:55 - 00671232 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2016-02-18 16:29 - 2015-09-17 06:54 - 03781120 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2016-02-18 16:29 - 2015-09-17 06:54 - 00780288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-02-18 16:29 - 2015-09-17 06:54 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-02-18 16:29 - 2015-09-17 06:53 - 07055872 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2016-02-18 16:29 - 2015-09-17 06:52 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2016-02-18 16:29 - 2015-09-17 06:52 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2016-02-18 16:29 - 2015-09-17 06:52 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2016-02-18 16:29 - 2015-09-17 06:51 - 02660864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-02-18 16:29 - 2015-09-17 06:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\LocationGeofences.dll
2016-02-18 16:29 - 2015-09-17 06:49 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2016-02-18 16:29 - 2015-09-17 06:47 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-02-18 16:29 - 2015-09-17 06:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2016-02-18 16:29 - 2015-09-17 06:46 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2016-02-18 16:29 - 2015-09-17 06:45 - 01331200 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2016-02-18 16:29 - 2015-09-17 06:43 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2016-02-18 16:29 - 2015-09-17 06:40 - 06101504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2016-02-18 16:29 - 2015-09-17 06:39 - 00587264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2016-02-18 16:29 - 2015-09-17 06:39 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-02-18 16:29 - 2015-09-17 06:36 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2016-02-18 16:29 - 2015-09-17 06:35 - 05079552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2016-02-18 16:29 - 2015-09-17 06:35 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-02-18 16:29 - 2015-09-17 06:30 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2016-02-18 16:29 - 2015-09-17 06:29 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2016-02-18 16:29 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2016-02-18 16:29 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.PicturePassword.dll
2016-02-18 16:29 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-02-18 16:29 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2016-02-18 16:29 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2016-02-18 16:29 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2016-02-18 16:29 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2016-02-18 16:29 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2016-02-18 16:29 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2016-02-18 16:29 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2016-02-18 16:29 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-02-18 16:29 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2016-02-18 16:29 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2016-02-18 16:29 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2016-02-18 16:29 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2016-02-18 16:29 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2016-02-18 16:29 - 2015-08-11 10:50 - 01643872 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-02-18 16:29 - 2015-08-11 10:08 - 00893440 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2016-02-18 16:29 - 2015-08-11 10:05 - 03527168 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-02-18 16:29 - 2015-08-11 10:05 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\LocationPermissions.dll
2016-02-18 16:29 - 2015-08-11 10:03 - 02558976 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-02-18 16:29 - 2015-08-11 09:48 - 00671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2016-02-18 16:29 - 2015-08-11 09:43 - 02748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2016-02-18 16:29 - 2015-08-11 09:40 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2016-02-18 16:28 - 2016-01-31 06:29 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rasman.dll
2016-02-18 16:28 - 2016-01-31 06:24 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-02-18 16:28 - 2016-01-31 06:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-02-18 16:28 - 2016-01-31 06:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-02-18 16:28 - 2016-01-31 06:19 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IoTAssignedAccessLockFramework.dll
2016-02-18 16:28 - 2016-01-31 06:18 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-02-18 16:28 - 2016-01-31 06:18 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-02-18 16:28 - 2016-01-31 06:13 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasman.dll
2016-02-18 16:28 - 2016-01-31 06:13 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\ztrace_maps.dll
2016-02-18 16:28 - 2016-01-31 06:11 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-02-18 16:28 - 2016-01-31 06:05 - 00574464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2016-02-18 16:28 - 2016-01-31 06:05 - 00118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-02-18 16:28 - 2016-01-31 05:58 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ztrace_maps.dll
2016-02-18 16:28 - 2016-01-05 04:04 - 01591848 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-02-18 16:28 - 2016-01-05 04:04 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-02-18 16:28 - 2016-01-05 04:04 - 00249464 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-02-18 16:28 - 2016-01-05 04:04 - 00243248 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll


gzielos 26.02.2016 10:28

Hier der zweite Teil von Fst.txt:

2016-02-18 16:28 - 2016-01-05 03:52 - 00441696 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-02-18 16:28 - 2016-01-05 03:50 - 01817064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-02-18 16:28 - 2016-01-05 03:50 - 00251544 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-02-18 16:28 - 2016-01-05 03:31 - 01365576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-02-18 16:28 - 2016-01-05 03:30 - 00232896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-02-18 16:28 - 2016-01-05 03:28 - 00277400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-02-18 16:28 - 2016-01-05 03:28 - 00116728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-02-18 16:28 - 2016-01-05 03:15 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2016-02-18 16:28 - 2016-01-05 03:10 - 00539136 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2016-02-18 16:28 - 2016-01-05 03:10 - 00278424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-02-18 16:28 - 2016-01-05 03:02 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-02-18 16:28 - 2016-01-05 03:01 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-02-18 16:28 - 2016-01-05 02:38 - 00556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2016-02-18 16:28 - 2016-01-05 02:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-02-18 16:28 - 2015-12-01 08:01 - 02115936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-02-18 16:28 - 2015-11-25 06:32 - 00113184 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2016-02-18 16:28 - 2015-11-25 05:59 - 00092992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2016-02-18 16:28 - 2015-11-25 05:36 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2016-02-18 16:28 - 2015-11-25 05:28 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-02-18 16:28 - 2015-11-25 05:26 - 00849408 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2016-02-18 16:28 - 2015-11-25 05:26 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2016-02-18 16:28 - 2015-11-25 05:25 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-02-18 16:28 - 2015-11-25 05:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZST.DLL
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2016-02-18 16:28 - 2015-11-25 05:11 - 00296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll
2016-02-18 16:28 - 2015-11-25 05:10 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-02-18 16:28 - 2015-11-25 05:08 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2016-02-18 16:28 - 2015-11-25 05:07 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00480768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00474624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZST.DLL
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2016-02-18 16:28 - 2015-11-25 03:52 - 00775312 _____ C:\Windows\SysWOW64\locale.nls
2016-02-18 16:28 - 2015-11-25 03:52 - 00775312 _____ C:\Windows\system32\locale.nls
2016-02-18 16:28 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2016-02-18 16:28 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-02-18 16:28 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-02-18 16:28 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2016-02-18 16:28 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2016-02-18 16:28 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2016-02-18 16:28 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2016-02-18 16:28 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2016-02-18 16:28 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-02-18 16:28 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-02-18 16:28 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-02-18 16:28 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-02-18 16:28 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-02-18 16:28 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-02-18 16:28 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2016-02-18 16:28 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll
2016-02-18 16:28 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll
2016-02-18 16:28 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2016-02-18 16:28 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2016-02-18 16:28 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2016-02-18 16:28 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2016-02-18 16:28 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\CallHistoryClient.dll
2016-02-18 16:28 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2016-02-18 16:28 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll
2016-02-18 16:28 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2016-02-18 16:28 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallHistoryClient.dll
2016-02-18 16:28 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2016-02-18 16:28 - 2015-09-19 06:14 - 00102304 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2016-02-18 16:28 - 2015-09-17 07:50 - 01563392 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2016-02-18 16:28 - 2015-09-17 07:50 - 00088384 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2016-02-18 16:28 - 2015-09-17 07:49 - 01563472 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-02-18 16:28 - 2015-09-17 07:49 - 00501008 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00809352 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00584656 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00537080 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00505696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-02-18 16:28 - 2015-09-17 07:48 - 00395088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-02-18 16:28 - 2015-09-17 07:48 - 00332624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2016-02-18 16:28 - 2015-09-17 07:48 - 00278352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2016-02-18 16:28 - 2015-09-17 07:37 - 01168736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-02-18 16:28 - 2015-09-17 07:28 - 01357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2016-02-18 16:28 - 2015-09-17 07:28 - 00407608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-02-18 16:28 - 2015-09-17 07:26 - 00508248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-02-18 16:28 - 2015-09-17 07:26 - 00428128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2016-02-18 16:28 - 2015-09-17 07:11 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2016-02-18 16:28 - 2015-09-17 07:10 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2016-02-18 16:28 - 2015-09-17 07:09 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2016-02-18 16:28 - 2015-09-17 07:09 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2016-02-18 16:28 - 2015-09-17 07:08 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2016-02-18 16:28 - 2015-09-17 07:08 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll
2016-02-18 16:28 - 2015-09-17 07:08 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerShellext.exe
2016-02-18 16:28 - 2015-09-17 07:04 - 00910848 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2016-02-18 16:28 - 2015-09-17 07:03 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2016-02-18 16:28 - 2015-09-17 07:03 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2016-02-18 16:28 - 2015-09-17 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2016-02-18 16:28 - 2015-09-17 07:02 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-02-18 16:28 - 2015-09-17 07:00 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2016-02-18 16:28 - 2015-09-17 06:58 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2016-02-18 16:28 - 2015-09-17 06:57 - 00403456 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2016-02-18 16:28 - 2015-09-17 06:57 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2016-02-18 16:28 - 2015-09-17 06:57 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2016-02-18 16:28 - 2015-09-17 06:56 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2016-02-18 16:28 - 2015-09-17 06:56 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 01601536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2016-02-18 16:28 - 2015-09-17 06:55 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2016-02-18 16:28 - 2015-09-17 06:51 - 01203712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2016-02-18 16:28 - 2015-09-17 06:51 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2016-02-18 16:28 - 2015-09-17 06:51 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeWiFi.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeCell.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 01290240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00439296 _____ (Microsoft Corporation) C:\Windows\system32\LocationWebproxy.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\LocationCrowdsource.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeIP.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\LocationWiFiAdapter.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Speech.Pal.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2016-02-18 16:28 - 2015-09-17 06:47 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2016-02-18 16:28 - 2015-09-17 06:46 - 00928256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2016-02-18 16:28 - 2015-09-17 06:46 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2016-02-18 16:28 - 2015-09-17 06:46 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2016-02-18 16:28 - 2015-09-17 06:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\syncmlhook.dll
2016-02-18 16:28 - 2015-09-17 06:45 - 00869376 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2016-02-18 16:28 - 2015-09-17 06:45 - 00832512 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2016-02-18 16:28 - 2015-09-17 06:45 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2016-02-18 16:28 - 2015-09-17 06:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2016-02-18 16:28 - 2015-09-17 06:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\syncutil.dll
2016-02-18 16:28 - 2015-09-17 06:43 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll
2016-02-18 16:28 - 2015-09-17 06:43 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2016-02-18 16:28 - 2015-09-17 06:41 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-02-18 16:28 - 2015-09-17 06:40 - 01162240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2016-02-18 16:28 - 2015-09-17 06:38 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2016-02-18 16:28 - 2015-09-17 06:37 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2016-02-18 16:28 - 2015-09-17 06:35 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2016-02-18 16:28 - 2015-09-17 06:34 - 00253440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2016-02-18 16:28 - 2015-09-17 06:32 - 00336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2016-02-18 16:28 - 2015-09-17 06:32 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2016-02-18 16:28 - 2015-09-17 06:32 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-02-18 16:28 - 2015-09-17 06:31 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2016-02-18 16:28 - 2015-09-17 06:29 - 00701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2016-02-18 16:28 - 2015-09-17 06:29 - 00677888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2016-02-18 16:28 - 2015-09-17 06:28 - 00473088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2016-02-18 16:28 - 2015-09-17 06:26 - 00899584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll
2016-02-18 16:28 - 2015-09-17 06:16 - 00512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2016-02-18 16:28 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-02-18 16:28 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2016-02-18 16:28 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-02-18 16:28 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2016-02-18 16:28 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2016-02-18 16:28 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2016-02-18 16:28 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2016-02-18 16:28 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2016-02-18 16:28 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-02-18 16:28 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2016-02-18 16:28 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2016-02-18 16:28 - 2015-08-18 07:54 - 00247296 _____ C:\Windows\system32\facecredentialprovider.dll
2016-02-18 16:28 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2016-02-18 16:28 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2016-02-18 16:28 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2016-02-18 16:28 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-02-18 16:28 - 2015-08-18 05:44 - 00008847 _____ C:\Windows\system32\ResPriHMImageList
2016-02-18 16:28 - 2015-08-11 11:04 - 01087296 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-02-18 16:28 - 2015-08-11 11:02 - 00292856 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-02-18 16:28 - 2015-08-11 10:52 - 00993104 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2016-02-18 16:28 - 2015-08-11 10:40 - 00918320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-02-18 16:28 - 2015-08-11 10:37 - 00243800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2016-02-18 16:28 - 2015-08-11 10:26 - 00845664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2016-02-18 16:28 - 2015-08-11 10:19 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2016-02-18 16:28 - 2015-08-11 10:14 - 00404480 _____ C:\Windows\system32\diagtrack_wininternal.dll
2016-02-18 16:28 - 2015-08-11 10:13 - 00413184 _____ C:\Windows\system32\diagtrack_win.dll
2016-02-18 16:28 - 2015-08-11 10:11 - 02446336 _____ C:\Windows\system32\InputService.dll
2016-02-18 16:28 - 2015-08-11 10:11 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2016-02-18 16:28 - 2015-08-11 10:10 - 00293376 _____ C:\Windows\system32\TextInputFramework.dll
2016-02-18 16:28 - 2015-08-11 10:09 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll
2016-02-18 16:28 - 2015-08-11 10:05 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll
2016-02-18 16:28 - 2015-08-11 10:00 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-02-18 16:28 - 2015-08-11 09:59 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-02-18 16:28 - 2015-08-11 09:59 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll
2016-02-18 16:28 - 2015-08-11 09:59 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2016-02-18 16:28 - 2015-08-11 09:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tetheringclient.dll
2016-02-18 16:28 - 2015-08-11 09:51 - 01823232 _____ C:\Windows\SysWOW64\InputService.dll
2016-02-18 16:28 - 2015-08-11 09:50 - 00420352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2016-02-18 16:28 - 2015-08-11 09:50 - 00200704 _____ C:\Windows\SysWOW64\TextInputFramework.dll
2016-02-18 16:28 - 2015-08-11 09:50 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2016-02-18 16:28 - 2015-08-11 09:39 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-02-18 16:28 - 2015-08-11 09:38 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2016-02-18 16:08 - 2016-02-20 17:33 - 00000000 ____D C:\Program Files\Microsoft Games
2016-02-18 16:05 - 2016-02-20 17:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft Games
2016-02-18 16:05 - 2016-02-18 16:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Microsoft Games
2016-02-18 16:00 - 2016-02-18 16:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vista Games
2016-02-18 15:59 - 2010-05-17 08:33 - 00061440 _____ (Rafael & ZoRoNaX) C:\Windows\system32\Vista.Emulation.dll
2016-02-18 13:29 - 2016-02-18 19:35 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\vlc
2016-02-18 13:29 - 2016-02-18 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-02-18 13:29 - 2016-02-18 13:29 - 00000000 ____D C:\Program Files\VideoLAN
2016-02-18 12:55 - 2016-02-23 13:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Flight Simulator-Dateien
2016-02-18 12:51 - 2016-02-18 12:51 - 00000000 ____D C:\Users\Public\Documents\Flight Simulator-Dateien
2016-02-18 12:49 - 2016-02-18 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2016-02-18 12:43 - 2016-02-25 09:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Programme
2016-02-18 12:42 - 2016-02-18 16:00 - 00000000 ____D C:\Program Files (x86)\Microsoft Games
2016-02-18 11:29 - 2016-02-18 11:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Criterion Games
2016-02-18 11:26 - 2012-04-12 14:25 - 00539136 _____ (Microsoft Corporation) C:\Program Files (x86)\spider.exe
2016-02-18 10:54 - 2016-02-25 18:00 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Chat
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\Program Files (x86)\WestwoodOnline
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\Program Files (x86)\WestwoodChat
2016-02-18 10:52 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2016-02-18 10:52 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2016-02-18 10:52 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2016-02-18 10:52 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-02-18 10:52 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2016-02-18 10:52 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2016-02-18 10:52 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2016-02-18 10:52 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2016-02-18 10:52 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2016-02-18 10:52 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2016-02-18 10:52 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2016-02-18 10:52 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2016-02-18 10:52 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2016-02-18 10:52 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2016-02-18 10:52 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2016-02-18 10:52 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2016-02-18 10:52 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2016-02-18 10:52 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2016-02-18 10:52 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2016-02-18 10:52 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2016-02-18 10:52 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2016-02-18 10:52 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2016-02-18 10:52 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2016-02-18 10:52 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2016-02-18 10:52 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2016-02-18 10:52 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2016-02-18 10:52 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2016-02-18 10:52 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2016-02-18 10:52 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2016-02-18 10:52 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2016-02-18 10:52 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2016-02-18 10:52 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2016-02-18 10:52 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-02-18 10:52 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2016-02-18 10:52 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2016-02-18 10:52 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2016-02-18 10:52 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2016-02-18 10:52 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2016-02-18 10:52 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2016-02-18 10:52 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2016-02-18 10:52 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2016-02-18 10:52 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2016-02-18 10:52 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2016-02-18 10:52 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2016-02-18 10:52 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2016-02-18 10:52 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2016-02-18 10:52 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2016-02-18 10:52 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2016-02-18 10:52 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2016-02-18 10:52 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2016-02-18 10:52 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2016-02-18 10:52 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2016-02-18 10:52 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-02-18 10:52 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-02-18 10:52 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-02-18 10:52 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2016-02-18 10:52 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-02-18 10:52 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2016-02-18 10:52 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2016-02-18 10:52 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2016-02-18 10:52 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2016-02-18 10:52 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2016-02-18 10:52 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-02-18 10:52 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2016-02-18 10:52 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2016-02-18 10:52 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2016-02-18 10:52 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2016-02-18 10:52 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2016-02-18 10:52 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2016-02-18 10:52 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2016-02-18 10:52 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2016-02-18 10:52 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2016-02-18 10:52 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2016-02-18 10:52 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2016-02-18 10:46 - 2016-02-18 15:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Origin
2016-02-18 10:46 - 2016-02-18 11:18 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-02-18 10:46 - 2016-02-18 10:46 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Origin
2016-02-18 10:43 - 2016-02-25 08:45 - 00000000 ____D C:\ProgramData\Origin
2016-02-18 10:43 - 2016-02-18 11:29 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-02-18 10:43 - 2016-02-18 10:46 - 00000000 ____D C:\Program Files (x86)\Origin
2016-02-18 10:43 - 2016-02-18 10:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-02-18 10:42 - 2016-02-18 10:42 - 31335272 _____ (Electronic Arts, Inc.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\OriginThinSetup.exe
2016-02-18 10:25 - 2016-02-23 17:56 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik
2016-02-18 10:11 - 2016-02-18 10:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2
2016-02-18 10:11 - 2016-02-18 10:11 - 00000000 ____D C:\Program Files (x86)\LogView V2
2016-02-18 10:06 - 2016-02-18 10:06 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\LogView 7
2016-02-18 09:56 - 2016-02-18 10:25 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\LogView
2016-02-18 09:52 - 2016-02-18 09:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Comms
2016-02-18 09:42 - 2016-02-25 09:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Grafik
2016-02-18 09:41 - 2016-02-18 09:41 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paint Shop Pro 5
2016-02-18 09:41 - 2016-02-18 09:41 - 00000000 ____D C:\Program Files (x86)\Paint Shop Pro 5
2016-02-18 09:30 - 2016-02-18 09:30 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.android
2016-02-17 21:14 - 2016-02-17 21:14 - 00000000 ___RD C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Brother
2016-02-17 21:13 - 2016-02-22 13:41 - 00000432 _____ C:\Windows\BRWMARK.INI
2016-02-17 21:13 - 2016-02-22 13:41 - 00000034 _____ C:\Windows\SysWOW64\BD2030.DAT
2016-02-17 20:27 - 2016-02-17 20:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\NetworkTiles
2016-02-17 18:35 - 2016-02-19 16:02 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten
2016-02-17 18:11 - 2016-02-17 18:11 - 00026296 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Abrechnung_4475958910292900_20160214.PDF
2016-02-17 17:44 - 2016-02-17 17:45 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Office
2016-02-17 17:42 - 2016-02-21 16:24 - 00425472 _____ (Steganos GmbH) C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\LockNote105.exe
2016-02-17 17:40 - 2016-02-18 16:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2016-02-17 17:40 - 2016-02-17 17:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-02-17 17:39 - 2016-02-17 17:39 - 00000000 ____D C:\Windows\PCHEALTH
2016-02-17 17:36 - 2016-02-17 17:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft Help
2016-02-17 17:36 - 2016-02-17 17:36 - 00000000 ____D C:\Program Files\Microsoft Office
2016-02-17 17:35 - 2016-02-17 17:35 - 00000000 __RHD C:\MSOCache
2016-02-17 17:15 - 2016-02-17 21:20 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\ElevatedDiagnostics
2016-02-17 17:14 - 2016-02-17 17:14 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kaspersky
2016-02-17 17:12 - 2016-02-17 17:12 - 00002026 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Editor.lnk
2016-02-17 17:11 - 2016-02-17 17:11 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\WildTangent
2016-02-17 16:59 - 2016-02-17 16:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2016-02-17 16:59 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2016-02-17 16:58 - 2016-02-26 09:01 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-02-17 16:58 - 2016-02-25 08:45 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-02-17 16:58 - 2016-02-17 17:21 - 00934272 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2016-02-17 16:58 - 2016-02-17 17:21 - 00181640 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2016-02-17 16:58 - 2016-02-17 17:04 - 00227512 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2016-02-17 16:58 - 2016-02-17 16:58 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2016-02-17 16:43 - 2015-07-09 20:38 - 01996288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0007.dll
2016-02-17 16:43 - 2015-07-09 20:36 - 12039680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsLexicons0007.dll
2016-02-17 16:43 - 2015-07-09 20:26 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0007.dll
2016-02-17 16:43 - 2015-07-09 20:25 - 12039680 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0007.dll
2016-02-17 16:43 - 2015-07-09 20:25 - 11602944 _____ (Microsoft Corporation) C:\Windows\system32\prm0007.dll
2016-02-17 16:42 - 2016-02-17 16:48 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Mozilla
2016-02-17 16:42 - 2016-02-17 16:42 - 00001049 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2016-02-17 16:42 - 2016-02-17 16:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla
2016-02-17 16:41 - 2016-02-17 16:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-02-17 16:36 - 2016-02-17 16:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\awsRun
2016-02-17 16:33 - 2016-02-17 16:33 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Macromedia
2016-02-17 16:32 - 2016-02-17 20:11 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\MicrosoftEdge
2016-02-17 16:31 - 2016-02-17 16:31 - 00002439 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-02-17 16:31 - 2016-02-17 16:31 - 00000000 ___RD C:\Users\Gunther.DESKTOP-L5KOO87\OneDrive
2016-02-17 16:31 - 2016-02-17 16:31 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\NVIDIA
2016-02-17 16:28 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Adobe
2016-02-17 16:28 - 2016-02-17 16:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\DropboxOEM
2016-02-17 16:28 - 2016-02-17 16:28 - 00003628 _____ C:\Windows\System32\Tasks\ASUS Smart Gesture Launcher
2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\WebStorage
2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Publishers
2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\DropboxOEM
2016-02-17 16:27 - 2016-02-26 09:58 - 00000165 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\sp_data.sys
2016-02-17 16:27 - 2016-02-21 18:31 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87
2016-02-17 16:27 - 2016-02-21 15:35 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\VirtualStore
2016-02-17 16:27 - 2016-02-20 17:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Packages
2016-02-17 16:27 - 2016-02-17 16:27 - 00056952 _____ C:\Windows\system32\ASGCoInstaller_x64.dll
2016-02-17 16:27 - 2016-02-17 16:27 - 00016148 _____ C:\Windows\system32\DESKTOP-L5KOO87_defaultuser0_HistoryPrediction.bin
2016-02-17 16:27 - 2016-02-17 16:27 - 00000020 ___SH C:\Users\Gunther.DESKTOP-L5KOO87\ntuser.ini
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Vorlagen
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Startmenü
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Netzwerkumgebung
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Lokale Einstellungen
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Eigene Dateien
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Druckumgebung
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Videos
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Musik
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Bilder
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Verlauf
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Anwendungsdaten
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Anwendungsdaten
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\TileDataLayer
2016-02-17 16:24 - 2016-02-25 08:44 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-02-17 16:18 - 2015-12-09 04:39 - 00301728 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-02-26 10:00 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsNotifyTask_Administrator.job
2016-02-26 08:57 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsUpdateTask_Administrator.job
2016-02-26 08:50 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-26 08:50 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\AppReadiness
2016-02-25 12:00 - 2015-11-11 08:02 - 00003544 _____ C:\Windows\System32\Tasks\ASUS Live Update1
2016-02-25 12:00 - 2015-11-11 08:02 - 00003534 _____ C:\Windows\System32\Tasks\ASUS Live Update2
2016-02-25 09:27 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp
2016-02-25 09:26 - 2015-07-10 17:27 - 00000000 ____D C:\Windows\OCR
2016-02-25 08:44 - 2015-11-11 08:51 - 00000000 __SHD C:\Users\Gunther\IntelGraphicsProfiles
2016-02-24 18:40 - 2015-08-18 14:14 - 00773778 _____ C:\Windows\system32\perfh007.dat
2016-02-24 18:40 - 2015-08-18 14:14 - 00154590 _____ C:\Windows\system32\perfc007.dat
2016-02-24 18:40 - 2015-08-18 06:20 - 01790124 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-24 18:40 - 2015-07-10 12:02 - 00000000 ____D C:\Windows\INF
2016-02-23 17:55 - 2015-11-11 07:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-02-21 17:22 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-21 17:22 - 2015-07-10 13:20 - 00232392 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-21 17:22 - 2015-07-10 10:05 - 00131072 ___SH C:\Windows\system32\config\BBI
2016-02-21 15:29 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-02-21 10:37 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\rescache
2016-02-21 10:34 - 2015-08-18 14:13 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-02-21 10:34 - 2015-07-10 17:30 - 00000000 ____D C:\Program Files\Windows Journal
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\winrm
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\WCN
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\winrm
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\WCN
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\slmgr
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\F12
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\F12
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\dsc
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\MiracastView
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\DevicesFlow
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\oobe
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\MUI
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\Com
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\oobe
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\MUI
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\migwiz
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\Com
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\IME
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Help
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Defender
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\System
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Sysprep
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Dism
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\servicing
2016-02-21 09:55 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\en-GB
2016-02-21 09:55 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\en-GB
2016-02-21 08:56 - 2015-11-11 07:39 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-20 16:54 - 2015-07-10 12:04 - 00000150 _____ C:\Windows\win.ini
2016-02-20 11:49 - 2015-07-10 12:04 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-02-20 10:26 - 2015-11-11 08:02 - 00000000 ____D C:\Program Files\DIFX
2016-02-20 10:25 - 2015-08-18 14:00 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-02-19 20:10 - 2015-11-11 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-02-19 19:43 - 2015-11-11 10:41 - 00000000 ___HD C:\$SysReset
2016-02-19 16:40 - 2015-11-11 08:23 - 00001732 _____ C:\Users\Public\Desktop\WPS Office.lnk
2016-02-19 15:16 - 2015-11-11 07:36 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\PurchaseDialog
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\appraiser
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Provisioning
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\L2Schemas
2016-02-18 19:53 - 2015-08-18 15:00 - 00000000 ____D C:\Windows\Panther
2016-02-18 19:48 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT
2016-02-18 16:26 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2016-02-18 12:51 - 2015-07-10 11:59 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2016-02-18 12:51 - 2015-07-10 11:59 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2016-02-18 12:51 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2016-02-18 08:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\appcompat
2016-02-17 17:40 - 2015-08-18 06:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-02-17 17:36 - 2015-07-10 17:30 - 00000000 ____D C:\Windows\ShellNew
2016-02-17 17:21 - 2015-06-26 23:58 - 00087944 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klwfp.sys
2016-02-17 17:21 - 2015-06-08 19:43 - 00041352 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klpd.sys
2016-02-17 16:59 - 2015-11-11 09:08 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2016-02-17 16:59 - 2015-07-10 10:05 - 00032768 ___SH C:\Windows\system32\config\ELAM
2016-02-17 16:58 - 2015-07-10 12:04 - 00000000 ___HD C:\Windows\ELAMBKUP
2016-02-17 16:57 - 2015-11-11 08:07 - 00000000 ____D C:\ProgramData\McAfee
2016-02-17 16:57 - 2015-11-11 08:07 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-02-17 16:50 - 2015-11-11 08:51 - 00000000 ____D C:\Users\Gunther
2016-02-17 16:42 - 2015-11-11 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-17 16:33 - 2015-08-18 06:27 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-02-17 16:27 - 2015-11-11 08:53 - 00000000 ____D C:\ProgramData\SetupTPDriver
2016-02-17 16:25 - 2015-11-11 08:50 - 00000000 ____D C:\ProgramData\USBChargerPlus
2016-02-02 23:47 - 2015-08-18 06:34 - 00828920 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-02-02 23:47 - 2015-08-18 06:34 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-02-18 11:26 - 2012-04-12 14:25 - 0539136 _____ (Microsoft Corporation) C:\Program Files (x86)\spider.exe
2016-02-17 16:27 - 2016-02-26 09:58 - 0000165 _____ () C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\sp_data.sys
2016-02-21 15:38 - 2016-02-21 15:45 - 0000017 ____H () C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\19720201.dat
2015-11-11 07:51 - 2015-11-11 07:51 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-01-26 09:02 - 2016-01-26 09:02 - 0010346 _____ () C:\ProgramData\regid.1996-09.com.picotech_{d03e5488-efee-4362-98cf-72f093b918f0}.swidtag

Einige Dateien in TEMP:
====================
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\cfuapir2.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\d5wc5ovy.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\DRHelper_installFinish.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\DRHelper_installStart.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\DRHelper_uninstallComplete.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\ICReinstall_adobe_flash_player.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\ICReinstall_Microsoft-Spiele-x64.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\McCSPInstall.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\mccspuninstall.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\ose00000.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\pzunzahz.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\QC27khC3Gx.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\sf3ldbaj.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\tmp-drivermax10195779.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-18 06:02

==================== Ende von FRST.txt ============================

Hier die Datei Addition.txt:FRST Additions Logfile:
Code:

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:21-02-2016 01
durchgeführt von Gunther (2016-02-26 10:02:59)
Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
Windows 10 Home (X64) (2016-02-17 15:23:58)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2421830386-3516612503-909366600-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2421830386-3516612503-909366600-503 - Limited - Disabled)
Gast (S-1-5-21-2421830386-3516612503-909366600-501 - Limited - Disabled)
Gunther (S-1-5-21-2421830386-3516612503-909366600-1001 - Administrator - Enabled) => C:\Users\Gunther.DESKTOP-L5KOO87

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20059 - Adobe Systems Incorporated)
ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.6 - ASUS)
ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.5 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.5 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
Atmel USB (HKLM-x32\...\{E8F8861D-98E0-43FF-9E48-AC236CC3BE4E}) (Version: 10.6 - Atmel)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.105 - ICEpower a/s)
Avast SecureLine for Asustek (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.239.3 - AVAST Software)
BASCOM-AVR (HKLM-x32\...\{47F94730-ABD2-47F6-920E-EA8CDB6DD0C6}_is1) (Version: 2.0.7.5 - MCS Electronics)
Command & Conquer™ Red Alert, Counterstrike and The Aftermath (HKLM-x32\...\{B9A7CCBE-48F7-4B3E-BD20-76ADDD4DC69F}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Tiberian Sun™ and Firestorm™ (HKLM-x32\...\{78F60BDD-1923-4CF7-B6BD-087D06D7B5BB}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
DesignCAD 22 (HKLM-x32\...\{C5C61F02-1453-48A1-947E-8BC9F6812F8E}) (Version: 22.0.0 - IMSIDesign)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.)
DVBViewer Pro (HKLM-x32\...\DVBViewer Pro_is1) (Version: 5.5.2.0 - CM&V)
Evernote v. 5.8.6 (HKLM-x32\...\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}) (Version: 5.8.6.7519 - Evernote Corp.)
Fugawi 4.5 (HKLM-x32\...\Fugawi45_is1) (Version: 4.5 - Northport Systems Inc.)
Fugawi Google Earth Plug-in Version 1.1.0.4 (HKLM-x32\...\Fugawi45_GE_is1) (Version: 4.5 - Northport Systems Inc.)
FugVS2005 (HKLM-x32\...\{0C8364B1-AFD8-45B7-ACE8-B76113B6C418}) (Version: 1.0.0 - Northport Systems Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4300 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 73 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JLink OB CDC Driver Package (HKLM\...\{CD0E9FFE-70DD-47E3-A7A5-750E9DE6F40B}) (Version: 1.2.1 - SEGGER)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden
LAV Filters 0.67 (HKLM-x32\...\lavfilters_is1) (Version: 0.67 - Hendrik Leppkes)
LogView V2 (HKLM-x32\...\LogView V2) (Version: LogView V2 2 - LogView.info - D.Schmidt / H.Hemmecke)
LogView V2 2 (HKU\S-1-5-21-2421830386-3516612503-909366600-1001\...\LogView V2 2) (Version: 2 - LogView.info)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Flight Simulator 2004 - Das Jahrhundert der Luftfahrt (HKLM-x32\...\Flight Simulator 9.0) (Version: 9.0 - Microsoft)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Shell (Isolated) - ENU (HKLM-x32\...\{D64B6984-242F-32BC-B008-752806E5FC44}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 44.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2 - Mozilla)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.7 - F.J. Wechselberger)
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
NVIDIA Graphics Driver 353.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.84 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.11.5.17432 - Electronic Arts, Inc.)
Paint Shop Pro 5.01 (HKLM-x32\...\Paint Shop Pro 5.01) (Version:  - )
Pico Technology Beta SDK 64-bit (HKLM-x32\...\{da5e6d88-b17c-44cb-a5f9-bf1b5948aef8}) (Version: 10.6.11.23 - Pico Technology Ltd)
Pico Technology Beta SDK 64-bit (Version: 10.6.11.23 - Pico Technology Ltd) Hidden
PicoScope 6 (HKLM-x32\...\{fe3cc74a-a370-4be1-8daf-90355086e1f4}) (Version: 6.11.10 - Pico Technology)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31213 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.)
SpyHunter 4 (HKLM-x32\...\SpyHunter) (Version: 4.21.18.4608 - Enigma Software Group, LLC)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.2 - VideoLAN)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.2.524 - ASUS Cloud Corporation)
WestwoodChat (HKLM-x32\...\{7CAE6A67-AF7B-4A6A-8705-8AFACA45BB60}) (Version: 1.0.0.0 - WestwoodChat)
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.16 - WildTangent)
Windows-Treiberpaket - ASUS (ATP) Mouse  (06/17/2015 6.0.0.66) (HKLM\...\1EFB54678773735560B565BE7FA6F2BCC557EE21) (Version: 06/17/2015 6.0.0.66 - ASUS)
Windows-Treiberpaket - Segger (jlink_ob_x64) USB  (03/13/2012 2.6.6.2) (HKLM\...\6D4C34D12E9233ABADF9D04ADF9E288A7ECF3B5B) (Version: 03/13/2012 2.6.6.2 - Segger)
Windows-Treiberpaket - SEGGER (usbser) Ports  (01/25/2012 6.0.2600.4) (HKLM\...\BD6BF8BBF7BE0D0091163F649A1A423B7EB9D4F1) (Version: 01/25/2012 6.0.2600.4 - SEGGER)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
WPS Office for ASUS (HKLM-x32\...\Kingsoft Office) (Version: 9.1.0.4947 - Kingsoft Corp.)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2421830386-3516612503-909366600-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0F71139B-44DA-4814-95B3-36544058B19C} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] ()
Task: {16C0F2CB-05FF-42DC-B079-DCDC8E771142} - System32\Tasks\WpsUpdateTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {265A3230-80C1-46DE-871D-6D0FE4A72A99} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-18] (Google Inc.)
Task: {2676E35B-A115-4EAD-9303-94D32321AE26} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.)
Task: {2D2B9505-7A05-4A59-A05C-3505E92E3AC8} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.)
Task: {37600127-75F6-4D0E-AB73-1557C66DB28E} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {402CA532-759F-4D1B-A63F-7B136F42AC1D} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
Task: {42DDF692-C8FF-4705-ABD1-EF4E97066915} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-08-23] (AsusTek)
Task: {47B485D9-1AC5-4DE9-BEE0-A56921B2021A} - System32\Tasks\WpsNotifyTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {65CE6C8D-F24B-4FBE-97BA-E23A8109A886} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-02-18] (Microsoft Corporation)
Task: {80875153-D0CA-4A0A-9947-BCF3BF2007D0} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-08-12] ()
Task: {80C44CD8-38C9-488D-8935-B27061176C6C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {858130DF-8325-4F32-8E9C-56C190671AFC} - System32\Tasks\Microsoft\Office\Microsoft Office Touchless Attach Notification => C:\Program Files (x86)\Microsoft Office\Office15\FirstRun.exe [2015-03-14] (Microsoft Corporation)
Task: {8EBD672F-3CE9-4F4F-AE48-C0C1AB17EAF5} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {9DD4AD4D-DC0D-4826-B61A-46025A6F398C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-18] (Google Inc.)
Task: {A9871C1C-7FA9-4094-9760-69F1EA4F5C91} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS)
Task: {AFA1BF32-F765-406A-AF10-1B2967A4442B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-07-29] (Realtek Semiconductor)
Task: {CC5EAE02-3FB5-4F7A-B4D4-B55F51724A9E} - System32\Tasks\{FCC43C23-C686-4530-BB4D-97C7E689F677} => pcalua.exe -a C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\avrispmkii_libusb-win32_1.2.1.0\avrispmkii_libusb-win32_1.2.1.0\installer_x86.exe -d C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\avrispmkii_libusb-win32_1.2.1.0\avrispmkii_libusb-win32_1.2.1.0
Task: {D3EF1604-81D4-429F-8F4F-B58B7F7D3E18} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.)
Task: {DEA915F7-74D4-4B8F-BABD-86723BDCC2B1} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-07-29] (Realtek Semiconductor)
Task: {DEE7A683-A2E0-4371-B9CA-3A7A637B2562} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2015-04-29] (AVAST Software)
Task: {F25573CF-40E1-4DE9-8EA5-391037769186} - System32\Tasks\DriverMaxAgent => C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\WpsNotifyTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe
Task: C:\Windows\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\Public\Desktop\WPS Office.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\office6\launcher.exe (Zhuhai Kingsoft Office Software Co.,Ltd) -> "hxxp://esurf.biz/?ssid=1455896353&a=1046395&src=sh&uuid=cf6b077e-f8ca-4141-a6c3-2762a5345dee"

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-18 06:25 - 2015-07-15 03:04 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll
2016-02-18 16:28 - 2015-08-11 10:14 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll
2015-11-11 08:06 - 2015-04-29 18:04 - 00445240 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
2015-11-11 07:48 - 2015-08-07 18:18 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\System32\CoreUIComponents.dll
2015-10-09 10:13 - 2015-10-06 10:03 - 00395368 _____ () C:\Windows\system32\igfxTray.exe
2016-02-18 16:28 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 11:59 - 2015-07-10 11:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2016-02-18 16:29 - 2015-11-25 05:20 - 06569472 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-02-18 16:29 - 2015-11-25 05:17 - 00471040 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-02-18 16:29 - 2015-11-25 05:17 - 01808384 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-02-18 16:29 - 2015-09-17 06:43 - 02274816 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 12:00 - 2015-07-10 17:29 - 00210432 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2016-02-17 17:23 - 2016-02-17 17:23 - 00015872 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-02-17 17:23 - 2016-02-17 17:23 - 14869504 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-02-17 17:22 - 2016-02-17 17:23 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-02-18 09:53 - 2016-02-18 09:53 - 09789952 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2016.27.2.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2015-08-12 20:44 - 2015-08-12 20:44 - 00012288 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe
2015-07-08 23:18 - 2015-07-08 23:18 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kpcengine.2.3.dll
2015-08-07 02:09 - 2015-08-07 02:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-11-11 07:48 - 2015-07-24 05:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 01016832 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00028160 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00029696 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00256000 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00266240 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00346112 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00243200 _____ () C:\Program Files (x86)\Origin\mediaservice\wmfengine.dll
2015-11-11 08:06 - 2015-04-29 18:04 - 38561984 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll
2013-04-27 11:24 - 2013-04-27 11:24 - 00071680 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\checkmetro.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\TEMP:6B0023F8

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-07-10 12:04 - 2015-07-10 12:02 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\asus\wallpapers\asus.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{DF8AD133-C2FF-4C30-8618-E3E9B17D5499}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe
FirewallRules: [{985BE3A6-760C-48B6-8274-D904C621EF53}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe
FirewallRules: [{4B62578A-269D-4C39-AC91-85875738831E}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{EDD1EEA3-DAF2-4D8A-A24F-D306AC1A08C5}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{CE0848E4-9186-43C5-B6E0-EF43EDE445D1}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe
FirewallRules: [{51C45640-ADB0-4D34-918A-842910FAD03E}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe
FirewallRules: [{FFC3D9CF-365E-482F-8901-BE3E08697A66}] => (Allow) C:\Program Files (x86)\SprgFiles\SprgFiles.exe
FirewallRules: [{C6CC372F-7162-40B1-833D-CBDA05E5BFE2}] => (Allow) C:\Program Files (x86)\SprgFiles\SprgFiles.exe
FirewallRules: [{5005B685-36C4-4F40-B872-2BEECCD325C4}] => (Allow) C:\Program Files (x86)\SprgFiles\downloader.exe
FirewallRules: [{82AFB31B-8E78-4BDA-B2B8-80A1E9C2D4C6}] => (Allow) C:\Program Files (x86)\SprgFiles\downloader.exe
FirewallRules: [{32E42A9B-AFB8-485E-B1F5-69629C55AAAF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EC13B03C-CF42-42D9-A8CE-4299E35BFD6C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Wiederherstellungspunkte =========================

20-02-2016 10:25:19 Installed Atmel USB
21-02-2016 10:31:53 Sprachpaketdeinstallation
23-02-2016 16:45:46 Installed AVRStudio4
25-02-2016 09:05:02 DesignCAD 22 wurde installiert.

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (02/26/2016 08:44:30 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-L5KOO87)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (02/25/2016 06:48:13 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm RA95.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1ee8

Startzeit: 01d16fee169eb654

Beendigungszeit: 4294967295

Anwendungspfad: C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95.exe

Berichts-ID: eeef2206-dbe7-11e5-9be0-2c56dc295e0b

Vollständiger Name des fehlerhaften Pakets:

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (02/25/2016 06:00:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Mahjong.exe, Version: 0.0.0.0, Zeitstempel: 0x4343a05e
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10240.16683, Zeitstempel: 0x56ad9358
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0003d16e
ID des fehlerhaften Prozesses: 0x1fd4
Startzeit der fehlerhaften Anwendung: 0xMahjong.exe0
Pfad der fehlerhaften Anwendung: Mahjong.exe1
Pfad des fehlerhaften Moduls: Mahjong.exe2
Berichtskennung: Mahjong.exe3
Vollständiger Name des fehlerhaften Pakets: Mahjong.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Mahjong.exe5

Error: (02/25/2016 05:41:06 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-L5KOO87)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (02/25/2016 11:28:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-L5KOO87)
Description: Bei der Aktivierung der App „Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (02/25/2016 11:28:26 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-L5KOO87)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2147024865. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (02/25/2016 09:05:08 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (02/25/2016 08:47:30 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (2232) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (02/25/2016 08:47:30 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (2232) Der Versuch, die Datei "C:\Windows\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (02/25/2016 08:47:20 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (2232) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.


Systemfehler:
=============
Error: (02/26/2016 08:44:29 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-L5KOO87)
Description: App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca

Error: (02/25/2016 05:41:06 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-L5KOO87)
Description: App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca

Error: (02/25/2016 11:28:26 AM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-L5KOO87)
Description: "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:App.AppXwmnqm0nvq2b90pwvr42qmtdjp7cj3w82.mca31App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mcaNicht verfügbarNicht verfügbar

Error: (02/24/2016 06:39:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session4" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (02/24/2016 06:39:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _Session4" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (02/24/2016 06:39:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_Session4" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (02/24/2016 06:39:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session4" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (02/24/2016 12:53:14 PM) (Source: disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.

Error: (02/24/2016 12:53:12 PM) (Source: disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.

Error: (02/24/2016 10:03:53 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-L5KOO87)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Prozentuale Nutzung des RAM: 34%
Installierter physikalischer RAM: 8094.39 MB
Verfügbarer physikalischer RAM: 5270.98 MB
Summe virtueller Speicher: 10014.39 MB
Verfügbarer virtueller Speicher: 6654.47 MB

==================== Laufwerke ================================

Drive c: (OS) (Fixed) (Total:185.55 GB) (Free:109.27 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (DATA) (Fixed) (Total:279.46 GB) (Free:249.2 GB) NTFS
Drive f: (WINDOWS) (Fixed) (Total:149.41 GB) (Free:33 GB) NTFS
Drive g: (Data) (Fixed) (Total:148.28 GB) (Free:73.25 GB) NTFS
Drive h: (INTENSO) (Removable) (Total:29.28 GB) (Free:20.07 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 6110F75F)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 0C35AC9E)
Partition 1: (Active) - (Size=400 MB) - (Type=27)
Partition 2: (Not Active) - (Size=149.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=148.3 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 29.3 GB) (Disk ID: 6F20736B)
No partition Table on disk 2.
Disk 2 is a removable device.

==================== Ende von Addition.txt ============================

--- --- ---

burningice 26.02.2016 14:31

Schritt 1
Lade dir folgendes Programm herunter und installiere es: http://filepony.de/icon/tiny/malware...ti_malware.png Malwarebytes Anti-Malware Hier findest du dazu eine bebilderte Anleitung
  • Klicke auf die Einstellungen / Erkennung und Schutz und setze dabei den Haken bei "Nach Rootkits suchen"
  • Klicke im Anschluss auf Durchsuchen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Suchlaufprotokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 2
Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).


Schritt 3
Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.

Bitte poste in deiner nächsten Antwort also:
  • Logfile von AdwCleaner
  • Logfile von Malwarebytes
  • Frst.txt
  • Addition.txt

gzielos 26.02.2016 16:39

Hallo Rafael,
habe den ersten Durchlauf mit MBAM erledigt, scheinbar gibt's da was:
Ich weiß jetzt nicht, ob ich erstmal warten soll oder gleich mit den weiteren Schritten fortfahren.

Code:

Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlaufdatum: 26.02.2016
Suchlaufzeit: 15:46
Protokolldatei: File03.txt
Administrator: Ja

Version: 2.2.0.1024
Malware-Datenbank: v2016.02.26.04
Rootkit-Datenbank: v2016.02.17.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: Gunther

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 410331
Abgelaufene Zeit: 31 Min., 16 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 1
Hijack.AutoConfigURL.PrxySvrRST, HKU\S-1-5-21-2421830386-3516612503-909366600-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|AutoConfigUrl, hxxp://stop-block.org/wpad.dat?ccff5aa26c527adfe15c5d9946411f206451327, In Quarantäne, [aca0a7be158494a2bc66313a000439c7]

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 3
PUP.Optional.SpringFiles, C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\SpringFiles, In Quarantäne, [6fdd24414752cc6a751250a851b19c64],
PUP.Optional.DriverRestore, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverRestore, In Quarantäne, [80ccf86dc7d2d36327045da1ff03857b],
PUP.Optional.SpringFiles, C:\Program Files (x86)\SprgFiles, In Quarantäne, [78d43f263564be783d0309f510f2bc44],

Dateien: 8
PUP.Optional.383Media, C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\DRHelper_installFinish.exe, In Quarantäne, [dc70620396037cbaaa9b6d2d11f001ff],
PUP.Optional.383Media, C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\DRHelper_installStart.exe, In Quarantäne, [bd8f6302a8f1191d02437f1b05fc45bb],
PUP.Optional.383Media, C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\DRHelper_uninstallComplete.exe, In Quarantäne, [c28aa5c06237f83ecb7aebaf629fe51b],
PUP.Optional.InstallCore, C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\ICReinstall_adobe_flash_player.exe, In Quarantäne, [54f8c3a229703303f51b18df09f81de3],
PUP.Optional.InstallCore, C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\ICReinstall_Microsoft-Spiele-x64.exe, In Quarantäne, [04486df8c5d400361d6d27d01de47b85],
PUP.Optional.InstallCore, C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\adobe_flash_player.exe, In Quarantäne, [f05c2a3b77223df97a96c730f908926e],
PUP.Optional.InstallCore, C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Microsoft-Spiele-x64.exe, In Quarantäne, [0e3e3c29455454e21674599ebe4302fe],
PUP.Optional.SpringFiles, C:\Program Files (x86)\SprgFiles\Uninstall.exe, In Quarantäne, [78d43f263564be783d0309f510f2bc44],

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)


burningice 26.02.2016 19:10

go go go :taenzer:

gzielos 26.02.2016 20:04

Hallo Rafael,
hier das nächste File. Ich hatte zwar schon gedacht, dass nun alles gut wäre, aber leider kam gerade eben bei der Anwahl dieses Forums wieder eine unerwünschte Werbung:
"Hallo Windows-Nutzer, du hast gewonnen oder sowas". Na ja, hoffentlich ist das mal zuende...

Code:

# AdwCleaner v5.036 - Bericht erstellt am 26/02/2016 um 19:41:16
# Aktualisiert am 22/02/2016 von Xplode
# Datenbank : 2016-02-24.1 [Server]
# Betriebssystem : Windows 10 Home  (x64)
# Benutzername : Gunther - DESKTOP-L5KOO87
# Gestartet von : C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen\AdwCleaner_5.036.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****


***** [ Ordner ] *****

[-] Ordner Gelöscht : C:\Program Files (x86)\Innovative Solutions
[-] Ordner Gelöscht : C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Innovative Solutions
[-] Ordner Gelöscht : C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Innovative Solutions

***** [ Dateien ] *****


***** [ DLLs ] *****


***** [ Verknüpfungen ] *****

[-] Verknüpfung Desinfiziert : C:\Users\Public\Desktop\WPS Office.lnk
[-] Verknüpfung Desinfiziert : C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk

***** [ Aufgabenplanung ] *****


***** [ Registrierungsdatenbank ] *****

[-] Schlüssel Gelöscht : HKCU\Software\DriverRestore
[-] Schlüssel Gelöscht : HKCU\Software\eSupport.com

***** [ Internetbrowser ] *****


*************************

:: "Tracing" Schlüssel gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [1459 Bytes] - [26/02/2016 19:41:16]
C:\AdwCleaner\AdwCleaner[S1].txt - [1590 Bytes] - [26/02/2016 19:39:43]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1605 Bytes] ##########

Jetzt das neue FRST.txt - File (erster Teil):

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:21-02-2016 01
durchgeführt von Gunther (Administrator) auf DESKTOP-L5KOO87 (26-02-2016 19:59:10)
Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
Geladene Profile: Gunther (Verfügbare Profile: Gunther)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
() C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGiftBoxDesktop.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Zhuhai Kingsoft Office Software Co.,Ltd) C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe
() C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\SecureLine.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSPanel.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe [63272 2015-05-31] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595504 2016-01-29] (Oracle Corporation)
HKU\S-1-5-21-2421830386-3516612503-909366600-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-18] (Electronic Arts)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avast! SecureLine.lnk [2015-11-11]
ShortcutTarget: avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{db2c9de7-f35d-44c5-8037-6eea81e0d451}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus15.msn.com/?pc=ASTE
HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKU\S-1-5-21-2421830386-3516612503-909366600-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2421830386-3516612503-909366600-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-21] (Oracle Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-21] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)

FireFox:
========
FF ProfilePath: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\v07uout6.default
FF Homepage: hxxps://www.google.de/?gws_rd=ssl
about:preferences
FF Plugin: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-21] (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-18] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-15] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Extension: Simple Mail - C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\v07uout6.default\extensions\simplemail@telega.phpnet.us [2016-02-18]
FF Extension: Adblock Plus - C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\v07uout6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-24]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2016-02-17]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe [71168 2015-05-31] (ASUS Cloud Corporation) [Datei ist nicht signiert]
R2 ASUSGiftBoxDekstop; C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe [315704 2015-07-20] (ASUS)
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2016-02-17] (Kaspersky Lab ZAO)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1385640 2015-08-17] (Intel Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-04-14] (WildTangent)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [353896 2015-10-06] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
R2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe [133480 2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-18] (Electronic Arts)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [445240 2015-04-29] ()
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.5.471.0\McCSPServiceHost.exe" [X]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4317808 2015-07-14] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [97680 2015-08-17] (ASUS Corporation)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [53752 2015-08-17] (Intel Corporation)
R3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [50696 2015-08-17] (Intel Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-02-19] ()
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [261624 2015-08-17] (Intel Corporation)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [68280 2015-06-06] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [181640 2016-02-17] (AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [227512 2016-02-17] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [934272 2016-02-17] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39608 2015-06-11] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2016-02-17] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [87944 2016-02-17] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [52832 2016-02-20] (hxxp://libusb-win32.sourceforge.net)
S3 libusbK; C:\Windows\System32\drivers\libusbK.sys [47928 2016-02-20] (hxxp://libusb-win32.sourceforge.net)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-28] (Intel Corporation)
S3 PCTV_NTAMD64; C:\Windows\system32\DRIVERS\pctv4XXe_amd64.sys [571552 2016-02-21] (Pinnacle Systems GmbH)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek                                            )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [420440 2015-05-27] (Realsil Semiconductor Corporation)
S2 TVicPort; kein ImagePath
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [254976 2010-08-31] (Jungo)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-02-26 19:43 - 2016-02-26 19:43 - 00016148 _____ C:\Windows\system32\DESKTOP-L5KOO87_Gunther_HistoryPrediction.bin
2016-02-26 19:38 - 2016-02-26 19:41 - 00000000 ____D C:\AdwCleaner
2016-02-26 19:36 - 2016-02-26 19:36 - 01511936 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\AdwCleaner_5.036.exe
2016-02-26 15:43 - 2016-02-26 16:25 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-02-26 15:42 - 2016-02-26 15:42 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-02-26 15:42 - 2016-02-26 15:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-02-26 15:42 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-02-26 15:42 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-02-26 15:42 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-02-26 15:36 - 2016-02-26 15:37 - 22908888 _____ (Malwarebytes ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\mbam-setup-2.2.0.1024.exe
2016-02-25 09:06 - 2016-02-25 10:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\DesignCAD 22
2016-02-25 09:06 - 2016-02-25 10:36 - 00000000 ____D C:\ProgramData\TEMP
2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22
2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\ProgramData\IMSIDesign
2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\Program Files (x86)\IMSIDesign
2016-02-25 09:01 - 2016-02-25 09:01 - 52116093 _____ (Franzis Verlag GmbH ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\30812-0-DesignCAD-V22-Basistoolkit.exe
2016-02-24 09:36 - 2016-02-24 13:26 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\ATMEGA_Programmierung
2016-02-23 16:46 - 2016-02-26 16:19 - 00000000 ____D C:\Program Files (x86)\Atmel
2016-02-23 16:36 - 2016-02-23 16:37 - 05198040 _____ (akeo.ie) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\zadig_2.2.exe
2016-02-23 13:25 - 2016-02-23 13:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Mauer
2016-02-23 09:26 - 2016-02-26 19:59 - 00000000 ____D C:\FRST
2016-02-23 09:19 - 2016-02-26 19:56 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
2016-02-23 09:18 - 2016-02-23 09:18 - 02371072 _____ (Farbar) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\FRST64.exe
2016-02-22 13:53 - 2016-02-22 13:53 - 00048680 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\GDIPFONTCACHEV1.DAT
2016-02-22 10:20 - 2016-02-22 10:20 - 00000000 ____D C:\ProgramData\Brother
2016-02-22 10:19 - 2016-02-22 10:19 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\NetworkRepairTool
2016-02-22 10:18 - 2016-02-22 10:19 - 00983784 _____ (A.I.SOFT,INC.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Nettool_12140.EXE
2016-02-22 10:09 - 2016-02-22 10:09 - 00000034 _____ C:\Windows\SysWOW64\BD2040.DAT
2016-02-22 09:49 - 2016-02-26 15:30 - 00004174 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BF62B9E7-975F-45F1-9CC0-00F0D4052F41}
2016-02-22 08:05 - 2016-02-22 08:06 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Audacity
2016-02-22 08:05 - 2016-02-22 08:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Audacity
2016-02-22 08:04 - 2016-02-22 08:05 - 00000000 ____D C:\Program Files (x86)\Audacity
2016-02-22 08:04 - 2016-02-22 08:04 - 00001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2016-02-21 17:54 - 2016-02-21 17:54 - 00002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk
2016-02-21 17:54 - 2016-02-21 17:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Google
2016-02-21 17:53 - 2016-02-21 17:53 - 00987728 _____ (Google Inc.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\GoogleEarthSetup.exe
2016-02-21 17:44 - 2016-02-21 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi
2016-02-21 17:44 - 2016-02-21 17:44 - 00001107 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Fugawi Global Navigator 4.5.LNK
2016-02-21 17:43 - 2016-02-21 17:43 - 00000000 ____D C:\Program Files (x86)\Fugawi
2016-02-21 17:10 - 2016-02-21 17:44 - 00000037 _____ C:\Windows\iltwain.ini
2016-02-21 15:38 - 2016-02-21 15:45 - 00000017 ____H C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\19720201.dat
2016-02-21 15:35 - 2016-02-21 18:04 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Fugawi
2016-02-21 15:35 - 2016-02-21 17:44 - 00000000 ____D C:\ProgramData\Fugawi
2016-02-21 15:35 - 2016-02-21 15:51 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Fugawi
2016-02-21 15:35 - 2016-02-21 15:35 - 00000000 ____D C:\Program Files (x86)\Earth Resource Mapping
2016-02-21 15:35 - 2016-02-21 15:35 - 00000000 _____ C:\Windows\Lmvk32.INI
2016-02-21 15:35 - 2003-03-18 19:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2016-02-21 15:35 - 2003-02-21 03:42 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2016-02-21 15:35 - 2002-01-05 04:48 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll
2016-02-21 15:35 - 2002-01-05 04:36 - 00964608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll
2016-02-21 15:32 - 2016-02-21 15:32 - 55326352 _____ (Northport Systems Inc. ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\fugawi45565615.exe
2016-02-21 13:13 - 2016-02-22 16:39 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.mediathek3
2016-02-21 13:13 - 2016-02-21 13:13 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Sun
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Sun
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.oracle_jre_usage
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Oracle
2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\ProgramData\Oracle
2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\Program Files\Java
2016-02-21 13:07 - 2016-02-21 13:12 - 57099360 _____ (Oracle Corporation) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\jre-8u73-windows-x64.exe
2016-02-21 12:24 - 2016-02-21 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
2016-02-21 12:24 - 2016-02-21 12:24 - 00000000 ____D C:\Program Files (x86)\LAV Filters
2016-02-21 12:23 - 2016-02-21 12:23 - 09532984 _____ (1f0.de ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\LAVFilters-0.67-Installer.exe
2016-02-21 12:21 - 2016-02-21 12:21 - 07185389 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\LAVFilters-0.67-x64.zip
2016-02-21 12:13 - 2016-02-21 12:13 - 00318223 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_Filter_3_8_1.zip
2016-02-21 10:09 - 2016-02-21 10:09 - 00571552 _____ (Pinnacle Systems GmbH) C:\Windows\system32\Drivers\pctv4XXe_amd64.sys
2016-02-21 10:03 - 2016-02-21 10:06 - 00000000 ____D C:\Program Files (x86)\DVBViewer
2016-02-21 10:03 - 2016-02-21 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer
2016-02-21 10:03 - 2016-02-21 10:03 - 00000000 ____D C:\ProgramData\CMUV
2016-02-21 10:00 - 2016-02-21 12:30 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\DVBViewer
2016-02-21 09:58 - 2016-02-21 09:58 - 01082553 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_GE_Anleitung.zip
2016-02-21 09:57 - 2016-02-21 09:57 - 07436126 _____ (CM&V ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_setup.exe
2016-02-21 09:55 - 2016-02-21 09:55 - 00001024 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\9DD6626F58261648.dvbvkey
2016-02-21 09:26 - 2016-02-21 09:26 - 00000706 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Geräte - Shortcut.lnk
2016-02-21 09:05 - 2016-02-21 09:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Pico Technology
2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Downloaded Installations
2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pico Technology
2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\Program Files (x86)\Pico Technology
2016-02-21 08:57 - 2016-02-21 08:57 - 00000000 ____D C:\Program Files\Pico Technology
2016-02-20 17:27 - 2016-02-20 17:27 - 111098163 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Microsoft-Spiele-x64.zip
2016-02-20 17:03 - 2016-02-26 17:48 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\MyPhoneExplorer
2016-02-20 17:03 - 2016-02-20 17:03 - 00002128 _____ C:\Users\Public\Desktop\MyPhoneExplorer.lnk
2016-02-20 17:03 - 2016-02-20 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer
2016-02-20 17:03 - 2016-02-20 17:03 - 00000000 ____D C:\Program Files (x86)\MyPhoneExplorer
2016-02-20 17:01 - 2016-02-20 17:02 - 07886000 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\MyPhoneExplorer_Setup_1.8.7.exe
2016-02-20 15:24 - 2016-02-20 15:24 - 00003668 _____ C:\Windows\System32\Tasks\{FCC43C23-C686-4530-BB4D-97C7E689F677}
2016-02-20 15:23 - 2016-02-20 15:23 - 00000000 ____D C:\ProgramData\VS
2016-02-20 15:18 - 2016-02-20 15:18 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010
2016-02-20 15:18 - 2016-02-20 15:18 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010
2016-02-20 12:53 - 2016-02-20 12:53 - 00003758 _____ C:\Windows\System32\Tasks\DriverMaxAgent
2016-02-20 11:49 - 2016-02-26 19:41 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-02-20 11:49 - 2016-02-20 12:59 - 00067680 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusb0.dll
2016-02-20 11:49 - 2016-02-20 12:59 - 00052832 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusb0.sys
2016-02-20 11:49 - 2016-02-20 11:58 - 00099128 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusbK.dll
2016-02-20 11:49 - 2016-02-20 11:58 - 00084280 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusbK.dll
2016-02-20 11:49 - 2016-02-20 11:58 - 00076384 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusb0.dll
2016-02-20 11:49 - 2016-02-20 11:58 - 00047928 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusbK.sys
2016-02-20 11:49 - 2016-02-20 11:55 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\usb_driver
2016-02-20 11:49 - 2016-02-20 11:49 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2016-02-20 11:36 - 2016-02-20 11:36 - 00000000 ____D C:\ProgramData\Atmel
2016-02-20 10:37 - 2016-02-20 10:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft Corporation
2016-02-20 10:32 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\VisualAssist
2016-02-20 10:32 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\VisualAssist
2016-02-20 10:32 - 2016-02-20 10:32 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\IsolatedStorage
2016-02-20 10:31 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Atmel
2016-02-20 10:27 - 2016-02-20 10:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Atmel Studio
2016-02-20 10:27 - 2016-02-20 10:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Atmel
2016-02-20 10:27 - 2016-02-20 10:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Atmel
2016-02-20 10:26 - 2016-02-20 10:26 - 00000000 ____D C:\Program Files\Seggger
2016-02-20 10:25 - 2016-02-20 10:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0
2016-02-20 10:25 - 2010-08-31 13:23 - 00254976 _____ (Jungo) C:\Windows\system32\Drivers\windrvr6.sys
2016-02-20 10:25 - 2010-01-17 20:13 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi1011.dll
2016-02-20 10:25 - 2009-09-02 11:48 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1010.dll
2016-02-20 10:25 - 2009-07-14 10:07 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1002.dll
2016-02-20 10:25 - 2009-05-14 13:21 - 00157184 _____ (Jungo) C:\Windows\SysWOW64\wdapi1001.dll
2016-02-20 10:25 - 2008-07-04 09:51 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi921.dll
2016-02-20 10:25 - 2006-10-18 15:39 - 00141824 _____ (Jungo) C:\Windows\SysWOW64\wdapi811.dll
2016-02-20 10:24 - 2016-02-20 10:24 - 00000000 ____D C:\Program Files\Microsoft Help Viewer
2016-02-20 10:24 - 2016-02-20 10:24 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Windows\SysWOW64\1033
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Visual Studio 2010
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-02-20 09:37 - 2016-02-20 09:37 - 00000771 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte - Shortcut.lnk
2016-02-20 09:32 - 2016-02-20 09:32 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte
2016-02-20 09:29 - 2016-02-20 09:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\MCS Electronics
2016-02-20 09:28 - 2016-02-20 09:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\MCS Electronics
2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\MCS Electronics
2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics
2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\Program Files (x86)\MCS Electronics
2016-02-19 20:10 - 2016-02-19 20:10 - 00001230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-02-19 20:10 - 2016-02-19 20:10 - 00001218 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-02-19 17:41 - 2016-02-19 17:41 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
2016-02-19 17:41 - 2016-02-19 17:41 - 00003450 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Enigma Software Group
2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 ____D C:\sh4ldr
2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 _____ C:\autoexec.bat
2016-02-19 13:43 - 2016-02-19 13:43 - 00003972 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-02-19 13:43 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Adobe
2016-02-19 13:43 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\CEF
2016-02-19 13:42 - 2016-02-19 13:45 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-02-19 13:42 - 2016-02-19 13:44 - 00000000 ____D C:\ProgramData\Adobe
2016-02-19 13:42 - 2016-02-19 13:42 - 00002126 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-02-19 13:42 - 2016-02-19 13:42 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-02-19 13:41 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Adobe
2016-02-19 10:06 - 2016-02-19 10:06 - 00000000 ____D C:\Windows\system32\SleepStudy
2016-02-18 19:57 - 2016-02-26 18:02 - 00001144 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-18 19:57 - 2016-02-18 19:57 - 00004202 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-18 19:57 - 2016-02-18 19:57 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Google
2016-02-18 19:56 - 2016-02-26 19:44 - 00001140 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-18 19:56 - 2016-02-21 17:54 - 00000000 ____D C:\Program Files (x86)\Google
2016-02-18 19:56 - 2016-02-18 19:56 - 00003970 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-18 19:53 - 2016-02-18 19:53 - 00000764 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Arbeitsdateien - Shortcut.lnk
2016-02-18 19:50 - 2016-02-18 19:50 - 00000675 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\GPS - Shortcut.lnk
2016-02-18 19:49 - 2016-02-18 19:49 - 00000780 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kranich_Projekte - Shortcut.lnk
2016-02-18 19:43 - 2016-02-18 19:43 - 00000707 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\TK102-2 -Shortcut.lnk
2016-02-18 19:33 - 2016-02-22 08:07 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio
2016-02-18 18:46 - 2016-02-18 18:46 - 31367109 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\vlc-2.2.2-win64.exe
2016-02-18 16:44 - 2016-02-18 16:47 - 00000000 ____D C:\Windows\system32\MRT
2016-02-18 16:44 - 2016-02-18 16:44 - 146614896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-02-18 16:33 - 2016-02-18 16:33 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-02-18 16:33 - 2016-02-18 16:33 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-02-18 16:30 - 2016-01-31 07:23 - 02601160 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2016-02-18 16:30 - 2016-01-31 07:04 - 01811360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2016-02-18 16:30 - 2016-01-31 06:38 - 21873152 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-02-18 16:30 - 2016-01-31 06:34 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll
2016-02-18 16:30 - 2016-01-31 06:33 - 24593920 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 12504576 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-02-18 16:30 - 2016-01-31 06:23 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-02-18 16:30 - 2016-01-31 06:22 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2016-02-18 16:30 - 2016-01-31 06:17 - 19324928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-02-18 16:30 - 2016-01-31 06:17 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2016-02-18 16:30 - 2016-01-31 06:14 - 07525376 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-02-18 16:30 - 2016-01-31 06:14 - 03588096 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-02-18 16:30 - 2016-01-31 06:13 - 04791808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-02-18 16:30 - 2016-01-31 06:11 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-02-18 16:30 - 2016-01-31 06:07 - 18802176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-02-18 16:30 - 2016-01-31 06:04 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2016-02-18 16:30 - 2016-01-31 06:02 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-02-18 16:30 - 2016-01-31 06:00 - 11263488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-02-18 16:30 - 2016-01-31 05:59 - 05457408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-02-18 16:30 - 2016-01-05 04:06 - 08022368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-02-18 16:30 - 2016-01-05 04:06 - 01063504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-02-18 16:30 - 2016-01-05 04:06 - 00119800 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-02-18 16:30 - 2016-01-05 04:04 - 02824248 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-02-18 16:30 - 2016-01-05 03:30 - 00882208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-02-18 16:30 - 2016-01-05 03:30 - 00100712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-02-18 16:30 - 2016-01-05 03:28 - 02445128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-02-18 16:30 - 2016-01-05 03:09 - 01234944 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-02-18 16:30 - 2016-01-05 02:57 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-02-18 16:30 - 2016-01-05 02:57 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-02-18 16:30 - 2016-01-05 02:29 - 00650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-02-18 16:30 - 2016-01-05 02:29 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-02-18 16:30 - 2016-01-05 02:26 - 00373760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-02-18 16:30 - 2015-11-25 06:40 - 00516448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2016-02-18 16:30 - 2015-11-25 05:49 - 01569280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2016-02-18 16:30 - 2015-11-25 05:30 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-02-18 16:30 - 2015-11-25 05:30 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2016-02-18 16:30 - 2015-11-25 05:22 - 01383424 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-02-18 16:30 - 2015-11-25 05:18 - 01233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2016-02-18 16:30 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2016-02-18 16:30 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-02-18 16:30 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-02-18 16:30 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-02-18 16:30 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2016-02-18 16:30 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2016-02-18 16:30 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-02-18 16:30 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2016-02-18 16:30 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-02-18 16:30 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-02-18 16:30 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-02-18 16:30 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-02-18 16:30 - 2015-09-17 07:48 - 02432336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-02-18 16:30 - 2015-09-17 07:48 - 00406864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-02-18 16:30 - 2015-09-17 07:06 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll
2016-02-18 16:30 - 2015-09-17 07:06 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2016-02-18 16:30 - 2015-09-17 07:03 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2016-02-18 16:30 - 2015-09-17 07:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2016-02-18 16:30 - 2015-09-17 06:55 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll
2016-02-18 16:30 - 2015-09-17 06:52 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2016-02-18 16:30 - 2015-09-17 06:52 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-02-18 16:30 - 2015-09-17 06:51 - 01812480 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2016-02-18 16:30 - 2015-09-17 06:50 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-02-18 16:30 - 2015-09-17 06:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\buttonconverter.sys
2016-02-18 16:30 - 2015-09-17 06:48 - 02093056 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2016-02-18 16:30 - 2015-09-17 06:47 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2016-02-18 16:30 - 2015-09-17 06:46 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2016-02-18 16:30 - 2015-09-17 06:46 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll
2016-02-18 16:30 - 2015-09-17 06:44 - 01844736 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2016-02-18 16:30 - 2015-09-17 06:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2016-02-18 16:30 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2016-02-18 16:30 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-02-18 16:30 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2016-02-18 16:30 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-02-18 16:30 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2016-02-18 16:30 - 2015-08-11 11:03 - 00442208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-02-18 16:30 - 2015-08-11 11:02 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2016-02-18 16:30 - 2015-08-11 10:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\tetheringclient.dll
2016-02-18 16:30 - 2015-08-11 10:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2016-02-18 16:29 - 2016-01-31 07:25 - 01951872 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-02-18 16:29 - 2016-01-31 07:25 - 01248896 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2016-02-18 16:29 - 2016-01-31 07:24 - 01824880 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-02-18 16:29 - 2016-01-31 07:23 - 01420392 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-02-18 16:29 - 2016-01-31 07:06 - 01535032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-02-18 16:29 - 2016-01-31 07:06 - 01531368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-02-18 16:29 - 2016-01-31 07:06 - 00809336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2016-02-18 16:29 - 2016-01-31 07:04 - 01180696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-02-18 16:29 - 2016-01-31 06:33 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\IoTAssignedAccessLockFramework.dll
2016-02-18 16:29 - 2016-01-31 06:29 - 11557888 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-02-18 16:29 - 2016-01-31 06:26 - 06787072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-02-18 16:29 - 2016-01-31 06:26 - 03793408 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-02-18 16:29 - 2016-01-31 06:20 - 02849792 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-02-18 16:29 - 2016-01-31 06:19 - 01602560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-02-18 16:29 - 2016-01-31 06:19 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll
2016-02-18 16:29 - 2016-01-31 06:16 - 09889280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-02-18 16:29 - 2016-01-31 06:16 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-02-18 16:29 - 2016-01-31 06:11 - 05156352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-02-18 16:29 - 2016-01-31 06:11 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2016-02-18 16:29 - 2016-01-31 06:06 - 02316800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-02-18 16:29 - 2016-01-31 06:05 - 01380864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-02-18 16:29 - 2016-01-31 06:02 - 00768000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-02-18 16:29 - 2016-01-05 04:07 - 02463704 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2016-02-18 16:29 - 2016-01-05 04:07 - 00377592 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-02-18 16:29 - 2016-01-05 04:06 - 01991120 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-02-18 16:29 - 2016-01-05 04:06 - 01270104 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 02641928 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 01150816 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00862056 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00787720 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 00784136 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00779928 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00772448 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00751992 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 00667856 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00233992 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00115704 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 00090912 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00083704 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-02-18 16:29 - 2016-01-05 03:59 - 00781976 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-02-18 16:29 - 2016-01-05 03:50 - 01083072 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-02-18 16:29 - 2016-01-05 03:50 - 00723648 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-02-18 16:29 - 2016-01-05 03:50 - 00345080 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-02-18 16:29 - 2016-01-05 03:50 - 00205072 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-02-18 16:29 - 2016-01-05 03:30 - 02459096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-02-18 16:29 - 2016-01-05 03:30 - 02162064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-02-18 16:29 - 2016-01-05 03:30 - 02152744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2016-02-18 16:29 - 2016-01-05 03:30 - 01106872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2016-02-18 16:29 - 2016-01-05 03:30 - 00368776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-02-18 16:29 - 2016-01-05 03:29 - 00208688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00714808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00696192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-02-18 16:29 - 2016-01-05 03:28 - 00695752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-02-18 16:29 - 2016-01-05 03:28 - 00645144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00635312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00497896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00107952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-02-18 16:29 - 2016-01-05 03:28 - 00082096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00072808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-02-18 16:29 - 2016-01-05 03:21 - 00658528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-02-18 16:29 - 2016-01-05 03:15 - 00931328 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-02-18 16:29 - 2016-01-05 03:15 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\usermgrcli.dll
2016-02-18 16:29 - 2016-01-05 03:10 - 00305776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-02-18 16:29 - 2016-01-05 03:10 - 00188032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-02-18 16:29 - 2016-01-05 03:09 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-02-18 16:29 - 2016-01-05 03:02 - 01672192 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-02-18 16:29 - 2016-01-05 03:02 - 00678912 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-02-18 16:29 - 2016-01-05 03:00 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-02-18 16:29 - 2016-01-05 02:59 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-02-18 16:29 - 2016-01-05 02:57 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2016-02-18 16:29 - 2016-01-05 02:51 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 01009664 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:44 - 00159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2016-02-18 16:29 - 2016-01-05 02:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usermgrcli.dll
2016-02-18 16:29 - 2016-01-05 02:42 - 00871936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-02-18 16:29 - 2016-01-05 02:32 - 01541632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-02-18 16:29 - 2016-01-05 02:32 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-02-18 16:29 - 2016-01-05 02:31 - 00563200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-02-18 16:29 - 2016-01-05 02:20 - 00890880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 01070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 00747008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 00409088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 00404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-02-18 16:29 - 2015-12-01 07:03 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\gpuenergydrv.sys
2016-02-18 16:29 - 2015-11-25 06:42 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-02-18 16:29 - 2015-11-25 06:42 - 00168288 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.exe
2016-02-18 16:29 - 2015-11-25 06:33 - 03622272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-02-18 16:29 - 2015-11-25 06:27 - 01366680 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-02-18 16:29 - 2015-11-25 06:12 - 04047288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-02-18 16:29 - 2015-11-25 06:09 - 01310880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-02-18 16:29 - 2015-11-25 06:01 - 02879024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-02-18 16:29 - 2015-11-25 05:49 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:49 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:49 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\RasMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:48 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\EthernetMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:48 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\DAMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:37 - 02350592 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-02-18 16:29 - 2015-11-25 05:36 - 01710592 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2016-02-18 16:29 - 2015-11-25 05:35 - 00929792 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2016-02-18 16:29 - 2015-11-25 05:35 - 00845824 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2016-02-18 16:29 - 2015-11-25 05:31 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll
2016-02-18 16:29 - 2015-11-25 05:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll
2016-02-18 16:29 - 2015-11-25 05:29 - 01649152 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-02-18 16:29 - 2015-11-25 05:29 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\ninput.dll
2016-02-18 16:29 - 2015-11-25 05:27 - 02180608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-02-18 16:29 - 2015-11-25 05:23 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-02-18 16:29 - 2015-11-25 05:22 - 01717248 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-02-18 16:29 - 2015-11-25 05:22 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2016-02-18 16:29 - 2015-11-25 05:19 - 01795584 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-02-18 16:29 - 2015-11-25 05:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2016-02-18 16:29 - 2015-11-25 05:17 - 00774656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2016-02-18 16:29 - 2015-11-25 05:16 - 01442816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll
2016-02-18 16:29 - 2015-11-25 05:16 - 00786432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2016-02-18 16:29 - 2015-11-25 05:13 - 02153984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-02-18 16:29 - 2015-11-25 05:10 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-02-18 16:29 - 2015-11-25 05:04 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-02-18 16:29 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2016-02-18 16:29 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2016-02-18 16:29 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2016-02-18 16:29 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2016-02-18 16:29 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2016-02-18 16:29 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2016-02-18 16:29 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2016-02-18 16:29 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-02-18 16:29 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2016-02-18 16:29 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2016-02-18 16:29 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2016-02-18 16:29 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2016-02-18 16:29 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-02-18 16:29 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2016-02-18 16:29 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2016-02-18 16:29 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-02-18 16:29 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-02-18 16:29 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-02-18 16:29 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2016-02-18 16:29 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-02-18 16:29 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2016-02-18 16:29 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-02-18 16:29 - 2015-09-17 07:50 - 00099664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-02-18 16:29 - 2015-09-17 07:49 - 06487248 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2016-02-18 16:29 - 2015-09-17 07:49 - 00894256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-02-18 16:29 - 2015-09-17 07:49 - 00553808 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ C:\Windows\system32\CoreUIComponents.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 02156400 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 01983824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-02-18 16:29 - 2015-09-17 07:48 - 00555768 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 00476760 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2016-02-18 16:29 - 2015-09-17 07:37 - 01295712 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2016-02-18 16:29 - 2015-09-17 07:28 - 05120056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2016-02-18 16:29 - 2015-09-17 07:28 - 00441168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-02-18 16:29 - 2015-09-17 07:28 - 00074880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2016-02-18 16:29 - 2015-09-17 07:27 - 01766952 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2016-02-18 16:29 - 2015-09-17 07:27 - 00454512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2016-02-18 16:29 - 2015-09-17 07:26 - 01895568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2016-02-18 16:29 - 2015-09-17 07:26 - 00434376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2016-02-18 16:29 - 2015-09-17 07:05 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2016-02-18 16:29 - 2015-09-17 07:05 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-02-18 16:29 - 2015-09-17 07:04 - 07569408 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2016-02-18 16:29 - 2015-09-17 07:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2016-02-18 16:29 - 2015-09-17 07:00 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll
2016-02-18 16:29 - 2015-09-17 06:57 - 02228736 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2016-02-18 16:29 - 2015-09-17 06:56 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2016-02-18 16:29 - 2015-09-17 06:55 - 00671232 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2016-02-18 16:29 - 2015-09-17 06:54 - 03781120 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2016-02-18 16:29 - 2015-09-17 06:54 - 00780288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-02-18 16:29 - 2015-09-17 06:54 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-02-18 16:29 - 2015-09-17 06:53 - 07055872 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2016-02-18 16:29 - 2015-09-17 06:52 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2016-02-18 16:29 - 2015-09-17 06:52 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2016-02-18 16:29 - 2015-09-17 06:52 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2016-02-18 16:29 - 2015-09-17 06:51 - 02660864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-02-18 16:29 - 2015-09-17 06:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\LocationGeofences.dll
2016-02-18 16:29 - 2015-09-17 06:49 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2016-02-18 16:29 - 2015-09-17 06:47 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-02-18 16:29 - 2015-09-17 06:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2016-02-18 16:29 - 2015-09-17 06:46 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2016-02-18 16:29 - 2015-09-17 06:45 - 01331200 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2016-02-18 16:29 - 2015-09-17 06:43 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2016-02-18 16:29 - 2015-09-17 06:40 - 06101504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2016-02-18 16:29 - 2015-09-17 06:39 - 00587264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2016-02-18 16:29 - 2015-09-17 06:39 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-02-18 16:29 - 2015-09-17 06:36 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2016-02-18 16:29 - 2015-09-17 06:35 - 05079552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2016-02-18 16:29 - 2015-09-17 06:35 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-02-18 16:29 - 2015-09-17 06:30 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2016-02-18 16:29 - 2015-09-17 06:29 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2016-02-18 16:29 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2016-02-18 16:29 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.PicturePassword.dll
2016-02-18 16:29 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-02-18 16:29 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2016-02-18 16:29 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2016-02-18 16:29 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2016-02-18 16:29 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2016-02-18 16:29 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2016-02-18 16:29 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2016-02-18 16:29 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2016-02-18 16:29 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-02-18 16:29 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2016-02-18 16:29 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2016-02-18 16:29 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2016-02-18 16:29 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2016-02-18 16:29 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2016-02-18 16:29 - 2015-08-11 10:50 - 01643872 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-02-18 16:29 - 2015-08-11 10:08 - 00893440 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2016-02-18 16:29 - 2015-08-11 10:05 - 03527168 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-02-18 16:29 - 2015-08-11 10:05 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\LocationPermissions.dll
2016-02-18 16:29 - 2015-08-11 10:03 - 02558976 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-02-18 16:29 - 2015-08-11 09:48 - 00671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2016-02-18 16:29 - 2015-08-11 09:43 - 02748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2016-02-18 16:29 - 2015-08-11 09:40 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2016-02-18 16:28 - 2016-01-31 06:29 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rasman.dll
2016-02-18 16:28 - 2016-01-31 06:24 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-02-18 16:28 - 2016-01-31 06:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-02-18 16:28 - 2016-01-31 06:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-02-18 16:28 - 2016-01-31 06:19 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IoTAssignedAccessLockFramework.dll
2016-02-18 16:28 - 2016-01-31 06:18 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-02-18 16:28 - 2016-01-31 06:18 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-02-18 16:28 - 2016-01-31 06:13 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasman.dll
2016-02-18 16:28 - 2016-01-31 06:13 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\ztrace_maps.dll
2016-02-18 16:28 - 2016-01-31 06:11 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-02-18 16:28 - 2016-01-31 06:05 - 00574464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2016-02-18 16:28 - 2016-01-31 06:05 - 00118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-02-18 16:28 - 2016-01-31 05:58 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ztrace_maps.dll
2016-02-18 16:28 - 2016-01-05 04:04 - 01591848 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-02-18 16:28 - 2016-01-05 04:04 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-02-18 16:28 - 2016-01-05 04:04 - 00249464 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-02-18 16:28 - 2016-01-05 04:04 - 00243248 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-02-18 16:28 - 2016-01-05 03:52 - 00441696 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-02-18 16:28 - 2016-01-05 03:50 - 01817064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-02-18 16:28 - 2016-01-05 03:50 - 00251544 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-02-18 16:28 - 2016-01-05 03:31 - 01365576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-02-18 16:28 - 2016-01-05 03:30 - 00232896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-02-18 16:28 - 2016-01-05 03:28 - 00277400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-02-18 16:28 - 2016-01-05 03:28 - 00116728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-02-18 16:28 - 2016-01-05 03:15 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2016-02-18 16:28 - 2016-01-05 03:10 - 00539136 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2016-02-18 16:28 - 2016-01-05 03:10 - 00278424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-02-18 16:28 - 2016-01-05 03:02 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-02-18 16:28 - 2016-01-05 03:01 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-02-18 16:28 - 2016-01-05 02:38 - 00556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2016-02-18 16:28 - 2016-01-05 02:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-02-18 16:28 - 2015-12-01 08:01 - 02115936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-02-18 16:28 - 2015-11-25 06:32 - 00113184 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2016-02-18 16:28 - 2015-11-25 05:59 - 00092992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2016-02-18 16:28 - 2015-11-25 05:36 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys


gzielos 26.02.2016 20:08

Zweiter Teil von FRST.txt:

Code:

2016-02-18 16:28 - 2015-11-25 05:28 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-02-18 16:28 - 2015-11-25 05:26 - 00849408 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2016-02-18 16:28 - 2015-11-25 05:26 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2016-02-18 16:28 - 2015-11-25 05:25 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-02-18 16:28 - 2015-11-25 05:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZST.DLL
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2016-02-18 16:28 - 2015-11-25 05:11 - 00296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll
2016-02-18 16:28 - 2015-11-25 05:10 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-02-18 16:28 - 2015-11-25 05:08 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2016-02-18 16:28 - 2015-11-25 05:07 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00480768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00474624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZST.DLL
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2016-02-18 16:28 - 2015-11-25 03:52 - 00775312 _____ C:\Windows\SysWOW64\locale.nls
2016-02-18 16:28 - 2015-11-25 03:52 - 00775312 _____ C:\Windows\system32\locale.nls
2016-02-18 16:28 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2016-02-18 16:28 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-02-18 16:28 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-02-18 16:28 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2016-02-18 16:28 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2016-02-18 16:28 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2016-02-18 16:28 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2016-02-18 16:28 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2016-02-18 16:28 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-02-18 16:28 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-02-18 16:28 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-02-18 16:28 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-02-18 16:28 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-02-18 16:28 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-02-18 16:28 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2016-02-18 16:28 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll
2016-02-18 16:28 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll
2016-02-18 16:28 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2016-02-18 16:28 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2016-02-18 16:28 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2016-02-18 16:28 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2016-02-18 16:28 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\CallHistoryClient.dll
2016-02-18 16:28 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2016-02-18 16:28 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll
2016-02-18 16:28 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2016-02-18 16:28 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallHistoryClient.dll
2016-02-18 16:28 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2016-02-18 16:28 - 2015-09-19 06:14 - 00102304 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2016-02-18 16:28 - 2015-09-17 07:50 - 01563392 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2016-02-18 16:28 - 2015-09-17 07:50 - 00088384 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2016-02-18 16:28 - 2015-09-17 07:49 - 01563472 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-02-18 16:28 - 2015-09-17 07:49 - 00501008 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00809352 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00584656 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00537080 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00505696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-02-18 16:28 - 2015-09-17 07:48 - 00395088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-02-18 16:28 - 2015-09-17 07:48 - 00332624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2016-02-18 16:28 - 2015-09-17 07:48 - 00278352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2016-02-18 16:28 - 2015-09-17 07:37 - 01168736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-02-18 16:28 - 2015-09-17 07:28 - 01357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2016-02-18 16:28 - 2015-09-17 07:28 - 00407608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-02-18 16:28 - 2015-09-17 07:26 - 00508248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-02-18 16:28 - 2015-09-17 07:26 - 00428128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2016-02-18 16:28 - 2015-09-17 07:11 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2016-02-18 16:28 - 2015-09-17 07:10 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2016-02-18 16:28 - 2015-09-17 07:09 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2016-02-18 16:28 - 2015-09-17 07:09 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2016-02-18 16:28 - 2015-09-17 07:08 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2016-02-18 16:28 - 2015-09-17 07:08 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll
2016-02-18 16:28 - 2015-09-17 07:08 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerShellext.exe
2016-02-18 16:28 - 2015-09-17 07:04 - 00910848 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2016-02-18 16:28 - 2015-09-17 07:03 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2016-02-18 16:28 - 2015-09-17 07:03 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2016-02-18 16:28 - 2015-09-17 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2016-02-18 16:28 - 2015-09-17 07:02 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-02-18 16:28 - 2015-09-17 07:00 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2016-02-18 16:28 - 2015-09-17 06:58 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2016-02-18 16:28 - 2015-09-17 06:57 - 00403456 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2016-02-18 16:28 - 2015-09-17 06:57 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2016-02-18 16:28 - 2015-09-17 06:57 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2016-02-18 16:28 - 2015-09-17 06:56 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2016-02-18 16:28 - 2015-09-17 06:56 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 01601536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2016-02-18 16:28 - 2015-09-17 06:55 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2016-02-18 16:28 - 2015-09-17 06:51 - 01203712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2016-02-18 16:28 - 2015-09-17 06:51 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2016-02-18 16:28 - 2015-09-17 06:51 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeWiFi.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeCell.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 01290240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00439296 _____ (Microsoft Corporation) C:\Windows\system32\LocationWebproxy.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\LocationCrowdsource.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeIP.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\LocationWiFiAdapter.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Speech.Pal.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2016-02-18 16:28 - 2015-09-17 06:47 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2016-02-18 16:28 - 2015-09-17 06:46 - 00928256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2016-02-18 16:28 - 2015-09-17 06:46 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2016-02-18 16:28 - 2015-09-17 06:46 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2016-02-18 16:28 - 2015-09-17 06:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\syncmlhook.dll
2016-02-18 16:28 - 2015-09-17 06:45 - 00869376 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2016-02-18 16:28 - 2015-09-17 06:45 - 00832512 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2016-02-18 16:28 - 2015-09-17 06:45 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2016-02-18 16:28 - 2015-09-17 06:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2016-02-18 16:28 - 2015-09-17 06:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\syncutil.dll
2016-02-18 16:28 - 2015-09-17 06:43 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll
2016-02-18 16:28 - 2015-09-17 06:43 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2016-02-18 16:28 - 2015-09-17 06:41 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-02-18 16:28 - 2015-09-17 06:40 - 01162240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2016-02-18 16:28 - 2015-09-17 06:38 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2016-02-18 16:28 - 2015-09-17 06:37 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2016-02-18 16:28 - 2015-09-17 06:35 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2016-02-18 16:28 - 2015-09-17 06:34 - 00253440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2016-02-18 16:28 - 2015-09-17 06:32 - 00336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2016-02-18 16:28 - 2015-09-17 06:32 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2016-02-18 16:28 - 2015-09-17 06:32 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-02-18 16:28 - 2015-09-17 06:31 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2016-02-18 16:28 - 2015-09-17 06:29 - 00701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2016-02-18 16:28 - 2015-09-17 06:29 - 00677888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2016-02-18 16:28 - 2015-09-17 06:28 - 00473088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2016-02-18 16:28 - 2015-09-17 06:26 - 00899584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll
2016-02-18 16:28 - 2015-09-17 06:16 - 00512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2016-02-18 16:28 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-02-18 16:28 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2016-02-18 16:28 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-02-18 16:28 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2016-02-18 16:28 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2016-02-18 16:28 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2016-02-18 16:28 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2016-02-18 16:28 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2016-02-18 16:28 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-02-18 16:28 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2016-02-18 16:28 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2016-02-18 16:28 - 2015-08-18 07:54 - 00247296 _____ C:\Windows\system32\facecredentialprovider.dll
2016-02-18 16:28 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2016-02-18 16:28 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2016-02-18 16:28 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2016-02-18 16:28 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-02-18 16:28 - 2015-08-18 05:44 - 00008847 _____ C:\Windows\system32\ResPriHMImageList
2016-02-18 16:28 - 2015-08-11 11:04 - 01087296 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-02-18 16:28 - 2015-08-11 11:02 - 00292856 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-02-18 16:28 - 2015-08-11 10:52 - 00993104 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2016-02-18 16:28 - 2015-08-11 10:40 - 00918320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-02-18 16:28 - 2015-08-11 10:37 - 00243800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2016-02-18 16:28 - 2015-08-11 10:26 - 00845664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2016-02-18 16:28 - 2015-08-11 10:19 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2016-02-18 16:28 - 2015-08-11 10:14 - 00404480 _____ C:\Windows\system32\diagtrack_wininternal.dll
2016-02-18 16:28 - 2015-08-11 10:13 - 00413184 _____ C:\Windows\system32\diagtrack_win.dll
2016-02-18 16:28 - 2015-08-11 10:11 - 02446336 _____ C:\Windows\system32\InputService.dll
2016-02-18 16:28 - 2015-08-11 10:11 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2016-02-18 16:28 - 2015-08-11 10:10 - 00293376 _____ C:\Windows\system32\TextInputFramework.dll
2016-02-18 16:28 - 2015-08-11 10:09 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll
2016-02-18 16:28 - 2015-08-11 10:05 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll
2016-02-18 16:28 - 2015-08-11 10:00 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-02-18 16:28 - 2015-08-11 09:59 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-02-18 16:28 - 2015-08-11 09:59 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll
2016-02-18 16:28 - 2015-08-11 09:59 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2016-02-18 16:28 - 2015-08-11 09:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tetheringclient.dll
2016-02-18 16:28 - 2015-08-11 09:51 - 01823232 _____ C:\Windows\SysWOW64\InputService.dll
2016-02-18 16:28 - 2015-08-11 09:50 - 00420352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2016-02-18 16:28 - 2015-08-11 09:50 - 00200704 _____ C:\Windows\SysWOW64\TextInputFramework.dll
2016-02-18 16:28 - 2015-08-11 09:50 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2016-02-18 16:28 - 2015-08-11 09:39 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-02-18 16:28 - 2015-08-11 09:38 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2016-02-18 16:08 - 2016-02-20 17:33 - 00000000 ____D C:\Program Files\Microsoft Games
2016-02-18 16:05 - 2016-02-20 17:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft Games
2016-02-18 16:05 - 2016-02-18 16:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Microsoft Games
2016-02-18 16:00 - 2016-02-18 16:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vista Games
2016-02-18 15:59 - 2010-05-17 08:33 - 00061440 _____ (Rafael & ZoRoNaX) C:\Windows\system32\Vista.Emulation.dll
2016-02-18 13:29 - 2016-02-18 19:35 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\vlc
2016-02-18 13:29 - 2016-02-18 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-02-18 13:29 - 2016-02-18 13:29 - 00000000 ____D C:\Program Files\VideoLAN
2016-02-18 12:55 - 2016-02-23 13:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Flight Simulator-Dateien
2016-02-18 12:51 - 2016-02-18 12:51 - 00000000 ____D C:\Users\Public\Documents\Flight Simulator-Dateien
2016-02-18 12:49 - 2016-02-18 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2016-02-18 12:43 - 2016-02-26 19:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Programme
2016-02-18 12:42 - 2016-02-18 16:00 - 00000000 ____D C:\Program Files (x86)\Microsoft Games
2016-02-18 11:29 - 2016-02-18 11:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Criterion Games
2016-02-18 11:26 - 2012-04-12 14:25 - 00539136 _____ (Microsoft Corporation) C:\Program Files (x86)\spider.exe
2016-02-18 10:54 - 2016-02-25 18:00 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Chat
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\Program Files (x86)\WestwoodOnline
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\Program Files (x86)\WestwoodChat
2016-02-18 10:52 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2016-02-18 10:52 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2016-02-18 10:52 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2016-02-18 10:52 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-02-18 10:52 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2016-02-18 10:52 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2016-02-18 10:52 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2016-02-18 10:52 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2016-02-18 10:52 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2016-02-18 10:52 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2016-02-18 10:52 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2016-02-18 10:52 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2016-02-18 10:52 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2016-02-18 10:52 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2016-02-18 10:52 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2016-02-18 10:52 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2016-02-18 10:52 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2016-02-18 10:52 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2016-02-18 10:52 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2016-02-18 10:52 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2016-02-18 10:52 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2016-02-18 10:52 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2016-02-18 10:52 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2016-02-18 10:52 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2016-02-18 10:52 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2016-02-18 10:52 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2016-02-18 10:52 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2016-02-18 10:52 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2016-02-18 10:52 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2016-02-18 10:52 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2016-02-18 10:52 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2016-02-18 10:52 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2016-02-18 10:52 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-02-18 10:52 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2016-02-18 10:52 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2016-02-18 10:52 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2016-02-18 10:52 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2016-02-18 10:52 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2016-02-18 10:52 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2016-02-18 10:52 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2016-02-18 10:52 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2016-02-18 10:52 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2016-02-18 10:52 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2016-02-18 10:52 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2016-02-18 10:52 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2016-02-18 10:52 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2016-02-18 10:52 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2016-02-18 10:52 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2016-02-18 10:52 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2016-02-18 10:52 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2016-02-18 10:52 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2016-02-18 10:52 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2016-02-18 10:52 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-02-18 10:52 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-02-18 10:52 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-02-18 10:52 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2016-02-18 10:52 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-02-18 10:52 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2016-02-18 10:52 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2016-02-18 10:52 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2016-02-18 10:52 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2016-02-18 10:52 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2016-02-18 10:52 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-02-18 10:52 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2016-02-18 10:52 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2016-02-18 10:52 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2016-02-18 10:52 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2016-02-18 10:52 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2016-02-18 10:52 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2016-02-18 10:52 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2016-02-18 10:52 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2016-02-18 10:52 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2016-02-18 10:52 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2016-02-18 10:52 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2016-02-18 10:46 - 2016-02-18 15:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Origin
2016-02-18 10:46 - 2016-02-18 11:18 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-02-18 10:46 - 2016-02-18 10:46 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Origin
2016-02-18 10:43 - 2016-02-26 19:45 - 00000000 ____D C:\ProgramData\Origin
2016-02-18 10:43 - 2016-02-18 11:29 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-02-18 10:43 - 2016-02-18 10:46 - 00000000 ____D C:\Program Files (x86)\Origin
2016-02-18 10:43 - 2016-02-18 10:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-02-18 10:42 - 2016-02-18 10:42 - 31335272 _____ (Electronic Arts, Inc.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\OriginThinSetup.exe
2016-02-18 10:25 - 2016-02-23 17:56 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik
2016-02-18 10:11 - 2016-02-18 10:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2
2016-02-18 10:11 - 2016-02-18 10:11 - 00000000 ____D C:\Program Files (x86)\LogView V2
2016-02-18 10:06 - 2016-02-18 10:06 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\LogView 7
2016-02-18 09:56 - 2016-02-18 10:25 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\LogView
2016-02-18 09:52 - 2016-02-18 09:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Comms
2016-02-18 09:42 - 2016-02-25 09:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Grafik
2016-02-18 09:41 - 2016-02-18 09:41 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paint Shop Pro 5
2016-02-18 09:41 - 2016-02-18 09:41 - 00000000 ____D C:\Program Files (x86)\Paint Shop Pro 5
2016-02-18 09:30 - 2016-02-18 09:30 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.android
2016-02-17 21:14 - 2016-02-17 21:14 - 00000000 ___RD C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Brother
2016-02-17 21:13 - 2016-02-22 13:41 - 00000432 _____ C:\Windows\BRWMARK.INI
2016-02-17 21:13 - 2016-02-22 13:41 - 00000034 _____ C:\Windows\SysWOW64\BD2030.DAT
2016-02-17 20:27 - 2016-02-17 20:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\NetworkTiles
2016-02-17 18:35 - 2016-02-19 16:02 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten
2016-02-17 18:11 - 2016-02-17 18:11 - 00026296 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Abrechnung_4475958910292900_20160214.PDF
2016-02-17 17:44 - 2016-02-17 17:45 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Office
2016-02-17 17:42 - 2016-02-21 16:24 - 00425472 _____ (Steganos GmbH) C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\LockNote105.exe
2016-02-17 17:40 - 2016-02-18 16:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2016-02-17 17:40 - 2016-02-17 17:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-02-17 17:39 - 2016-02-17 17:39 - 00000000 ____D C:\Windows\PCHEALTH
2016-02-17 17:36 - 2016-02-17 17:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft Help
2016-02-17 17:36 - 2016-02-17 17:36 - 00000000 ____D C:\Program Files\Microsoft Office
2016-02-17 17:35 - 2016-02-17 17:35 - 00000000 __RHD C:\MSOCache
2016-02-17 17:15 - 2016-02-17 21:20 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\ElevatedDiagnostics
2016-02-17 17:14 - 2016-02-17 17:14 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kaspersky
2016-02-17 17:12 - 2016-02-17 17:12 - 00002026 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Editor.lnk
2016-02-17 17:11 - 2016-02-17 17:11 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\WildTangent
2016-02-17 16:59 - 2016-02-17 16:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2016-02-17 16:59 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2016-02-17 16:58 - 2016-02-26 19:58 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-02-17 16:58 - 2016-02-26 19:44 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-02-17 16:58 - 2016-02-17 17:21 - 00934272 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2016-02-17 16:58 - 2016-02-17 17:21 - 00181640 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2016-02-17 16:58 - 2016-02-17 17:04 - 00227512 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2016-02-17 16:58 - 2016-02-17 16:58 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2016-02-17 16:43 - 2015-07-09 20:38 - 01996288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0007.dll
2016-02-17 16:43 - 2015-07-09 20:36 - 12039680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsLexicons0007.dll
2016-02-17 16:43 - 2015-07-09 20:26 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0007.dll
2016-02-17 16:43 - 2015-07-09 20:25 - 12039680 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0007.dll
2016-02-17 16:43 - 2015-07-09 20:25 - 11602944 _____ (Microsoft Corporation) C:\Windows\system32\prm0007.dll
2016-02-17 16:42 - 2016-02-17 16:48 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Mozilla
2016-02-17 16:42 - 2016-02-17 16:42 - 00001049 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2016-02-17 16:42 - 2016-02-17 16:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla
2016-02-17 16:41 - 2016-02-17 16:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-02-17 16:36 - 2016-02-17 16:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\awsRun
2016-02-17 16:33 - 2016-02-17 16:33 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Macromedia
2016-02-17 16:32 - 2016-02-17 20:11 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\MicrosoftEdge
2016-02-17 16:31 - 2016-02-17 16:31 - 00002439 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-02-17 16:31 - 2016-02-17 16:31 - 00000000 ___RD C:\Users\Gunther.DESKTOP-L5KOO87\OneDrive
2016-02-17 16:31 - 2016-02-17 16:31 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\NVIDIA
2016-02-17 16:28 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Adobe
2016-02-17 16:28 - 2016-02-17 16:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\DropboxOEM
2016-02-17 16:28 - 2016-02-17 16:28 - 00003628 _____ C:\Windows\System32\Tasks\ASUS Smart Gesture Launcher
2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\WebStorage
2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Publishers
2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\DropboxOEM
2016-02-17 16:27 - 2016-02-26 19:44 - 00000165 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\sp_data.sys
2016-02-17 16:27 - 2016-02-21 18:31 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87
2016-02-17 16:27 - 2016-02-21 15:35 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\VirtualStore
2016-02-17 16:27 - 2016-02-20 17:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Packages
2016-02-17 16:27 - 2016-02-17 16:27 - 00056952 _____ C:\Windows\system32\ASGCoInstaller_x64.dll
2016-02-17 16:27 - 2016-02-17 16:27 - 00016148 _____ C:\Windows\system32\DESKTOP-L5KOO87_defaultuser0_HistoryPrediction.bin
2016-02-17 16:27 - 2016-02-17 16:27 - 00000020 ___SH C:\Users\Gunther.DESKTOP-L5KOO87\ntuser.ini
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Vorlagen
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Startmenü
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Netzwerkumgebung
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Lokale Einstellungen
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Eigene Dateien
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Druckumgebung
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Videos
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Musik
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Bilder
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Verlauf
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Anwendungsdaten
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Anwendungsdaten
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\TileDataLayer
2016-02-17 16:24 - 2016-02-26 19:43 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-02-17 16:18 - 2015-12-09 04:39 - 00301728 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-02-26 19:57 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsUpdateTask_Administrator.job
2016-02-26 19:50 - 2015-08-18 14:14 - 00773778 _____ C:\Windows\system32\perfh007.dat
2016-02-26 19:50 - 2015-08-18 14:14 - 00154590 _____ C:\Windows\system32\perfc007.dat
2016-02-26 19:50 - 2015-08-18 06:20 - 01790124 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-26 19:50 - 2015-07-10 12:02 - 00000000 ____D C:\Windows\INF
2016-02-26 19:43 - 2015-11-11 08:51 - 00000000 __SHD C:\Users\Gunther\IntelGraphicsProfiles
2016-02-26 19:42 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-26 19:42 - 2015-07-10 10:05 - 00131072 ___SH C:\Windows\system32\config\BBI
2016-02-26 19:41 - 2015-11-11 08:23 - 00001542 _____ C:\Users\Public\Desktop\WPS Office.lnk
2016-02-26 18:00 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsNotifyTask_Administrator.job
2016-02-26 16:18 - 2015-07-10 17:27 - 00000000 ____D C:\Windows\OCR
2016-02-26 13:24 - 2015-08-18 06:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-02-26 13:24 - 2015-07-10 12:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-02-26 12:00 - 2015-11-11 08:02 - 00003544 _____ C:\Windows\System32\Tasks\ASUS Live Update1
2016-02-26 12:00 - 2015-11-11 08:02 - 00003534 _____ C:\Windows\System32\Tasks\ASUS Live Update2
2016-02-26 08:50 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-26 08:50 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\AppReadiness
2016-02-25 09:27 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp
2016-02-23 17:55 - 2015-11-11 07:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-02-21 17:22 - 2015-07-10 13:20 - 00232392 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-21 15:29 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-02-21 10:37 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\rescache
2016-02-21 10:34 - 2015-08-18 14:13 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-02-21 10:34 - 2015-07-10 17:30 - 00000000 ____D C:\Program Files\Windows Journal
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\winrm
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\WCN
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\winrm
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\WCN
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\slmgr
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\F12
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\F12
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\dsc
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\MiracastView
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\DevicesFlow
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\oobe
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\MUI
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\Com
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\oobe
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\MUI
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\migwiz
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\Com
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\IME
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Help
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Defender
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\System
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Sysprep
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Dism
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\servicing
2016-02-21 09:55 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\en-GB
2016-02-21 09:55 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\en-GB
2016-02-21 08:56 - 2015-11-11 07:39 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-20 16:54 - 2015-07-10 12:04 - 00000150 _____ C:\Windows\win.ini
2016-02-20 10:26 - 2015-11-11 08:02 - 00000000 ____D C:\Program Files\DIFX
2016-02-20 10:25 - 2015-08-18 14:00 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-02-19 20:10 - 2015-11-11 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-02-19 19:43 - 2015-11-11 10:41 - 00000000 ___HD C:\$SysReset
2016-02-19 15:16 - 2015-11-11 07:36 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\PurchaseDialog
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\appraiser
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Provisioning
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\L2Schemas
2016-02-18 19:53 - 2015-08-18 15:00 - 00000000 ____D C:\Windows\Panther
2016-02-18 19:48 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT
2016-02-18 16:26 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2016-02-18 12:51 - 2015-07-10 11:59 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2016-02-18 12:51 - 2015-07-10 11:59 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2016-02-18 12:51 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2016-02-18 08:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\appcompat
2016-02-17 17:36 - 2015-07-10 17:30 - 00000000 ____D C:\Windows\ShellNew
2016-02-17 17:21 - 2015-06-26 23:58 - 00087944 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klwfp.sys
2016-02-17 17:21 - 2015-06-08 19:43 - 00041352 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klpd.sys
2016-02-17 16:59 - 2015-11-11 09:08 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2016-02-17 16:59 - 2015-07-10 10:05 - 00032768 ___SH C:\Windows\system32\config\ELAM
2016-02-17 16:58 - 2015-07-10 12:04 - 00000000 ___HD C:\Windows\ELAMBKUP
2016-02-17 16:57 - 2015-11-11 08:07 - 00000000 ____D C:\ProgramData\McAfee
2016-02-17 16:57 - 2015-11-11 08:07 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-02-17 16:50 - 2015-11-11 08:51 - 00000000 ____D C:\Users\Gunther
2016-02-17 16:42 - 2015-11-11 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-17 16:33 - 2015-08-18 06:27 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-02-17 16:27 - 2015-11-11 08:53 - 00000000 ____D C:\ProgramData\SetupTPDriver
2016-02-17 16:25 - 2015-11-11 08:50 - 00000000 ____D C:\ProgramData\USBChargerPlus
2016-02-02 23:47 - 2015-08-18 06:34 - 00828920 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-02-02 23:47 - 2015-08-18 06:34 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-02-18 11:26 - 2012-04-12 14:25 - 0539136 _____ (Microsoft Corporation) C:\Program Files (x86)\spider.exe
2016-02-17 16:27 - 2016-02-26 19:44 - 0000165 _____ () C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\sp_data.sys
2016-02-21 15:38 - 2016-02-21 15:45 - 0000017 ____H () C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\19720201.dat
2015-11-11 07:51 - 2015-11-11 07:51 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-01-26 09:02 - 2016-01-26 09:02 - 0010346 _____ () C:\ProgramData\regid.1996-09.com.picotech_{d03e5488-efee-4362-98cf-72f093b918f0}.swidtag

Einige Dateien in TEMP:
====================
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\cfuapir2.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\d5wc5ovy.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\McCSPInstall.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\mccspuninstall.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\ose00000.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\pzunzahz.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\QC27khC3Gx.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\sf3ldbaj.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\sqlite3.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\tmp-drivermax10195779.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-18 06:02

==================== Ende von FRST.txt ============================

Noch Addition.txt und wieder mal alle Achtung für Euch:

Code:

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:21-02-2016 01
durchgeführt von Gunther (2016-02-26 19:59:56)
Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
Windows 10 Home (X64) (2016-02-17 15:23:58)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2421830386-3516612503-909366600-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2421830386-3516612503-909366600-503 - Limited - Disabled)
Gast (S-1-5-21-2421830386-3516612503-909366600-501 - Limited - Disabled)
Gunther (S-1-5-21-2421830386-3516612503-909366600-1001 - Administrator - Enabled) => C:\Users\Gunther.DESKTOP-L5KOO87

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20059 - Adobe Systems Incorporated)
ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.6 - ASUS)
ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.5 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.5 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
Atmel USB (HKLM-x32\...\{E8F8861D-98E0-43FF-9E48-AC236CC3BE4E}) (Version: 10.6 - Atmel)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.105 - ICEpower a/s)
Avast SecureLine for Asustek (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.239.3 - AVAST Software)
BASCOM-AVR (HKLM-x32\...\{47F94730-ABD2-47F6-920E-EA8CDB6DD0C6}_is1) (Version: 2.0.7.5 - MCS Electronics)
Command & Conquer™ Red Alert, Counterstrike and The Aftermath (HKLM-x32\...\{B9A7CCBE-48F7-4B3E-BD20-76ADDD4DC69F}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Tiberian Sun™ and Firestorm™ (HKLM-x32\...\{78F60BDD-1923-4CF7-B6BD-087D06D7B5BB}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
DesignCAD 22 (HKLM-x32\...\{C5C61F02-1453-48A1-947E-8BC9F6812F8E}) (Version: 22.0.0 - IMSIDesign)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.)
DVBViewer Pro (HKLM-x32\...\DVBViewer Pro_is1) (Version: 5.5.2.0 - CM&V)
Evernote v. 5.8.6 (HKLM-x32\...\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}) (Version: 5.8.6.7519 - Evernote Corp.)
Fugawi 4.5 (HKLM-x32\...\Fugawi45_is1) (Version: 4.5 - Northport Systems Inc.)
Fugawi Google Earth Plug-in Version 1.1.0.4 (HKLM-x32\...\Fugawi45_GE_is1) (Version: 4.5 - Northport Systems Inc.)
FugVS2005 (HKLM-x32\...\{0C8364B1-AFD8-45B7-ACE8-B76113B6C418}) (Version: 1.0.0 - Northport Systems Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4300 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 73 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JLink OB CDC Driver Package (HKLM\...\{CD0E9FFE-70DD-47E3-A7A5-750E9DE6F40B}) (Version: 1.2.1 - SEGGER)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden
LAV Filters 0.67 (HKLM-x32\...\lavfilters_is1) (Version: 0.67 - Hendrik Leppkes)
LogView V2 (HKLM-x32\...\LogView V2) (Version: LogView V2 2 - LogView.info - D.Schmidt / H.Hemmecke)
LogView V2 2 (HKU\S-1-5-21-2421830386-3516612503-909366600-1001\...\LogView V2 2) (Version: 2 - LogView.info)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Flight Simulator 2004 - Das Jahrhundert der Luftfahrt (HKLM-x32\...\Flight Simulator 9.0) (Version: 9.0 - Microsoft)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Shell (Isolated) - ENU (HKLM-x32\...\{D64B6984-242F-32BC-B008-752806E5FC44}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 44.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2 - Mozilla)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.7 - F.J. Wechselberger)
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
NVIDIA Graphics Driver 353.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.84 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.11.5.17432 - Electronic Arts, Inc.)
Paint Shop Pro 5.01 (HKLM-x32\...\Paint Shop Pro 5.01) (Version:  - )
Pico Technology Beta SDK 64-bit (HKLM-x32\...\{da5e6d88-b17c-44cb-a5f9-bf1b5948aef8}) (Version: 10.6.11.23 - Pico Technology Ltd)
Pico Technology Beta SDK 64-bit (Version: 10.6.11.23 - Pico Technology Ltd) Hidden
PicoScope 6 (HKLM-x32\...\{fe3cc74a-a370-4be1-8daf-90355086e1f4}) (Version: 6.11.10 - Pico Technology)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31213 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.)
SpyHunter 4 (HKLM-x32\...\SpyHunter) (Version: 4.21.18.4608 - Enigma Software Group, LLC)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.2 - VideoLAN)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.2.524 - ASUS Cloud Corporation)
WestwoodChat (HKLM-x32\...\{7CAE6A67-AF7B-4A6A-8705-8AFACA45BB60}) (Version: 1.0.0.0 - WestwoodChat)
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.16 - WildTangent)
Windows-Treiberpaket - ASUS (ATP) Mouse  (06/17/2015 6.0.0.66) (HKLM\...\1EFB54678773735560B565BE7FA6F2BCC557EE21) (Version: 06/17/2015 6.0.0.66 - ASUS)
Windows-Treiberpaket - Segger (jlink_ob_x64) USB  (03/13/2012 2.6.6.2) (HKLM\...\6D4C34D12E9233ABADF9D04ADF9E288A7ECF3B5B) (Version: 03/13/2012 2.6.6.2 - Segger)
Windows-Treiberpaket - SEGGER (usbser) Ports  (01/25/2012 6.0.2600.4) (HKLM\...\BD6BF8BBF7BE0D0091163F649A1A423B7EB9D4F1) (Version: 01/25/2012 6.0.2600.4 - SEGGER)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
WPS Office for ASUS (HKLM-x32\...\Kingsoft Office) (Version: 9.1.0.4947 - Kingsoft Corp.)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2421830386-3516612503-909366600-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0F71139B-44DA-4814-95B3-36544058B19C} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] ()
Task: {16C0F2CB-05FF-42DC-B079-DCDC8E771142} - System32\Tasks\WpsUpdateTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {265A3230-80C1-46DE-871D-6D0FE4A72A99} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-18] (Google Inc.)
Task: {2676E35B-A115-4EAD-9303-94D32321AE26} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.)
Task: {37600127-75F6-4D0E-AB73-1557C66DB28E} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {402CA532-759F-4D1B-A63F-7B136F42AC1D} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
Task: {42DDF692-C8FF-4705-ABD1-EF4E97066915} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-08-23] (AsusTek)
Task: {47B485D9-1AC5-4DE9-BEE0-A56921B2021A} - System32\Tasks\WpsNotifyTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {80875153-D0CA-4A0A-9947-BCF3BF2007D0} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-08-12] ()
Task: {80C44CD8-38C9-488D-8935-B27061176C6C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {8EBD672F-3CE9-4F4F-AE48-C0C1AB17EAF5} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {97381284-491B-4EC0-A307-B796E0367D01} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.)
Task: {9DD4AD4D-DC0D-4826-B61A-46025A6F398C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-18] (Google Inc.)
Task: {A9871C1C-7FA9-4094-9760-69F1EA4F5C91} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS)
Task: {AFA1BF32-F765-406A-AF10-1B2967A4442B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-07-29] (Realtek Semiconductor)
Task: {CC5EAE02-3FB5-4F7A-B4D4-B55F51724A9E} - System32\Tasks\{FCC43C23-C686-4530-BB4D-97C7E689F677} => pcalua.exe -a C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\avrispmkii_libusb-win32_1.2.1.0\avrispmkii_libusb-win32_1.2.1.0\installer_x86.exe -d C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\avrispmkii_libusb-win32_1.2.1.0\avrispmkii_libusb-win32_1.2.1.0
Task: {DEA915F7-74D4-4B8F-BABD-86723BDCC2B1} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-07-29] (Realtek Semiconductor)
Task: {DEE7A683-A2E0-4371-B9CA-3A7A637B2562} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2015-04-29] (AVAST Software)
Task: {F25573CF-40E1-4DE9-8EA5-391037769186} - System32\Tasks\DriverMaxAgent => C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe
Task: {F8268434-0A8D-4792-BB93-FF2B7B564467} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.)
Task: {FBFB39E4-B59D-44B9-8DC0-FA82B0F4B685} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-02-18] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\WpsNotifyTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe
Task: C:\Windows\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-18 06:25 - 2015-07-15 03:04 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll
2015-11-11 07:48 - 2015-08-07 18:18 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-02-18 16:28 - 2015-08-11 10:14 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll
2015-05-19 10:11 - 2015-05-19 10:11 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2015-11-11 08:06 - 2015-04-29 18:04 - 00445240 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\System32\CoreUIComponents.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-02-18 16:29 - 2015-11-25 05:20 - 06569472 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-02-18 16:29 - 2015-11-25 05:17 - 00471040 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-02-18 16:29 - 2015-11-25 05:17 - 01808384 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-02-18 16:29 - 2015-09-17 06:43 - 02274816 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-10-09 10:13 - 2015-10-06 10:03 - 00395368 _____ () C:\Windows\system32\igfxTray.exe
2015-07-08 23:18 - 2015-07-08 23:18 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kpcengine.2.3.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-11-11 07:48 - 2015-07-24 05:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-11-11 08:06 - 2015-04-29 18:04 - 38561984 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll
2015-08-07 02:09 - 2015-08-07 02:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\TEMP:6B0023F8

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-07-10 12:04 - 2015-07-10 12:02 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\asus\wallpapers\asus.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{DF8AD133-C2FF-4C30-8618-E3E9B17D5499}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe
FirewallRules: [{985BE3A6-760C-48B6-8274-D904C621EF53}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe
FirewallRules: [{4B62578A-269D-4C39-AC91-85875738831E}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{EDD1EEA3-DAF2-4D8A-A24F-D306AC1A08C5}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{CE0848E4-9186-43C5-B6E0-EF43EDE445D1}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe
FirewallRules: [{51C45640-ADB0-4D34-918A-842910FAD03E}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe
FirewallRules: [{FFC3D9CF-365E-482F-8901-BE3E08697A66}] => (Allow) C:\Program Files (x86)\SprgFiles\SprgFiles.exe
FirewallRules: [{C6CC372F-7162-40B1-833D-CBDA05E5BFE2}] => (Allow) C:\Program Files (x86)\SprgFiles\SprgFiles.exe
FirewallRules: [{5005B685-36C4-4F40-B872-2BEECCD325C4}] => (Allow) C:\Program Files (x86)\SprgFiles\downloader.exe
FirewallRules: [{82AFB31B-8E78-4BDA-B2B8-80A1E9C2D4C6}] => (Allow) C:\Program Files (x86)\SprgFiles\downloader.exe
FirewallRules: [{32E42A9B-AFB8-485E-B1F5-69629C55AAAF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EC13B03C-CF42-42D9-A8CE-4299E35BFD6C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Wiederherstellungspunkte =========================

20-02-2016 10:25:19 Installed Atmel USB
21-02-2016 10:31:53 Sprachpaketdeinstallation
23-02-2016 16:45:46 Installed AVRStudio4
25-02-2016 09:05:02 DesignCAD 22 wurde installiert.
26-02-2016 13:24:18 Removed Microsoft Office

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (02/26/2016 07:48:45 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6012) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (02/26/2016 07:48:45 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6012) Der Versuch, die Datei "C:\Windows\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (02/26/2016 07:48:35 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6012) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (02/26/2016 07:48:35 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6012) Der Versuch, die Datei "C:\Windows\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (02/26/2016 07:48:24 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6012) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (02/26/2016 07:48:24 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6012) Der Versuch, die Datei "C:\Windows\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (02/26/2016 07:48:14 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6012) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (02/26/2016 07:48:14 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6012) Der Versuch, die Datei "C:\Windows\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (02/26/2016 07:48:04 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6012) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (02/26/2016 07:48:04 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6012) Der Versuch, die Datei "C:\Windows\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.


Systemfehler:
=============
Error: (02/26/2016 07:45:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee CSP Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (02/26/2016 07:42:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "TVicPort" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (02/26/2016 07:42:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "SpyHunter 4 Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (02/26/2016 07:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (02/26/2016 07:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (02/26/2016 07:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (02/26/2016 07:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (02/26/2016 07:41:45 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
%%1056

Error: (02/26/2016 07:41:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Security Assist" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (02/26/2016 07:41:15 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Prozentuale Nutzung des RAM: 25%
Installierter physikalischer RAM: 8094.39 MB
Verfügbarer physikalischer RAM: 6047.15 MB
Summe virtueller Speicher: 9374.39 MB
Verfügbarer virtueller Speicher: 7234.96 MB

==================== Laufwerke ================================

Drive c: (OS) (Fixed) (Total:185.55 GB) (Free:115.01 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (DATA) (Fixed) (Total:279.46 GB) (Free:249.2 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 6110F75F)

Partition: GPT.

==================== Ende von Addition.txt ============================


burningice 26.02.2016 20:37

hm :)

Tritt das Problem nur beim Firefox auf?

Schritt 1
Bitte starte wieder FRST, setze den Haken bei Shortcut.txt und drücke auf Untersuchen. Poste bitte nur die Shortcut.txt

Cave: Es steht Shortcut.txt nicht Addition.txt

gzielos 26.02.2016 20:58

Hallo Rafael,
Ja, bisher ist es mir nur bei Firefox aufgefallen, aber andere Browser benutze ich auch nur selten.
Also, ich habe nur bei Shortcut.txt einen Haken gemacht, hoffentlich war das richtig?

Code:

Untersuchungsergebnis der Verknüpfungen des Benutzers (x64) Version:21-02-2016 01
durchgeführt von Gunther (2016-02-26 20:53:17)
Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
Start-Modus: Normal

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)





Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\01 - File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\03 - Documents.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Documents ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\04 - Downloads.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Downloads ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\05 - Music.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Music ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\06 - Pictures.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Pictures ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\07 - Videos.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Videos ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\10 - UserProfile.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87 ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}\SC_Reader.ico (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk -> C:\Program Files (x86)\Audacity\audacity.exe (The Audacity Team)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Devices Flow.lnk -> C:\Windows\DevicesFlow\DevicesFlow.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel(R) HD Graphics Control Panel.lnk -> C:\Windows\System32\GfxUIEx.exe (Intel Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiracastView.lnk -> C:\Windows\MiracastView\MiracastView.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrintDialog.lnk -> C:\Windows\PrintDialog\PrintDialog.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WPS Office\WPS Spreadsheets.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\office6\et.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WPS Office\WPS Office Tools\Configuration Tools.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\office6\ksomisc.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WPS Office\WPS Office Tools\Uninstall.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\utility\uninst.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online\Register Westwoon Online.lnk -> C:\Program Files (x86)\WestwoodOnline\REGISTER.EXE ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Chat\Westwood Chat.lnk -> C:\Program Files (x86)\WestwoodChat\WCHAT.EXE (Westwood Studios)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vista Games\Mahjong Titans.lnk -> C:\Program Files (x86)\Microsoft Games\Mahjong\Mahjong.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> C:\Program Files\VideoLAN\VLC\Documentation.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> C:\Program Files\VideoLAN\VLC\NEWS.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> C:\Program Files\VideoLAN\VLC\VideoLAN Website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek\Realtek HD Audio Manager.lnk -> C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pico Technology\PicoScope 6.lnk -> C:\Program Files (x86)\Pico Technology\PicoScope6\PicoScope.exe (Pico Technology)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin Fehlermelder.lnk -> C:\Program Files (x86)\Origin\OriginER.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin.lnk -> C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer\MyPhoneExplorer.lnk -> C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe (F.J. Wechselberger)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer\Uninstall.lnk -> C:\Program Files (x86)\MyPhoneExplorer\uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Excel 2007.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\xlicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office OneNote 2007.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\joticon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office PowerPoint 2007.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\pptico.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Word 2007.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\wordicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Digitales Zertifikat für VBA-Projekte.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Clip Organizer.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\cagicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office 2007 Spracheinstellungen.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office Picture Manager.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\oisicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office-Diagnose.lnk -> C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Microsoft Flight Simulator 2004-Infodatei.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\Info.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Microsoft Flight Simulator 2004.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Problembehandlung\Konfigurationssupport.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\Config\configsupport.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics\BASCOM-AVR\BASCOM-AVR.lnk -> C:\Program Files (x86)\MCS Electronics\BASCOM-AVR\bascavr.exe (MCS Electronics)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics\BASCOM-AVR\BASCOMP.lnk -> C:\Program Files (x86)\MCS Electronics\BASCOM-AVR\bascomp.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics\BASCOM-AVR\HTML Help.lnk -> C:\Program Files (x86)\MCS Electronics\BASCOM-AVR\BASCAVR.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics\BASCOM-AVR\License.lnk -> C:\Program Files (x86)\MCS Electronics\BASCOM-AVR\LICENSE.TXT ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics\BASCOM-AVR\Read me.lnk -> C:\Program Files (x86)\MCS Electronics\BASCOM-AVR\READDEMO.TXT ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\LogView.lnk -> C:\Program Files (x86)\LogView V2\LogView.exe (LogView.info)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\Tools\CleanUp.lnk -> C:\Program Files (x86)\LogView V2\Tools\CleanUp.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\Tools\SILEditor.lnk -> C:\Program Files (x86)\LogView V2\Tools\SILEditor.exe (SiComponents)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\OpenFormat\OpenFormatEditor.lnk -> C:\Program Files (x86)\LogView V2\OpenFormat\OpenFormatEditor.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\Logging Console\SmartInspectConsole.lnk -> C:\Program Files (x86)\LogView V2\Logging Console\SmartInspectConsole.exe (Gurock Software GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\Help\LogView V2 Handbuch.lnk -> C:\Program Files (x86)\LogView V2\LogView V2 Handbuch.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\Help\LogViewHilfe.lnk -> C:\Program Files (x86)\LogView V2\Help\LogViewHilfe.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\Help\SmartInspect.lnk -> C:\Program Files (x86)\LogView V2\Logging Console\SmartInspect.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters\Uninstall LAV Filters.lnk -> C:\Program Files (x86)\LAV Filters\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security\Hilfe für Kaspersky Internet Security.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\Doc\de-DE\kis\context.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security\Kaspersky Internet Security.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe (Kaspersky Lab ZAO)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security\Kaspersky Lab im Internet.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kl.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security\Lizenzvertrag.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\Doc\de\license.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Java konfigurieren.lnk -> C:\Program Files\Java\jre1.8.0_73\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICEpower\AudioWizard\AudioWizard.lnk -> C:\Windows\Installer\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}\NewShortcut2_CAFC68A201474C958303AEAC0F6DBEDB.exe (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi 4 Getting Started Manual-EN (PDF).lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi 4 Getting Started-EN.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi 4 Kurzanleitung-DE (PDF).lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi 4 Kurzanleitung-DE.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi 4 Release Notes-DE.lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi 4 Release Notes-DE.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi 4 Release Notes-EN.lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi 4 Release Notes-EN.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi Global Navigator 4.5.LNK -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi45.exe (Northport Systems Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi Help-EN.lnk -> C:\Program Files (x86)\Common Files\Fugawi\Help\EN\Fugawi4-EN.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Fugawi Hilfe-DE.lnk -> C:\Program Files (x86)\Common Files\Fugawi\Help\DE\Fugawi4-DE.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Map Calibration 4.5.lnk -> C:\Program Files (x86)\Common Files\Fugawi\Util\FugCalibrate45.exe (Northport Systems Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Map Calibration Help-DE.lnk -> C:\Program Files (x86)\Common Files\Fugawi\Help\DE\FugCalibrate-EN.chm (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Map Calibration Help-EN.lnk -> C:\Program Files (x86)\Common Files\Fugawi\Help\EN\FugCalibrate-EN.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Navionics Supplement-DE.lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Navionics Supplement-DE.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Navionics Supplement-EN.lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Navionics Supplement-EN.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi\Start Fugawi 4.5.lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi45.exe (Northport Systems Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote\Evernote.lnk -> C:\Windows\Installer\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}\Evernote.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Changelog.lnk -> C:\Program Files (x86)\DVBViewer\docs\changelog.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\DVBViewer Pro Downloader.lnk -> C:\Program Files (x86)\DVBViewer\DVBVDownloader.exe (CM&V                                                        )
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\DVBViewer Pro.lnk -> C:\Program Files (x86)\DVBViewer\dvbviewer.exe (CM&V Hackbart)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Konfigurationsverzeichnis.lnk -> C:\ProgramData\CMUV\DVBViewer ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Support\ DVBViewer Pro entfernen.lnk -> C:\Program Files (x86)\DVBViewer\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Support\DVBSource ReadMe.lnk -> C:\Program Files (x86)\DVBViewer\docs\DVBSource_ReadMe.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Support\DVBViewer Pro KeyTool.lnk -> C:\Program Files (x86)\DVBViewer\KeyTool.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Support\Tweaker.lnk -> C:\Program Files (x86)\DVBViewer\Tweaker.exe (Griga)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22\DesignCAD 22 Handbuch.lnk -> C:\Program Files (x86)\IMSIDesign\DesignCAD 22\GettingStarted.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22\DesignCAD 22 Hilfe.lnk -> C:\Program Files (x86)\IMSIDesign\DesignCAD 22\dcadexp22.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22\DesignCAD 22 Liesmich.lnk -> C:\Program Files (x86)\IMSIDesign\DesignCAD 22\Dcad22_Readme.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22\DesignCAD 22 Release Notes.lnk -> C:\Program Files (x86)\IMSIDesign\DesignCAD 22\DesignCAD 22.0 Release Notes.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22\DesignCAD 22.lnk -> C:\Program Files (x86)\IMSIDesign\DesignCAD 22\dcadexp22.exe (IMSIDesign)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software\Avast SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS HiPost.lnk -> C:\Program Files (x86)\ASUS\ASUS HiPost\SmartClipboardASUS.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS Install.lnk -> C:\eSupport\eDriver\AsInsWiz.exe (ASUSTek Computer INC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS Live Update.Lnk -> C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe (ASUSTeK Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS On-Screen Display.lnk -> C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSDMgr.exe (ASUSTek Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\eManual.Lnk -> C:\eSupport\Manual\eManual.exe (ASUSTek Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\USB Charger Plus.lnk -> C:\Windows\Installer\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}\_03B938BA8B4575BDE7A878.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\WinFlash.Lnk -> C:\Program Files (x86)\ASUS\WinFlash\WinFlash.exe (ASUSTek Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\WebStorage\WebStorage.lnk -> C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSPanel.exe (ASUS Cloud Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS Splendid Utility\Splendid Utility.Lnk -> C:\Program Files (x86)\ASUS\Splendid\ACVT.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Start Menu\Programs\SpyHunter\SpyHunter.lnk -> C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (Keine Datei)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Links\Desktop.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Desktop ()
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Links\Downloads.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Downloads ()
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Arbeitsdateien - Shortcut.lnk -> D:\Arbeitsdateien ()
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte - Shortcut.lnk -> D:\Atmega_Projekte ()
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Fugawi Global Navigator 4.5.LNK -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi45.exe (Northport Systems Inc.)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Geräte - Shortcut.lnk -> D:\Geräte ()
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\GPS - Shortcut.lnk -> D:\GPS ()
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kranich_Projekte - Shortcut.lnk -> D:\Kranich_Projekte ()
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\TK102-2 -Shortcut.lnk -> D:\TK102-2 ()
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio\Audacity.lnk -> C:\Program Files (x86)\Audacity\audacity.exe (The Audacity Team)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio\DVBViewer.lnk -> C:\Program Files (x86)\DVBViewer\dvbviewer.exe (CM&V Hackbart)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio\MediathekView__Start - Shortcut.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Programme\mediathekview_10\MediathekView__Start.exe ()
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Chess - Shortcut.lnk -> C:\Program Files\Microsoft Games\Chess\Chess.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Command and Conquer Red Alert.lnk -> C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe (Kalloc Studios)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Command and Conquer Tiberian Sun.lnk -> C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe (Kalloc Studios)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Mahjong - Shortcut.lnk -> C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Microsoft Flight Simulator 2004.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Need for Speed™ Most Wanted.lnk -> C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe (Electronic Arts)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Origin.lnk -> C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\Solitaire - Shortcut.lnk -> C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\spider - Shortcut.lnk -> C:\Program Files (x86)\spider.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele\SpiderSolitaire - Shortcut.lnk -> C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kaspersky\Kaspersky Internet Security.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe (Kaspersky Lab ZAO)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Grafik\DesignCAD 22.lnk -> C:\Program Files (x86)\IMSIDesign\DesignCAD 22\dcadexp22.exe (IMSIDesign)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\PicoScope 6.lnk -> C:\Program Files (x86)\Pico Technology\PicoScope6\PicoScope.exe (Pico Technology)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk -> C:\Windows\System32\fodhelper.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paint Shop Pro 5\Animation Shop.lnk -> C:\Program Files (x86)\Paint Shop Pro 5\Anim.exe (Jasc Software Inc.)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paint Shop Pro 5\Paint Shop Pro 5.lnk -> C:\Program Files (x86)\Paint Shop Pro 5\Psp.exe (Jasc Software, Inc.)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Start Fugawi.lnk -> C:\Program Files (x86)\Fugawi\Fugawi\Fugawi45.exe (Northport Systems Inc.)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Acrobat Reader DC.lnk -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\Users\Public\Desktop\ASUS HiPost.lnk -> C:\Program Files (x86)\ASUS\ASUS HiPost\SmartClipboardASUS.exe ()
Shortcut: C:\Users\Public\Desktop\Evernote.lnk -> C:\Windows\Installer\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}\Evernote.ico ()
Shortcut: C:\Users\Public\Desktop\Eye Care Switcher.Lnk -> C:\Program Files (x86)\ASUS\Splendid\Eye Care Switcher.exe ()
Shortcut: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\MyPhoneExplorer.lnk -> C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe (F.J. Wechselberger)
Shortcut: C:\Users\Public\Desktop\WebStorage.lnk -> C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSPanel.exe (ASUS Cloud Corporation)
Shortcut: C:\Users\Public\Desktop\WPS Office.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\office6\launcher.exe (Zhuhai Kingsoft Office Software Co.,Ltd)




ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> -sta {C90FB8CA-3295-4462-A721-2935E83694BA}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games App - asus.lnk -> C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe (WildTangent) -> /src gamesmenu /dp asus
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WPS Office\WPS Presentation.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\office6\wpp.exe (Zhuhai Kingsoft Office Software Co.,Ltd) -> /w
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WPS Office\WPS Writer.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\office6\wps.exe (Zhuhai Kingsoft Office Software Co.,Ltd) -> /w
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WPS Office\WPS Office Tools\Check for Updates.lnk -> C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe (Zhuhai Kingsoft Office Software Co.,Ltd) -> /from:manual
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online\Uninstall Westwood Online.lnk -> C:\Windows\System32\msiexec.exe (Microsoft Corporation) -> /x {BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Chat\Uninstall Westwood Chat.lnk -> C:\Windows\System32\msiexec.exe (Microsoft Corporation) -> /x {7CAE6A67-AF7B-4A6A-8705-8AFACA45BB60}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> -Iskins
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software) -> /nogui
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pico Technology\Uninstall or Repair PicoScope 6.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i {fe3cc74a-a370-4be1-8daf-90355086e1f4}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Fluglehrer.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe (Microsoft Corporation) -> /INSTRUCTOR
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Microsoft Flight Simulator 2004 deinstallieren.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\UNINSTAL.EXE (Microsoft Corporation) -> /runtemp
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Problembehandlung\Abgesicherter Modus.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe (Microsoft Corporation) -> -SWREND
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator 2004\Problembehandlung\Standardeinstellungen wiederherstellen.lnk -> C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe (Microsoft Corporation) -> -RESETINI
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\LogView V2 Deinstallation.lnk -> C:\Program Files (x86)\LogView V2\Installer.exe () -> /uninstall
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2\LogView V2 Webupdate.lnk -> C:\Program Files (x86)\LogView V2\Installer.exe () -> /webupdate
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters\LAV Audio Configuration.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> "C:\Program Files (x86)\LAV Filters\x86\LAVAudio.ax",OpenConfiguration
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters\LAV Splitter Configuration.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> "C:\Program Files (x86)\LAV Filters\x86\LAVSplitter.ax",OpenConfiguration
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters\LAV Video Configuration.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> "C:\Program Files (x86)\LAV Filters\x86\LAVVideo.ax",OpenConfiguration
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security\Kaspersky Internet Security entfernen.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} REMOVE=ALL
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Auf Updates prüfen.lnk -> C:\Program Files\Java\jre1.8.0_73\bin\javacpl.exe (Oracle Corporation) -> -tab update
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Info zu Java.lnk -> C:\Program Files\Java\jre1.8.0_73\bin\javacpl.exe (Oracle Corporation) -> -tab about
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\WildTangent Games App - asus.lnk -> C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe (WildTangent) -> /src gamesmenu /dp asus
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\DVBViewer Pro Wizard.lnk -> C:\Program Files (x86)\DVBViewer\dvbviewer.exe (CM&V Hackbart) -> -wizard
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Support\DVBViewer Pro (Debug Mode).lnk -> C:\Program Files (x86)\DVBViewer\dvbviewer.exe (CM&V Hackbart) -> -debug -vanilla -osddebug
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\Support\DVBViewer Pro (Safe Mode).lnk -> C:\Program Files (x86)\DVBViewer\dvbviewer.exe (CM&V Hackbart) -> -c -vanilla
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 25 GB\Dropbox 25 GB.lnk -> C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe () -> manual
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\Start Menu\Programs\SpyHunter\SpyHunter Emergency Startup.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> "C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.com"
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\Start Menu\Programs\SpyHunter\Uninstall.lnk -> C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Enigma Software Group\sh_installer.exe (Enigma Software Group USA, LLC.) -> -r sh
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kaspersky\Sicherer Zahlungsverkehr.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe (Kaspersky Lab ZAO) -> -safebanking
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paint Shop Pro 5\Paint Shop Pro Readme.lnk -> C:\Program Files (x86)\Paint Shop Pro 5\Readme.doc () -> Paint Shop Pro Important Information
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Public\Desktop\Dropbox 25 GB.lnk -> C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe () -> manual


InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters\Visit LAV Filters Home Page.url -> hxxp://1f0.de/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters\Visit LAV Filters on Doom9.url -> hxxp://forum.doom9.org/showthread.php?t=156191
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Besuchen Sie Java.com.url -> hxxp://java.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Hilfe aufrufen.url -> hxxp://java.com/help
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\DVBViewer Pro im Internet\DVBViewer Community Forum.url -> hxxp://www.dvbviewer.tv/forum/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer\DVBViewer Pro im Internet\DVBViewer Wiki.url -> hxxp://wiki.dvbviewer.tv
InternetURL: C:\Users\Gunther\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\Gunther\Favorites\Tripadvisor.url -> hxxp://www.tripadvisor.com/Home-m25036
InternetURL: C:\Users\Gunther\Favorites\ASUS E-Service\ASUS Homepage.url -> hxxp://www.asus.com/
InternetURL: C:\Users\Gunther\Favorites\ASUS E-Service\ASUS Member.url -> hxxps://account.asus.com/
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Favorites\Tripadvisor.url -> hxxp://www.tripadvisor.com/Home-m25036
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Favorites\ASUS E-Service\ASUS Homepage.url -> hxxp://www.asus.com/
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Favorites\ASUS E-Service\ASUS Member.url -> hxxps://account.asus.com/
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\ALDI_Talk.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Arcor.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\BASCOM_Forum.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Dokujunkies.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Easy-Box.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Flight_Radar.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Geoportal_Erfurt.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\GMX.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Google_Mail.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Google_Maps.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Google_Play_Store.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Gully_Board.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\ISS_Sichtbarkeit.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Itakka_Portal.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Kai_Lego.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Kraniche_GoogleEarth.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\LegoSteine.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\mobilism.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\Samsung_Galaxy_GT_I9300.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\SPKMittelthüringen.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten\SPKMittelthüringen2.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen\Trojaner_Board.url -> hxxp://www.arcor.de/ums/ums_titel.jsp
InternetURL: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\Favorites\aboutstart.url -> about:start

==================== Ende von Shortcut.txt =============================


burningice 27.02.2016 19:27

Bitte folge mal dieser Anleitung: https://support.mozilla.org/de/kb/firefox-bereinigen

Tritt das Problem noch auf? Tritt es bei allen Seiten auf?

gzielos 28.02.2016 12:40

Hallo Rafael,
vielen Dank für den Einsatz sogar am Wochenende - Respekt!

Zunächst, es tritt nur sporadisch auf, vielleicht bei jedem 5. Zugriff auf Firefox. Zum Auftreten habe ich ein paar Screenshots der Firefox-Chronik gemacht, wenn Dir das hilft, sage mir bitte, wie ich das hier unterbringen kann (jpg-Bilder). Im Übrigen habe ich Deinen Rat befolgt und Firefox nach Vorgabe "bereinigt". Bis jetzt tritt das Werbeproblem nicht auf, es ist aber zu früh zum jubeln. Ich werde morgen einen Dauerstress mit Firefox machen und schauen, was sich tut. Heute muss ich mich allerdings mit meinem Enkel beschäftigen (10 Jahre). Der ist zwar scharf auf meinen Computer - aber nicht so sehr auf Firefox...
Ich melde mich morgen
Viele Grüße nach Wien
Gunther

Hallo Rafael,
ich bin jetzt vorsichtig optimistisch! Heute habe ich solche "Überraschungen" noch nicht wieder erlebt. Vielleicht war das mit dem Firefox neu einrichten die Lösung. Sollte das so bleiben, bedanke ich mich erstmal - ansonsten darf ich Dir nochmal schreiben?
Viele Grüße von Erfurt nach Wien. Wie kann man Euch eine Kleinigkeit spenden?

Gunther

burningice 28.02.2016 13:07

Klar :)

Danke für deine Spende! Den Link findest du in meiner Signatur!

Machen wir noch einen abschließenden Scan:

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Hinweis: Dieser Scan kann schon einmal mehrere Stunden dauern...

gzielos 28.02.2016 16:59

Hallo Rafael,
obwohl es scheinbar keine Werbeeinblendungen mehr gibt, wollte ich trotzdem Deinem Rat folgen. Der angegebene Download erinnert mich aber makaber an den Auslöser meines Problems. Auch hier ein "simpler" Download und dann ein zusätzliches Tool, das ich nicht brauche und das mir im ersten Fall ein sehr unangenehmes Problem beschert hat. Ich habe mir geschworen, so etwas wissentlich nie mehr zu dulden. Was soll das:

Download
3 einfache Schritte:
1. Auf "Download" klicken
2. Von unserer Website herunterladen
3. Kostenloser Dateikonverter

Ich brauche so etwas nicht und wenn, werde ich es nur allein und nicht als Anhängsel herunter laden. Hoffentlich gelingt mir das immer.
Ich habe nicht auf "Download" gedrückt, vielleicht sagst Du mir, wie das zusammenhängt?

Eine Spende werde ich trotzdem überweisen, sind 20 € o.k?

Gruß Gunther

burningice 28.02.2016 20:04

Zunächst einmal vielen Dank für deine Spende! :)

Diesen Scan benötigen wir als eine Art zweiter Meinung zu den anderen Scans, weil er ziemlich genau ist.

Deine Beschreibung ist ungewöhnlich, FilePony ist Downloadpartner vom TrojanerBoard und hat für gewöhnlich nicht solche Meldungen.

Schritt 1
Führe bitte den Online Scan wie oben beschrieben durch, du kannst es direkt vom Hersteller laden wenn du möchtest: ESET Free Online Scanner :: Complete Malware Detection :: ESET

Schritt 2
Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.

gzielos 29.02.2016 13:48

Hallo Rafael,
hier der Scan von ESET:
Die Android-Sachen stammen aus einem Ordner, in dem ich alles für's Smartphone gesammelt habe, das ist sicher uninteressant für mein (ehemaliges?) Windows-Problem. Die Werbung kam übrigens bisher nicht wieder...
Der gewünschte Scan mit FRST kommt dann noch
Gruß
Gunther

Code:

C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\2HMtoXH6J3.tmp        a variant of Win32/ExpressDownloader.K potentially unwanted application
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\in1CDA95C6\1E0D3EB1_stp\RAM.dll        a variant of Win32/InstallCore.ACL potentially unwanted application
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\in7EE26C4F\77558EF7_stp\RAM.dll        a variant of Win32/InstallCore.ACL potentially unwanted application
D:\Android\com.yocto.strippoker_v_120130903.apk        a variant of Android/Leadbolt.C potentially unwanted application
D:\Android\MyPhoneExplorer_Setup_1.8.4.exe        Win32/InstallMonetizer.AH potentially unwanted application
D:\Android\MyPhoneExplorer_Setup_1.8.5.exe        Win32/WebDevAZ.C potentially unwanted application
D:\Android\Office_Chart_1.8.apk        a variant of Android/Leadbolt.B potentially unwanted application
D:\Android\xMovie – Premium Tube 1.3.5 (Mod-AdFree).rar        a variant of Android/AdDisplay.AirPush.P potentially unwanted application
D:\Android\Poker\com.yocto.strippoker_v_120130903.apk        a variant of Android/Leadbolt.C potentially unwanted application
D:\Android\xMovie\xMovie.apk        a variant of Android/AdDisplay.AirPush.P potentially unwanted application
D:\GPS\Geogrid\DTLite4471-0333.exe        Win32/DownWare.L potentially unwanted application

Hallo Rafael,
hier der FRST- und Addition-Text:

FRST-erster Teil
Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:21-02-2016 01
durchgeführt von Gunther (Administrator) auf DESKTOP-L5KOO87 (29-02-2016 13:35:21)
Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
Geladene Profile: Gunther (Verfügbare Profile: Gunther)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGiftBoxDesktop.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Zhuhai Kingsoft Office Software Co.,Ltd) C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
() C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\SecureLine.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSPanel.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.16941.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2016.27.2.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(ESET) C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Microsoft Corporation) C:\Windows\System32\sol.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe [63272 2015-05-31] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595504 2016-01-29] (Oracle Corporation)
HKU\S-1-5-21-2421830386-3516612503-909366600-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-18] (Electronic Arts)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avast! SecureLine.lnk [2015-11-11]
ShortcutTarget: avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{db2c9de7-f35d-44c5-8037-6eea81e0d451}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus15.msn.com/?pc=ASTE
HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKU\S-1-5-21-2421830386-3516612503-909366600-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2421830386-3516612503-909366600-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-21] (Oracle Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-21] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)

FireFox:
========
FF ProfilePath: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\fhu5bm3q.default-1456599617439
FF Plugin: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-21] (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-18] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-15] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Extension: Simple Mail - C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\fhu5bm3q.default-1456599617439\extensions\simplemail@telega.phpnet.us [2016-02-27]
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2016-02-17]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe [71168 2015-05-31] (ASUS Cloud Corporation) [Datei ist nicht signiert]
R2 ASUSGiftBoxDekstop; C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe [315704 2015-07-20] (ASUS)
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2016-02-17] (Kaspersky Lab ZAO)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1385640 2015-08-17] (Intel Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-04-14] (WildTangent)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [353896 2015-10-06] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
R2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe [133480 2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-18] (Electronic Arts)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [445240 2015-04-29] ()
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.5.471.0\McCSPServiceHost.exe" [X]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4317808 2015-07-14] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [97680 2015-08-17] (ASUS Corporation)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [53752 2015-08-17] (Intel Corporation)
R3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [50696 2015-08-17] (Intel Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-02-19] ()
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [261624 2015-08-17] (Intel Corporation)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [68280 2015-06-06] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [181640 2016-02-17] (AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [227512 2016-02-17] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [934272 2016-02-17] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39608 2015-06-11] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2016-02-17] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [87944 2016-02-17] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [52832 2016-02-20] (hxxp://libusb-win32.sourceforge.net)
S3 libusbK; C:\Windows\System32\drivers\libusbK.sys [47928 2016-02-20] (hxxp://libusb-win32.sourceforge.net)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-28] (Intel Corporation)
S3 PCTV_NTAMD64; C:\Windows\system32\DRIVERS\pctv4XXe_amd64.sys [571552 2016-02-21] (Pinnacle Systems GmbH)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek                                            )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [420440 2015-05-27] (Realsil Semiconductor Corporation)
S2 TVicPort; kein ImagePath
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [254976 2010-08-31] (Jungo)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-02-29 12:45 - 2016-02-29 12:45 - 00016148 _____ C:\Windows\system32\DESKTOP-L5KOO87_Gunther_HistoryPrediction.bin
2016-02-29 08:25 - 2016-02-29 08:25 - 00000000 ____D C:\Program Files (x86)\ESET
2016-02-29 08:23 - 2016-02-29 08:23 - 02870984 _____ (ESET) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\esetsmartinstaller_enu.exe
2016-02-29 08:23 - 2016-02-29 08:23 - 02870984 _____ (ESET) C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\esetsmartinstaller_enu.exe
2016-02-28 19:23 - 2016-02-28 19:23 - 00000000 ____D C:\TSCDRAW2
2016-02-28 12:00 - 2004-08-04 13:00 - 00359936 _____ (Microsoft Corporation) C:\Windows\system\cards.dll
2016-02-28 11:50 - 2004-08-04 13:00 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\cards.dll
2016-02-28 11:49 - 2004-08-04 13:00 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\sol.exe
2016-02-27 15:49 - 2016-02-27 15:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Corel Grafik
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\TECHNICN.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\TECHNICI.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\NEWS701N.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\NEWS701B.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\MUSICAL.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\MTEXTRA.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\KIDNAP.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\HUM521N.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\HUM521B.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\GEOGRAPH.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\FOOD.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\FENCES.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\DOMCASN.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\COMBULL.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\AVGARDNI.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\AVGARDN.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\AVGARDMI.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\AVGARDM.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\ARCHITRN.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\ANIMALS1.FOT
2016-02-27 15:49 - 2016-02-20 16:54 - 00000150 _____ C:\Windows\win.COR
2016-02-27 15:48 - 2016-02-27 15:49 - 00000000 ____D C:\Windows\COREL
2016-02-27 15:44 - 2016-02-27 15:53 - 00000000 ____D C:\COREL
2016-02-26 19:38 - 2016-02-26 19:41 - 00000000 ____D C:\AdwCleaner
2016-02-26 19:36 - 2016-02-26 19:36 - 01511936 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\AdwCleaner_5.036.exe
2016-02-26 15:43 - 2016-02-26 16:25 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-02-26 15:42 - 2016-02-26 15:42 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-02-26 15:42 - 2016-02-26 15:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-02-26 15:42 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-02-26 15:42 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-02-26 15:42 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-02-26 15:36 - 2016-02-26 15:37 - 22908888 _____ (Malwarebytes ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\mbam-setup-2.2.0.1024.exe
2016-02-25 09:06 - 2016-02-28 11:05 - 00000000 ____D C:\ProgramData\TEMP
2016-02-25 09:06 - 2016-02-25 10:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\DesignCAD 22
2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22
2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\ProgramData\IMSIDesign
2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\Program Files (x86)\IMSIDesign
2016-02-25 09:01 - 2016-02-25 09:01 - 52116093 _____ (Franzis Verlag GmbH ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\30812-0-DesignCAD-V22-Basistoolkit.exe
2016-02-24 09:36 - 2016-02-24 13:26 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\ATMEGA_Programmierung
2016-02-23 16:46 - 2016-02-26 16:19 - 00000000 ____D C:\Program Files (x86)\Atmel
2016-02-23 16:36 - 2016-02-23 16:37 - 05198040 _____ (akeo.ie) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\zadig_2.2.exe
2016-02-23 13:25 - 2016-02-23 13:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Mauer
2016-02-23 09:26 - 2016-02-29 13:35 - 00000000 ____D C:\FRST
2016-02-23 09:19 - 2016-02-29 13:24 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
2016-02-23 09:18 - 2016-02-23 09:18 - 02371072 _____ (Farbar) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\FRST64.exe
2016-02-22 13:53 - 2016-02-27 16:19 - 00048200 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\GDIPFONTCACHEV1.DAT
2016-02-22 10:20 - 2016-02-22 10:20 - 00000000 ____D C:\ProgramData\Brother
2016-02-22 10:19 - 2016-02-22 10:19 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\NetworkRepairTool
2016-02-22 10:18 - 2016-02-22 10:19 - 00983784 _____ (A.I.SOFT,INC.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Nettool_12140.EXE
2016-02-22 10:09 - 2016-02-22 10:09 - 00000034 _____ C:\Windows\SysWOW64\BD2040.DAT
2016-02-22 09:49 - 2016-02-28 16:36 - 00004174 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BF62B9E7-975F-45F1-9CC0-00F0D4052F41}
2016-02-22 08:05 - 2016-02-22 08:06 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Audacity
2016-02-22 08:05 - 2016-02-22 08:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Audacity
2016-02-22 08:04 - 2016-02-22 08:05 - 00000000 ____D C:\Program Files (x86)\Audacity
2016-02-22 08:04 - 2016-02-22 08:04 - 00001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2016-02-21 17:54 - 2016-02-21 17:54 - 00002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk
2016-02-21 17:54 - 2016-02-21 17:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Google
2016-02-21 17:53 - 2016-02-21 17:53 - 00987728 _____ (Google Inc.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\GoogleEarthSetup.exe
2016-02-21 17:44 - 2016-02-21 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi
2016-02-21 17:44 - 2016-02-21 17:44 - 00001107 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Fugawi Global Navigator 4.5.LNK
2016-02-21 17:43 - 2016-02-21 17:43 - 00000000 ____D C:\Program Files (x86)\Fugawi
2016-02-21 17:10 - 2016-02-21 17:44 - 00000037 _____ C:\Windows\iltwain.ini
2016-02-21 15:38 - 2016-02-21 15:45 - 00000017 ____H C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\19720201.dat
2016-02-21 15:35 - 2016-02-21 18:04 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Fugawi
2016-02-21 15:35 - 2016-02-21 17:44 - 00000000 ____D C:\ProgramData\Fugawi
2016-02-21 15:35 - 2016-02-21 15:51 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Fugawi
2016-02-21 15:35 - 2016-02-21 15:35 - 00000000 ____D C:\Program Files (x86)\Earth Resource Mapping
2016-02-21 15:35 - 2016-02-21 15:35 - 00000000 _____ C:\Windows\Lmvk32.INI
2016-02-21 15:35 - 2003-03-18 19:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2016-02-21 15:35 - 2003-02-21 03:42 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2016-02-21 15:35 - 2002-01-05 04:48 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll
2016-02-21 15:35 - 2002-01-05 04:36 - 00964608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll
2016-02-21 15:32 - 2016-02-21 15:32 - 55326352 _____ (Northport Systems Inc. ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\fugawi45565615.exe
2016-02-21 13:13 - 2016-02-22 16:39 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.mediathek3
2016-02-21 13:13 - 2016-02-21 13:13 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Sun
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Sun
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.oracle_jre_usage
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Oracle
2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\ProgramData\Oracle
2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\Program Files\Java
2016-02-21 13:07 - 2016-02-21 13:12 - 57099360 _____ (Oracle Corporation) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\jre-8u73-windows-x64.exe
2016-02-21 12:24 - 2016-02-21 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
2016-02-21 12:24 - 2016-02-21 12:24 - 00000000 ____D C:\Program Files (x86)\LAV Filters
2016-02-21 12:23 - 2016-02-21 12:23 - 09532984 _____ (1f0.de ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\LAVFilters-0.67-Installer.exe
2016-02-21 12:21 - 2016-02-21 12:21 - 07185389 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\LAVFilters-0.67-x64.zip
2016-02-21 12:13 - 2016-02-21 12:13 - 00318223 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_Filter_3_8_1.zip
2016-02-21 10:09 - 2016-02-21 10:09 - 00571552 _____ (Pinnacle Systems GmbH) C:\Windows\system32\Drivers\pctv4XXe_amd64.sys
2016-02-21 10:03 - 2016-02-21 10:06 - 00000000 ____D C:\Program Files (x86)\DVBViewer
2016-02-21 10:03 - 2016-02-21 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer
2016-02-21 10:03 - 2016-02-21 10:03 - 00000000 ____D C:\ProgramData\CMUV
2016-02-21 10:00 - 2016-02-21 12:30 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\DVBViewer
2016-02-21 09:58 - 2016-02-21 09:58 - 01082553 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_GE_Anleitung.zip
2016-02-21 09:57 - 2016-02-21 09:57 - 07436126 _____ (CM&V ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_setup.exe
2016-02-21 09:55 - 2016-02-21 09:55 - 00001024 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\9DD6626F58261648.dvbvkey
2016-02-21 09:26 - 2016-02-21 09:26 - 00000706 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Geräte - Shortcut.lnk
2016-02-21 09:05 - 2016-02-21 09:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Pico Technology
2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Downloaded Installations
2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pico Technology
2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\Program Files (x86)\Pico Technology
2016-02-21 08:57 - 2016-02-21 08:57 - 00000000 ____D C:\Program Files\Pico Technology
2016-02-20 17:27 - 2016-02-20 17:27 - 111098163 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Microsoft-Spiele-x64.zip
2016-02-20 17:03 - 2016-02-28 10:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\MyPhoneExplorer
2016-02-20 17:03 - 2016-02-20 17:03 - 00002128 _____ C:\Users\Public\Desktop\MyPhoneExplorer.lnk
2016-02-20 17:03 - 2016-02-20 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer
2016-02-20 17:03 - 2016-02-20 17:03 - 00000000 ____D C:\Program Files (x86)\MyPhoneExplorer
2016-02-20 17:01 - 2016-02-20 17:02 - 07886000 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\MyPhoneExplorer_Setup_1.8.7.exe
2016-02-20 15:24 - 2016-02-20 15:24 - 00003668 _____ C:\Windows\System32\Tasks\{FCC43C23-C686-4530-BB4D-97C7E689F677}
2016-02-20 15:23 - 2016-02-20 15:23 - 00000000 ____D C:\ProgramData\VS
2016-02-20 15:18 - 2016-02-20 15:18 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010
2016-02-20 15:18 - 2016-02-20 15:18 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010
2016-02-20 12:53 - 2016-02-20 12:53 - 00003758 _____ C:\Windows\System32\Tasks\DriverMaxAgent
2016-02-20 11:49 - 2016-02-26 19:41 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-02-20 11:49 - 2016-02-20 12:59 - 00067680 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusb0.dll
2016-02-20 11:49 - 2016-02-20 12:59 - 00052832 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusb0.sys
2016-02-20 11:49 - 2016-02-20 11:58 - 00099128 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusbK.dll
2016-02-20 11:49 - 2016-02-20 11:58 - 00084280 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusbK.dll
2016-02-20 11:49 - 2016-02-20 11:58 - 00076384 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusb0.dll
2016-02-20 11:49 - 2016-02-20 11:58 - 00047928 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusbK.sys
2016-02-20 11:49 - 2016-02-20 11:55 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\usb_driver
2016-02-20 11:49 - 2016-02-20 11:49 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2016-02-20 11:36 - 2016-02-20 11:36 - 00000000 ____D C:\ProgramData\Atmel
2016-02-20 10:37 - 2016-02-20 10:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft Corporation
2016-02-20 10:32 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\VisualAssist
2016-02-20 10:32 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\VisualAssist
2016-02-20 10:32 - 2016-02-20 10:32 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\IsolatedStorage
2016-02-20 10:31 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Atmel
2016-02-20 10:27 - 2016-02-20 10:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Atmel Studio
2016-02-20 10:27 - 2016-02-20 10:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Atmel
2016-02-20 10:27 - 2016-02-20 10:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Atmel
2016-02-20 10:26 - 2016-02-20 10:26 - 00000000 ____D C:\Program Files\Seggger
2016-02-20 10:25 - 2016-02-20 10:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0
2016-02-20 10:25 - 2010-08-31 13:23 - 00254976 _____ (Jungo) C:\Windows\system32\Drivers\windrvr6.sys
2016-02-20 10:25 - 2010-01-17 20:13 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi1011.dll
2016-02-20 10:25 - 2009-09-02 11:48 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1010.dll
2016-02-20 10:25 - 2009-07-14 10:07 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1002.dll
2016-02-20 10:25 - 2009-05-14 13:21 - 00157184 _____ (Jungo) C:\Windows\SysWOW64\wdapi1001.dll
2016-02-20 10:25 - 2008-07-04 09:51 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi921.dll
2016-02-20 10:25 - 2006-10-18 15:39 - 00141824 _____ (Jungo) C:\Windows\SysWOW64\wdapi811.dll
2016-02-20 10:24 - 2016-02-20 10:24 - 00000000 ____D C:\Program Files\Microsoft Help Viewer
2016-02-20 10:24 - 2016-02-20 10:24 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Windows\SysWOW64\1033
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Visual Studio 2010
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-02-20 09:37 - 2016-02-20 09:37 - 00000771 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte - Shortcut.lnk
2016-02-20 09:32 - 2016-02-20 09:32 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte
2016-02-20 09:29 - 2016-02-20 09:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\MCS Electronics
2016-02-20 09:28 - 2016-02-20 09:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\MCS Electronics
2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\MCS Electronics
2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics
2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\Program Files (x86)\MCS Electronics
2016-02-19 20:10 - 2016-02-19 20:10 - 00001230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-02-19 20:10 - 2016-02-19 20:10 - 00001218 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-02-19 17:41 - 2016-02-19 17:41 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
2016-02-19 17:41 - 2016-02-19 17:41 - 00003450 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Enigma Software Group
2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 ____D C:\sh4ldr
2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 _____ C:\autoexec.bat
2016-02-19 13:43 - 2016-02-19 13:43 - 00003972 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-02-19 13:43 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Adobe
2016-02-19 13:43 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\CEF
2016-02-19 13:42 - 2016-02-19 13:45 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-02-19 13:42 - 2016-02-19 13:44 - 00000000 ____D C:\ProgramData\Adobe
2016-02-19 13:42 - 2016-02-19 13:42 - 00002126 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-02-19 13:42 - 2016-02-19 13:42 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-02-19 13:41 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Adobe
2016-02-19 10:06 - 2016-02-19 10:06 - 00000000 ____D C:\Windows\system32\SleepStudy
2016-02-18 19:57 - 2016-02-29 13:02 - 00001144 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-18 19:57 - 2016-02-18 19:57 - 00004202 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-18 19:57 - 2016-02-18 19:57 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Google
2016-02-18 19:56 - 2016-02-28 13:14 - 00001140 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-18 19:56 - 2016-02-21 17:54 - 00000000 ____D C:\Program Files (x86)\Google
2016-02-18 19:56 - 2016-02-18 19:56 - 00003970 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-18 19:53 - 2016-02-18 19:53 - 00000764 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Arbeitsdateien - Shortcut.lnk
2016-02-18 19:50 - 2016-02-18 19:50 - 00000675 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\GPS - Shortcut.lnk
2016-02-18 19:49 - 2016-02-18 19:49 - 00000780 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kranich_Projekte - Shortcut.lnk
2016-02-18 19:43 - 2016-02-18 19:43 - 00000707 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\TK102-2 -Shortcut.lnk
2016-02-18 19:33 - 2016-02-22 08:07 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio
2016-02-18 18:46 - 2016-02-18 18:46 - 31367109 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\vlc-2.2.2-win64.exe
2016-02-18 16:44 - 2016-02-18 16:47 - 00000000 ____D C:\Windows\system32\MRT
2016-02-18 16:44 - 2016-02-18 16:44 - 146614896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-02-18 16:33 - 2016-02-18 16:33 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-02-18 16:33 - 2016-02-18 16:33 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-02-18 16:30 - 2016-01-31 07:23 - 02601160 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2016-02-18 16:30 - 2016-01-31 07:04 - 01811360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2016-02-18 16:30 - 2016-01-31 06:38 - 21873152 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-02-18 16:30 - 2016-01-31 06:34 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll
2016-02-18 16:30 - 2016-01-31 06:33 - 24593920 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 12504576 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-02-18 16:30 - 2016-01-31 06:23 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-02-18 16:30 - 2016-01-31 06:22 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2016-02-18 16:30 - 2016-01-31 06:17 - 19324928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-02-18 16:30 - 2016-01-31 06:17 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2016-02-18 16:30 - 2016-01-31 06:14 - 07525376 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-02-18 16:30 - 2016-01-31 06:14 - 03588096 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-02-18 16:30 - 2016-01-31 06:13 - 04791808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-02-18 16:30 - 2016-01-31 06:11 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-02-18 16:30 - 2016-01-31 06:07 - 18802176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-02-18 16:30 - 2016-01-31 06:04 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2016-02-18 16:30 - 2016-01-31 06:02 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-02-18 16:30 - 2016-01-31 06:00 - 11263488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-02-18 16:30 - 2016-01-31 05:59 - 05457408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-02-18 16:30 - 2016-01-05 04:06 - 08022368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-02-18 16:30 - 2016-01-05 04:06 - 01063504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-02-18 16:30 - 2016-01-05 04:06 - 00119800 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-02-18 16:30 - 2016-01-05 04:04 - 02824248 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-02-18 16:30 - 2016-01-05 03:30 - 00882208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-02-18 16:30 - 2016-01-05 03:30 - 00100712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-02-18 16:30 - 2016-01-05 03:28 - 02445128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-02-18 16:30 - 2016-01-05 03:09 - 01234944 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-02-18 16:30 - 2016-01-05 02:57 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-02-18 16:30 - 2016-01-05 02:57 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-02-18 16:30 - 2016-01-05 02:29 - 00650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-02-18 16:30 - 2016-01-05 02:29 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-02-18 16:30 - 2016-01-05 02:26 - 00373760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-02-18 16:30 - 2015-11-25 06:40 - 00516448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2016-02-18 16:30 - 2015-11-25 05:49 - 01569280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2016-02-18 16:30 - 2015-11-25 05:30 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-02-18 16:30 - 2015-11-25 05:30 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2016-02-18 16:30 - 2015-11-25 05:22 - 01383424 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-02-18 16:30 - 2015-11-25 05:18 - 01233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2016-02-18 16:30 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2016-02-18 16:30 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-02-18 16:30 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-02-18 16:30 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-02-18 16:30 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2016-02-18 16:30 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2016-02-18 16:30 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-02-18 16:30 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2016-02-18 16:30 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-02-18 16:30 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-02-18 16:30 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-02-18 16:30 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-02-18 16:30 - 2015-09-17 07:48 - 02432336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-02-18 16:30 - 2015-09-17 07:48 - 00406864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-02-18 16:30 - 2015-09-17 07:06 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll
2016-02-18 16:30 - 2015-09-17 07:06 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2016-02-18 16:30 - 2015-09-17 07:03 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2016-02-18 16:30 - 2015-09-17 07:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2016-02-18 16:30 - 2015-09-17 06:55 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll
2016-02-18 16:30 - 2015-09-17 06:52 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2016-02-18 16:30 - 2015-09-17 06:52 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-02-18 16:30 - 2015-09-17 06:51 - 01812480 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2016-02-18 16:30 - 2015-09-17 06:50 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-02-18 16:30 - 2015-09-17 06:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\buttonconverter.sys
2016-02-18 16:30 - 2015-09-17 06:48 - 02093056 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2016-02-18 16:30 - 2015-09-17 06:47 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2016-02-18 16:30 - 2015-09-17 06:46 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2016-02-18 16:30 - 2015-09-17 06:46 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll
2016-02-18 16:30 - 2015-09-17 06:44 - 01844736 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2016-02-18 16:30 - 2015-09-17 06:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2016-02-18 16:30 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2016-02-18 16:30 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-02-18 16:30 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2016-02-18 16:30 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-02-18 16:30 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2016-02-18 16:30 - 2015-08-11 11:03 - 00442208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-02-18 16:30 - 2015-08-11 11:02 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2016-02-18 16:30 - 2015-08-11 10:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\tetheringclient.dll
2016-02-18 16:30 - 2015-08-11 10:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2016-02-18 16:29 - 2016-01-31 07:25 - 01951872 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-02-18 16:29 - 2016-01-31 07:25 - 01248896 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2016-02-18 16:29 - 2016-01-31 07:24 - 01824880 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-02-18 16:29 - 2016-01-31 07:23 - 01420392 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-02-18 16:29 - 2016-01-31 07:06 - 01535032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-02-18 16:29 - 2016-01-31 07:06 - 01531368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-02-18 16:29 - 2016-01-31 07:06 - 00809336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2016-02-18 16:29 - 2016-01-31 07:04 - 01180696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-02-18 16:29 - 2016-01-31 06:33 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\IoTAssignedAccessLockFramework.dll
2016-02-18 16:29 - 2016-01-31 06:29 - 11557888 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-02-18 16:29 - 2016-01-31 06:26 - 06787072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-02-18 16:29 - 2016-01-31 06:26 - 03793408 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-02-18 16:29 - 2016-01-31 06:20 - 02849792 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-02-18 16:29 - 2016-01-31 06:19 - 01602560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-02-18 16:29 - 2016-01-31 06:19 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll
2016-02-18 16:29 - 2016-01-31 06:16 - 09889280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-02-18 16:29 - 2016-01-31 06:16 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-02-18 16:29 - 2016-01-31 06:11 - 05156352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-02-18 16:29 - 2016-01-31 06:11 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2016-02-18 16:29 - 2016-01-31 06:06 - 02316800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-02-18 16:29 - 2016-01-31 06:05 - 01380864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-02-18 16:29 - 2016-01-31 06:02 - 00768000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-02-18 16:29 - 2016-01-05 04:07 - 02463704 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2016-02-18 16:29 - 2016-01-05 04:07 - 00377592 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-02-18 16:29 - 2016-01-05 04:06 - 01991120 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-02-18 16:29 - 2016-01-05 04:06 - 01270104 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 02641928 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 01150816 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00862056 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00787720 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 00784136 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00779928 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00772448 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00751992 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 00667856 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00233992 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00115704 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 00090912 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00083704 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-02-18 16:29 - 2016-01-05 03:59 - 00781976 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-02-18 16:29 - 2016-01-05 03:50 - 01083072 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-02-18 16:29 - 2016-01-05 03:50 - 00723648 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-02-18 16:29 - 2016-01-05 03:50 - 00345080 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-02-18 16:29 - 2016-01-05 03:50 - 00205072 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-02-18 16:29 - 2016-01-05 03:30 - 02459096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-02-18 16:29 - 2016-01-05 03:30 - 02162064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-02-18 16:29 - 2016-01-05 03:30 - 02152744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2016-02-18 16:29 - 2016-01-05 03:30 - 01106872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2016-02-18 16:29 - 2016-01-05 03:30 - 00368776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-02-18 16:29 - 2016-01-05 03:29 - 00208688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00714808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00696192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-02-18 16:29 - 2016-01-05 03:28 - 00695752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-02-18 16:29 - 2016-01-05 03:28 - 00645144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00635312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00497896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00107952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-02-18 16:29 - 2016-01-05 03:28 - 00082096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00072808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-02-18 16:29 - 2016-01-05 03:21 - 00658528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-02-18 16:29 - 2016-01-05 03:15 - 00931328 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-02-18 16:29 - 2016-01-05 03:15 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\usermgrcli.dll
2016-02-18 16:29 - 2016-01-05 03:10 - 00305776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-02-18 16:29 - 2016-01-05 03:10 - 00188032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-02-18 16:29 - 2016-01-05 03:09 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-02-18 16:29 - 2016-01-05 03:02 - 01672192 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-02-18 16:29 - 2016-01-05 03:02 - 00678912 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-02-18 16:29 - 2016-01-05 03:00 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-02-18 16:29 - 2016-01-05 02:59 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-02-18 16:29 - 2016-01-05 02:57 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2016-02-18 16:29 - 2016-01-05 02:51 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 01009664 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:44 - 00159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2016-02-18 16:29 - 2016-01-05 02:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usermgrcli.dll
2016-02-18 16:29 - 2016-01-05 02:42 - 00871936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-02-18 16:29 - 2016-01-05 02:32 - 01541632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-02-18 16:29 - 2016-01-05 02:32 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-02-18 16:29 - 2016-01-05 02:31 - 00563200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-02-18 16:29 - 2016-01-05 02:20 - 00890880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 01070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 00747008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 00409088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 00404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-02-18 16:29 - 2015-12-01 07:03 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\gpuenergydrv.sys
2016-02-18 16:29 - 2015-11-25 06:42 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-02-18 16:29 - 2015-11-25 06:42 - 00168288 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.exe
2016-02-18 16:29 - 2015-11-25 06:33 - 03622272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-02-18 16:29 - 2015-11-25 06:27 - 01366680 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-02-18 16:29 - 2015-11-25 06:12 - 04047288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-02-18 16:29 - 2015-11-25 06:09 - 01310880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-02-18 16:29 - 2015-11-25 06:01 - 02879024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-02-18 16:29 - 2015-11-25 05:49 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:49 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:49 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\RasMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:48 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\EthernetMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:48 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\DAMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:37 - 02350592 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-02-18 16:29 - 2015-11-25 05:36 - 01710592 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2016-02-18 16:29 - 2015-11-25 05:35 - 00929792 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2016-02-18 16:29 - 2015-11-25 05:35 - 00845824 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2016-02-18 16:29 - 2015-11-25 05:31 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll
2016-02-18 16:29 - 2015-11-25 05:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll
2016-02-18 16:29 - 2015-11-25 05:29 - 01649152 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-02-18 16:29 - 2015-11-25 05:29 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\ninput.dll
2016-02-18 16:29 - 2015-11-25 05:27 - 02180608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-02-18 16:29 - 2015-11-25 05:23 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-02-18 16:29 - 2015-11-25 05:22 - 01717248 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-02-18 16:29 - 2015-11-25 05:22 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2016-02-18 16:29 - 2015-11-25 05:19 - 01795584 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-02-18 16:29 - 2015-11-25 05:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2016-02-18 16:29 - 2015-11-25 05:17 - 00774656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2016-02-18 16:29 - 2015-11-25 05:16 - 01442816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll
2016-02-18 16:29 - 2015-11-25 05:16 - 00786432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2016-02-18 16:29 - 2015-11-25 05:13 - 02153984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-02-18 16:29 - 2015-11-25 05:10 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-02-18 16:29 - 2015-11-25 05:04 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-02-18 16:29 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2016-02-18 16:29 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2016-02-18 16:29 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2016-02-18 16:29 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2016-02-18 16:29 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2016-02-18 16:29 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2016-02-18 16:29 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2016-02-18 16:29 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-02-18 16:29 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2016-02-18 16:29 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2016-02-18 16:29 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2016-02-18 16:29 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2016-02-18 16:29 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-02-18 16:29 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2016-02-18 16:29 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2016-02-18 16:29 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-02-18 16:29 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-02-18 16:29 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-02-18 16:29 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2016-02-18 16:29 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-02-18 16:29 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2016-02-18 16:29 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-02-18 16:29 - 2015-09-17 07:50 - 00099664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-02-18 16:29 - 2015-09-17 07:49 - 06487248 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2016-02-18 16:29 - 2015-09-17 07:49 - 00894256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-02-18 16:29 - 2015-09-17 07:49 - 00553808 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ C:\Windows\system32\CoreUIComponents.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 02156400 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 01983824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-02-18 16:29 - 2015-09-17 07:48 - 00555768 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 00476760 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2016-02-18 16:29 - 2015-09-17 07:37 - 01295712 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2016-02-18 16:29 - 2015-09-17 07:28 - 05120056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2016-02-18 16:29 - 2015-09-17 07:28 - 00441168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-02-18 16:29 - 2015-09-17 07:28 - 00074880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2016-02-18 16:29 - 2015-09-17 07:27 - 01766952 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2016-02-18 16:29 - 2015-09-17 07:27 - 00454512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2016-02-18 16:29 - 2015-09-17 07:26 - 01895568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2016-02-18 16:29 - 2015-09-17 07:26 - 00434376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2016-02-18 16:29 - 2015-09-17 07:05 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2016-02-18 16:29 - 2015-09-17 07:05 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-02-18 16:29 - 2015-09-17 07:04 - 07569408 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2016-02-18 16:29 - 2015-09-17 07:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2016-02-18 16:29 - 2015-09-17 07:00 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll
2016-02-18 16:29 - 2015-09-17 06:57 - 02228736 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2016-02-18 16:29 - 2015-09-17 06:56 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2016-02-18 16:29 - 2015-09-17 06:55 - 00671232 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2016-02-18 16:29 - 2015-09-17 06:54 - 03781120 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2016-02-18 16:29 - 2015-09-17 06:54 - 00780288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-02-18 16:29 - 2015-09-17 06:54 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-02-18 16:29 - 2015-09-17 06:53 - 07055872 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2016-02-18 16:29 - 2015-09-17 06:52 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2016-02-18 16:29 - 2015-09-17 06:52 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2016-02-18 16:29 - 2015-09-17 06:52 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2016-02-18 16:29 - 2015-09-17 06:51 - 02660864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-02-18 16:29 - 2015-09-17 06:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\LocationGeofences.dll
2016-02-18 16:29 - 2015-09-17 06:49 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2016-02-18 16:29 - 2015-09-17 06:47 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-02-18 16:29 - 2015-09-17 06:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2016-02-18 16:29 - 2015-09-17 06:46 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2016-02-18 16:29 - 2015-09-17 06:45 - 01331200 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2016-02-18 16:29 - 2015-09-17 06:43 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2016-02-18 16:29 - 2015-09-17 06:40 - 06101504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2016-02-18 16:29 - 2015-09-17 06:39 - 00587264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2016-02-18 16:29 - 2015-09-17 06:39 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-02-18 16:29 - 2015-09-17 06:36 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2016-02-18 16:29 - 2015-09-17 06:35 - 05079552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2016-02-18 16:29 - 2015-09-17 06:35 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-02-18 16:29 - 2015-09-17 06:30 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2016-02-18 16:29 - 2015-09-17 06:29 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2016-02-18 16:29 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2016-02-18 16:29 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.PicturePassword.dll
2016-02-18 16:29 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-02-18 16:29 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2016-02-18 16:29 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2016-02-18 16:29 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2016-02-18 16:29 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2016-02-18 16:29 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2016-02-18 16:29 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2016-02-18 16:29 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2016-02-18 16:29 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-02-18 16:29 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2016-02-18 16:29 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2016-02-18 16:29 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2016-02-18 16:29 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2016-02-18 16:29 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2016-02-18 16:29 - 2015-08-11 10:50 - 01643872 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-02-18 16:29 - 2015-08-11 10:08 - 00893440 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2016-02-18 16:29 - 2015-08-11 10:05 - 03527168 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-02-18 16:29 - 2015-08-11 10:05 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\LocationPermissions.dll
2016-02-18 16:29 - 2015-08-11 10:03 - 02558976 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-02-18 16:29 - 2015-08-11 09:48 - 00671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2016-02-18 16:29 - 2015-08-11 09:43 - 02748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2016-02-18 16:29 - 2015-08-11 09:40 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2016-02-18 16:28 - 2016-01-31 06:29 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rasman.dll
2016-02-18 16:28 - 2016-01-31 06:24 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-02-18 16:28 - 2016-01-31 06:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-02-18 16:28 - 2016-01-31 06:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-02-18 16:28 - 2016-01-31 06:19 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IoTAssignedAccessLockFramework.dll
2016-02-18 16:28 - 2016-01-31 06:18 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-02-18 16:28 - 2016-01-31 06:18 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-02-18 16:28 - 2016-01-31 06:13 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasman.dll
2016-02-18 16:28 - 2016-01-31 06:13 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\ztrace_maps.dll
2016-02-18 16:28 - 2016-01-31 06:11 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-02-18 16:28 - 2016-01-31 06:05 - 00574464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2016-02-18 16:28 - 2016-01-31 06:05 - 00118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-02-18 16:28 - 2016-01-31 05:58 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ztrace_maps.dll
2016-02-18 16:28 - 2016-01-05 04:04 - 01591848 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-02-18 16:28 - 2016-01-05 04:04 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-02-18 16:28 - 2016-01-05 04:04 - 00249464 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-02-18 16:28 - 2016-01-05 04:04 - 00243248 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-02-18 16:28 - 2016-01-05 03:52 - 00441696 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-02-18 16:28 - 2016-01-05 03:50 - 01817064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-02-18 16:28 - 2016-01-05 03:50 - 00251544 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-02-18 16:28 - 2016-01-05 03:31 - 01365576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-02-18 16:28 - 2016-01-05 03:30 - 00232896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-02-18 16:28 - 2016-01-05 03:28 - 00277400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-02-18 16:28 - 2016-01-05 03:28 - 00116728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-02-18 16:28 - 2016-01-05 03:15 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2016-02-18 16:28 - 2016-01-05 03:10 - 00539136 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2016-02-18 16:28 - 2016-01-05 03:10 - 00278424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-02-18 16:28 - 2016-01-05 03:02 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-02-18 16:28 - 2016-01-05 03:01 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-02-18 16:28 - 2016-01-05 02:38 - 00556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2016-02-18 16:28 - 2016-01-05 02:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-02-18 16:28 - 2015-12-01 08:01 - 02115936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-02-18 16:28 - 2015-11-25 06:32 - 00113184 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2016-02-18 16:28 - 2015-11-25 05:59 - 00092992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2016-02-18 16:28 - 2015-11-25 05:36 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2016-02-18 16:28 - 2015-11-25 05:28 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-02-18 16:28 - 2015-11-25 05:26 - 00849408 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2016-02-18 16:28 - 2015-11-25 05:26 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2016-02-18 16:28 - 2015-11-25 05:25 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-02-18 16:28 - 2015-11-25 05:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZST.DLL
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2016-02-18 16:28 - 2015-11-25 05:11 - 00296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll
2016-02-18 16:28 - 2015-11-25 05:10 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-02-18 16:28 - 2015-11-25 05:08 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2016-02-18 16:28 - 2015-11-25 05:07 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00480768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00474624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZST.DLL
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL


gzielos 29.02.2016 13:56

FRST zeiter Teil:

Code:

2016-02-18 16:28 - 2015-11-25 03:52 - 00775312 _____ C:\Windows\SysWOW64\locale.nls
2016-02-18 16:28 - 2015-11-25 03:52 - 00775312 _____ C:\Windows\system32\locale.nls
2016-02-18 16:28 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2016-02-18 16:28 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-02-18 16:28 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-02-18 16:28 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2016-02-18 16:28 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2016-02-18 16:28 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2016-02-18 16:28 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2016-02-18 16:28 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2016-02-18 16:28 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-02-18 16:28 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-02-18 16:28 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-02-18 16:28 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-02-18 16:28 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-02-18 16:28 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-02-18 16:28 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2016-02-18 16:28 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll
2016-02-18 16:28 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll
2016-02-18 16:28 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2016-02-18 16:28 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2016-02-18 16:28 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2016-02-18 16:28 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2016-02-18 16:28 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\CallHistoryClient.dll
2016-02-18 16:28 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2016-02-18 16:28 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll
2016-02-18 16:28 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2016-02-18 16:28 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallHistoryClient.dll
2016-02-18 16:28 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2016-02-18 16:28 - 2015-09-19 06:14 - 00102304 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2016-02-18 16:28 - 2015-09-17 07:50 - 01563392 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2016-02-18 16:28 - 2015-09-17 07:50 - 00088384 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2016-02-18 16:28 - 2015-09-17 07:49 - 01563472 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-02-18 16:28 - 2015-09-17 07:49 - 00501008 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00809352 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00584656 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00537080 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00505696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-02-18 16:28 - 2015-09-17 07:48 - 00395088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-02-18 16:28 - 2015-09-17 07:48 - 00332624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2016-02-18 16:28 - 2015-09-17 07:48 - 00278352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2016-02-18 16:28 - 2015-09-17 07:37 - 01168736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-02-18 16:28 - 2015-09-17 07:28 - 01357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2016-02-18 16:28 - 2015-09-17 07:28 - 00407608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-02-18 16:28 - 2015-09-17 07:26 - 00508248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-02-18 16:28 - 2015-09-17 07:26 - 00428128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2016-02-18 16:28 - 2015-09-17 07:11 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2016-02-18 16:28 - 2015-09-17 07:10 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2016-02-18 16:28 - 2015-09-17 07:09 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2016-02-18 16:28 - 2015-09-17 07:09 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2016-02-18 16:28 - 2015-09-17 07:08 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2016-02-18 16:28 - 2015-09-17 07:08 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll
2016-02-18 16:28 - 2015-09-17 07:08 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerShellext.exe
2016-02-18 16:28 - 2015-09-17 07:04 - 00910848 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2016-02-18 16:28 - 2015-09-17 07:03 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2016-02-18 16:28 - 2015-09-17 07:03 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2016-02-18 16:28 - 2015-09-17 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2016-02-18 16:28 - 2015-09-17 07:02 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-02-18 16:28 - 2015-09-17 07:00 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2016-02-18 16:28 - 2015-09-17 06:58 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2016-02-18 16:28 - 2015-09-17 06:57 - 00403456 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2016-02-18 16:28 - 2015-09-17 06:57 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2016-02-18 16:28 - 2015-09-17 06:57 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2016-02-18 16:28 - 2015-09-17 06:56 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2016-02-18 16:28 - 2015-09-17 06:56 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 01601536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2016-02-18 16:28 - 2015-09-17 06:55 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2016-02-18 16:28 - 2015-09-17 06:51 - 01203712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2016-02-18 16:28 - 2015-09-17 06:51 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2016-02-18 16:28 - 2015-09-17 06:51 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeWiFi.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeCell.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 01290240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00439296 _____ (Microsoft Corporation) C:\Windows\system32\LocationWebproxy.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\LocationCrowdsource.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeIP.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\LocationWiFiAdapter.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Speech.Pal.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2016-02-18 16:28 - 2015-09-17 06:47 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2016-02-18 16:28 - 2015-09-17 06:46 - 00928256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2016-02-18 16:28 - 2015-09-17 06:46 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2016-02-18 16:28 - 2015-09-17 06:46 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2016-02-18 16:28 - 2015-09-17 06:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\syncmlhook.dll
2016-02-18 16:28 - 2015-09-17 06:45 - 00869376 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2016-02-18 16:28 - 2015-09-17 06:45 - 00832512 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2016-02-18 16:28 - 2015-09-17 06:45 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2016-02-18 16:28 - 2015-09-17 06:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2016-02-18 16:28 - 2015-09-17 06:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\syncutil.dll
2016-02-18 16:28 - 2015-09-17 06:43 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll
2016-02-18 16:28 - 2015-09-17 06:43 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2016-02-18 16:28 - 2015-09-17 06:41 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-02-18 16:28 - 2015-09-17 06:40 - 01162240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2016-02-18 16:28 - 2015-09-17 06:38 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2016-02-18 16:28 - 2015-09-17 06:37 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2016-02-18 16:28 - 2015-09-17 06:35 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2016-02-18 16:28 - 2015-09-17 06:34 - 00253440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2016-02-18 16:28 - 2015-09-17 06:32 - 00336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2016-02-18 16:28 - 2015-09-17 06:32 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2016-02-18 16:28 - 2015-09-17 06:32 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-02-18 16:28 - 2015-09-17 06:31 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2016-02-18 16:28 - 2015-09-17 06:29 - 00701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2016-02-18 16:28 - 2015-09-17 06:29 - 00677888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2016-02-18 16:28 - 2015-09-17 06:28 - 00473088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2016-02-18 16:28 - 2015-09-17 06:26 - 00899584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll
2016-02-18 16:28 - 2015-09-17 06:16 - 00512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2016-02-18 16:28 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-02-18 16:28 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2016-02-18 16:28 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-02-18 16:28 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2016-02-18 16:28 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2016-02-18 16:28 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2016-02-18 16:28 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2016-02-18 16:28 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2016-02-18 16:28 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-02-18 16:28 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2016-02-18 16:28 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2016-02-18 16:28 - 2015-08-18 07:54 - 00247296 _____ C:\Windows\system32\facecredentialprovider.dll
2016-02-18 16:28 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2016-02-18 16:28 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2016-02-18 16:28 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2016-02-18 16:28 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-02-18 16:28 - 2015-08-18 05:44 - 00008847 _____ C:\Windows\system32\ResPriHMImageList
2016-02-18 16:28 - 2015-08-11 11:04 - 01087296 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-02-18 16:28 - 2015-08-11 11:02 - 00292856 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-02-18 16:28 - 2015-08-11 10:52 - 00993104 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2016-02-18 16:28 - 2015-08-11 10:40 - 00918320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-02-18 16:28 - 2015-08-11 10:37 - 00243800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2016-02-18 16:28 - 2015-08-11 10:26 - 00845664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2016-02-18 16:28 - 2015-08-11 10:19 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2016-02-18 16:28 - 2015-08-11 10:14 - 00404480 _____ C:\Windows\system32\diagtrack_wininternal.dll
2016-02-18 16:28 - 2015-08-11 10:13 - 00413184 _____ C:\Windows\system32\diagtrack_win.dll
2016-02-18 16:28 - 2015-08-11 10:11 - 02446336 _____ C:\Windows\system32\InputService.dll
2016-02-18 16:28 - 2015-08-11 10:11 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2016-02-18 16:28 - 2015-08-11 10:10 - 00293376 _____ C:\Windows\system32\TextInputFramework.dll
2016-02-18 16:28 - 2015-08-11 10:09 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll
2016-02-18 16:28 - 2015-08-11 10:05 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll
2016-02-18 16:28 - 2015-08-11 10:00 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-02-18 16:28 - 2015-08-11 09:59 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-02-18 16:28 - 2015-08-11 09:59 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll
2016-02-18 16:28 - 2015-08-11 09:59 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2016-02-18 16:28 - 2015-08-11 09:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tetheringclient.dll
2016-02-18 16:28 - 2015-08-11 09:51 - 01823232 _____ C:\Windows\SysWOW64\InputService.dll
2016-02-18 16:28 - 2015-08-11 09:50 - 00420352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2016-02-18 16:28 - 2015-08-11 09:50 - 00200704 _____ C:\Windows\SysWOW64\TextInputFramework.dll
2016-02-18 16:28 - 2015-08-11 09:50 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2016-02-18 16:28 - 2015-08-11 09:39 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-02-18 16:28 - 2015-08-11 09:38 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2016-02-18 16:08 - 2016-02-20 17:33 - 00000000 ____D C:\Program Files\Microsoft Games
2016-02-18 16:05 - 2016-02-20 17:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft Games
2016-02-18 16:05 - 2016-02-18 16:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Microsoft Games
2016-02-18 16:00 - 2016-02-18 16:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vista Games
2016-02-18 15:59 - 2010-05-17 08:33 - 00061440 _____ (Rafael & ZoRoNaX) C:\Windows\system32\Vista.Emulation.dll
2016-02-18 13:29 - 2016-02-18 19:35 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\vlc
2016-02-18 13:29 - 2016-02-18 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-02-18 13:29 - 2016-02-18 13:29 - 00000000 ____D C:\Program Files\VideoLAN
2016-02-18 12:55 - 2016-02-23 13:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Flight Simulator-Dateien
2016-02-18 12:51 - 2016-02-18 12:51 - 00000000 ____D C:\Users\Public\Documents\Flight Simulator-Dateien
2016-02-18 12:49 - 2016-02-18 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2016-02-18 12:43 - 2016-02-29 08:24 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Programme
2016-02-18 12:42 - 2016-02-18 16:00 - 00000000 ____D C:\Program Files (x86)\Microsoft Games
2016-02-18 11:29 - 2016-02-18 11:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Criterion Games
2016-02-18 11:26 - 2012-04-12 14:25 - 00539136 _____ (Microsoft Corporation) C:\Program Files (x86)\spider.exe
2016-02-18 10:54 - 2016-02-28 12:00 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Chat
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\Program Files (x86)\WestwoodOnline
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\Program Files (x86)\WestwoodChat
2016-02-18 10:52 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2016-02-18 10:52 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2016-02-18 10:52 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2016-02-18 10:52 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-02-18 10:52 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2016-02-18 10:52 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2016-02-18 10:52 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2016-02-18 10:52 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2016-02-18 10:52 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2016-02-18 10:52 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2016-02-18 10:52 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2016-02-18 10:52 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2016-02-18 10:52 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2016-02-18 10:52 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2016-02-18 10:52 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2016-02-18 10:52 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2016-02-18 10:52 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2016-02-18 10:52 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2016-02-18 10:52 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2016-02-18 10:52 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2016-02-18 10:52 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2016-02-18 10:52 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2016-02-18 10:52 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2016-02-18 10:52 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2016-02-18 10:52 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2016-02-18 10:52 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2016-02-18 10:52 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2016-02-18 10:52 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2016-02-18 10:52 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2016-02-18 10:52 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2016-02-18 10:52 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2016-02-18 10:52 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2016-02-18 10:52 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-02-18 10:52 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2016-02-18 10:52 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2016-02-18 10:52 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2016-02-18 10:52 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2016-02-18 10:52 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2016-02-18 10:52 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2016-02-18 10:52 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2016-02-18 10:52 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2016-02-18 10:52 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2016-02-18 10:52 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2016-02-18 10:52 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2016-02-18 10:52 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2016-02-18 10:52 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2016-02-18 10:52 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2016-02-18 10:52 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2016-02-18 10:52 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2016-02-18 10:52 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2016-02-18 10:52 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2016-02-18 10:52 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2016-02-18 10:52 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-02-18 10:52 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-02-18 10:52 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-02-18 10:52 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2016-02-18 10:52 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-02-18 10:52 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2016-02-18 10:52 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2016-02-18 10:52 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2016-02-18 10:52 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2016-02-18 10:52 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2016-02-18 10:52 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-02-18 10:52 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2016-02-18 10:52 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2016-02-18 10:52 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2016-02-18 10:52 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2016-02-18 10:52 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2016-02-18 10:52 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2016-02-18 10:52 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2016-02-18 10:52 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2016-02-18 10:52 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2016-02-18 10:52 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2016-02-18 10:52 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2016-02-18 10:46 - 2016-02-18 15:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Origin
2016-02-18 10:46 - 2016-02-18 11:18 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-02-18 10:46 - 2016-02-18 10:46 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Origin
2016-02-18 10:43 - 2016-02-28 13:14 - 00000000 ____D C:\ProgramData\Origin
2016-02-18 10:43 - 2016-02-18 11:29 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-02-18 10:43 - 2016-02-18 10:46 - 00000000 ____D C:\Program Files (x86)\Origin
2016-02-18 10:43 - 2016-02-18 10:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-02-18 10:42 - 2016-02-18 10:42 - 31335272 _____ (Electronic Arts, Inc.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\OriginThinSetup.exe
2016-02-18 10:25 - 2016-02-27 15:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik
2016-02-18 10:11 - 2016-02-18 10:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2
2016-02-18 10:11 - 2016-02-18 10:11 - 00000000 ____D C:\Program Files (x86)\LogView V2
2016-02-18 10:06 - 2016-02-18 10:06 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\LogView 7
2016-02-18 09:56 - 2016-02-18 10:25 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\LogView
2016-02-18 09:52 - 2016-02-18 09:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Comms
2016-02-18 09:42 - 2016-02-27 15:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Grafik
2016-02-18 09:41 - 2016-02-18 09:41 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paint Shop Pro 5
2016-02-18 09:41 - 2016-02-18 09:41 - 00000000 ____D C:\Program Files (x86)\Paint Shop Pro 5
2016-02-18 09:30 - 2016-02-18 09:30 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.android
2016-02-17 21:14 - 2016-02-17 21:14 - 00000000 ___RD C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Brother
2016-02-17 21:13 - 2016-02-22 13:41 - 00000432 _____ C:\Windows\BRWMARK.INI
2016-02-17 21:13 - 2016-02-22 13:41 - 00000034 _____ C:\Windows\SysWOW64\BD2030.DAT
2016-02-17 20:27 - 2016-02-17 20:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\NetworkTiles
2016-02-17 18:35 - 2016-02-29 11:51 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten
2016-02-17 18:11 - 2016-02-17 18:11 - 00026296 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Abrechnung_4475958910292900_20160214.PDF
2016-02-17 17:44 - 2016-02-17 17:45 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Office
2016-02-17 17:42 - 2016-02-21 16:24 - 00425472 _____ (Steganos GmbH) C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\LockNote105.exe
2016-02-17 17:40 - 2016-02-18 16:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2016-02-17 17:40 - 2016-02-17 17:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-02-17 17:39 - 2016-02-17 17:39 - 00000000 ____D C:\Windows\PCHEALTH
2016-02-17 17:36 - 2016-02-17 17:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft Help
2016-02-17 17:36 - 2016-02-17 17:36 - 00000000 ____D C:\Program Files\Microsoft Office
2016-02-17 17:35 - 2016-02-17 17:35 - 00000000 __RHD C:\MSOCache
2016-02-17 17:15 - 2016-02-17 21:20 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\ElevatedDiagnostics
2016-02-17 17:14 - 2016-02-17 17:14 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kaspersky
2016-02-17 17:12 - 2016-02-17 17:12 - 00002026 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Editor.lnk
2016-02-17 17:11 - 2016-02-17 17:11 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\WildTangent
2016-02-17 16:59 - 2016-02-17 16:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2016-02-17 16:59 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2016-02-17 16:58 - 2016-02-29 12:39 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-02-17 16:58 - 2016-02-28 13:14 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-02-17 16:58 - 2016-02-17 17:21 - 00934272 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2016-02-17 16:58 - 2016-02-17 17:21 - 00181640 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2016-02-17 16:58 - 2016-02-17 17:04 - 00227512 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2016-02-17 16:58 - 2016-02-17 16:58 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2016-02-17 16:43 - 2015-07-09 20:38 - 01996288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0007.dll
2016-02-17 16:43 - 2015-07-09 20:36 - 12039680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsLexicons0007.dll
2016-02-17 16:43 - 2015-07-09 20:26 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0007.dll
2016-02-17 16:43 - 2015-07-09 20:25 - 12039680 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0007.dll
2016-02-17 16:43 - 2015-07-09 20:25 - 11602944 _____ (Microsoft Corporation) C:\Windows\system32\prm0007.dll
2016-02-17 16:42 - 2016-02-17 16:48 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Mozilla
2016-02-17 16:42 - 2016-02-17 16:42 - 00001049 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2016-02-17 16:42 - 2016-02-17 16:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla
2016-02-17 16:41 - 2016-02-17 16:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-02-17 16:36 - 2016-02-17 16:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\awsRun
2016-02-17 16:33 - 2016-02-17 16:33 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Macromedia
2016-02-17 16:32 - 2016-02-17 20:11 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\MicrosoftEdge
2016-02-17 16:31 - 2016-02-17 16:31 - 00002439 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-02-17 16:31 - 2016-02-17 16:31 - 00000000 ___RD C:\Users\Gunther.DESKTOP-L5KOO87\OneDrive
2016-02-17 16:31 - 2016-02-17 16:31 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\NVIDIA
2016-02-17 16:28 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Adobe
2016-02-17 16:28 - 2016-02-17 16:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\DropboxOEM
2016-02-17 16:28 - 2016-02-17 16:28 - 00003628 _____ C:\Windows\System32\Tasks\ASUS Smart Gesture Launcher
2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\WebStorage
2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Publishers
2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\DropboxOEM
2016-02-17 16:27 - 2016-02-29 08:19 - 00000165 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\sp_data.sys
2016-02-17 16:27 - 2016-02-21 18:31 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87
2016-02-17 16:27 - 2016-02-21 15:35 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\VirtualStore
2016-02-17 16:27 - 2016-02-20 17:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Packages
2016-02-17 16:27 - 2016-02-17 16:27 - 00056952 _____ C:\Windows\system32\ASGCoInstaller_x64.dll
2016-02-17 16:27 - 2016-02-17 16:27 - 00016148 _____ C:\Windows\system32\DESKTOP-L5KOO87_defaultuser0_HistoryPrediction.bin
2016-02-17 16:27 - 2016-02-17 16:27 - 00000020 ___SH C:\Users\Gunther.DESKTOP-L5KOO87\ntuser.ini
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Vorlagen
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Startmenü
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Netzwerkumgebung
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Lokale Einstellungen
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Eigene Dateien
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Druckumgebung
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Videos
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Musik
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Bilder
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Verlauf
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Anwendungsdaten
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Anwendungsdaten
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\TileDataLayer
2016-02-17 16:24 - 2016-02-28 13:14 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-02-17 16:18 - 2015-12-09 04:39 - 00301728 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-02-29 13:00 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsNotifyTask_Administrator.job
2016-02-29 12:57 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsUpdateTask_Administrator.job
2016-02-29 12:01 - 2015-11-11 08:02 - 00003544 _____ C:\Windows\System32\Tasks\ASUS Live Update1
2016-02-29 12:01 - 2015-11-11 08:02 - 00003534 _____ C:\Windows\System32\Tasks\ASUS Live Update2
2016-02-28 19:31 - 2015-08-18 14:14 - 00773778 _____ C:\Windows\system32\perfh007.dat
2016-02-28 19:31 - 2015-08-18 14:14 - 00154590 _____ C:\Windows\system32\perfc007.dat
2016-02-28 19:31 - 2015-08-18 06:20 - 01790124 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-28 19:31 - 2015-07-10 12:02 - 00000000 ____D C:\Windows\INF
2016-02-28 13:14 - 2015-11-11 08:51 - 00000000 __SHD C:\Users\Gunther\IntelGraphicsProfiles
2016-02-28 12:00 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\System
2016-02-28 11:55 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-28 11:55 - 2015-07-10 13:20 - 00243544 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-28 11:54 - 2015-07-10 10:05 - 00131072 ___SH C:\Windows\system32\config\BBI
2016-02-27 09:03 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\AppReadiness
2016-02-26 19:41 - 2015-11-11 08:23 - 00001542 _____ C:\Users\Public\Desktop\WPS Office.lnk
2016-02-26 16:18 - 2015-07-10 17:27 - 00000000 ____D C:\Windows\OCR
2016-02-26 13:24 - 2015-08-18 06:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-02-26 13:24 - 2015-07-10 12:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-02-26 08:50 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-25 09:27 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp
2016-02-23 17:55 - 2015-11-11 07:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-02-21 15:29 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-02-21 10:37 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\rescache
2016-02-21 10:34 - 2015-08-18 14:13 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-02-21 10:34 - 2015-07-10 17:30 - 00000000 ____D C:\Program Files\Windows Journal
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\winrm
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\WCN
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\winrm
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\WCN
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\slmgr
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\F12
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\F12
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\dsc
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\MiracastView
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\DevicesFlow
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\oobe
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\MUI
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\Com
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\oobe
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\MUI
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\migwiz
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\Com
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\IME
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Help
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Defender
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\System
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Sysprep
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Dism
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\servicing
2016-02-21 09:55 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\en-GB
2016-02-21 09:55 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\en-GB
2016-02-21 08:56 - 2015-11-11 07:39 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-20 16:54 - 2015-07-10 12:04 - 00000150 _____ C:\Windows\win.ini
2016-02-20 10:26 - 2015-11-11 08:02 - 00000000 ____D C:\Program Files\DIFX
2016-02-20 10:25 - 2015-08-18 14:00 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-02-19 20:10 - 2015-11-11 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-02-19 19:43 - 2015-11-11 10:41 - 00000000 ___HD C:\$SysReset
2016-02-19 15:16 - 2015-11-11 07:36 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\PurchaseDialog
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\appraiser
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Provisioning
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\L2Schemas
2016-02-18 19:53 - 2015-08-18 15:00 - 00000000 ____D C:\Windows\Panther
2016-02-18 19:48 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT
2016-02-18 16:26 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2016-02-18 12:51 - 2015-07-10 11:59 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2016-02-18 12:51 - 2015-07-10 11:59 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2016-02-18 12:51 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2016-02-18 08:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\appcompat
2016-02-17 17:36 - 2015-07-10 17:30 - 00000000 ____D C:\Windows\ShellNew
2016-02-17 17:21 - 2015-06-26 23:58 - 00087944 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klwfp.sys
2016-02-17 17:21 - 2015-06-08 19:43 - 00041352 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klpd.sys
2016-02-17 16:59 - 2015-11-11 09:08 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2016-02-17 16:59 - 2015-07-10 10:05 - 00032768 ___SH C:\Windows\system32\config\ELAM
2016-02-17 16:58 - 2015-07-10 12:04 - 00000000 ___HD C:\Windows\ELAMBKUP
2016-02-17 16:57 - 2015-11-11 08:07 - 00000000 ____D C:\ProgramData\McAfee
2016-02-17 16:57 - 2015-11-11 08:07 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-02-17 16:50 - 2015-11-11 08:51 - 00000000 ____D C:\Users\Gunther
2016-02-17 16:42 - 2015-11-11 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-17 16:33 - 2015-08-18 06:27 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-02-17 16:27 - 2015-11-11 08:53 - 00000000 ____D C:\ProgramData\SetupTPDriver
2016-02-17 16:25 - 2015-11-11 08:50 - 00000000 ____D C:\ProgramData\USBChargerPlus
2016-02-02 23:47 - 2015-08-18 06:34 - 00828920 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-02-02 23:47 - 2015-08-18 06:34 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-02-18 11:26 - 2012-04-12 14:25 - 0539136 _____ (Microsoft Corporation) C:\Program Files (x86)\spider.exe
2016-02-17 16:27 - 2016-02-29 08:19 - 0000165 _____ () C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\sp_data.sys
2016-02-21 15:38 - 2016-02-21 15:45 - 0000017 ____H () C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\19720201.dat
2015-11-11 07:51 - 2015-11-11 07:51 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-01-26 09:02 - 2016-01-26 09:02 - 0010346 _____ () C:\ProgramData\regid.1996-09.com.picotech_{d03e5488-efee-4362-98cf-72f093b918f0}.swidtag

Einige Dateien in TEMP:
====================
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\cfuapir2.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\d5wc5ovy.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\McCSPInstall.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\mccspuninstall.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\ose00000.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\pzunzahz.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\QC27khC3Gx.exe
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\sf3ldbaj.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\sqlite3.dll
C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Temp\tmp-drivermax10195779.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-02-27 16:30

==================== Ende von FRST.txt ============================

Addition:

Code:

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:21-02-2016 01
durchgeführt von Gunther (2016-02-29 13:36:54)
Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
Windows 10 Home (X64) (2016-02-17 15:23:58)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2421830386-3516612503-909366600-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2421830386-3516612503-909366600-503 - Limited - Disabled)
Gast (S-1-5-21-2421830386-3516612503-909366600-501 - Limited - Disabled)
Gunther (S-1-5-21-2421830386-3516612503-909366600-1001 - Administrator - Enabled) => C:\Users\Gunther.DESKTOP-L5KOO87

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20059 - Adobe Systems Incorporated)
ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.6 - ASUS)
ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.5 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.5 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
Atmel USB (HKLM-x32\...\{E8F8861D-98E0-43FF-9E48-AC236CC3BE4E}) (Version: 10.6 - Atmel)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.105 - ICEpower a/s)
Avast SecureLine for Asustek (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.239.3 - AVAST Software)
BASCOM-AVR (HKLM-x32\...\{47F94730-ABD2-47F6-920E-EA8CDB6DD0C6}_is1) (Version: 2.0.7.5 - MCS Electronics)
Command & Conquer™ Red Alert, Counterstrike and The Aftermath (HKLM-x32\...\{B9A7CCBE-48F7-4B3E-BD20-76ADDD4DC69F}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Tiberian Sun™ and Firestorm™ (HKLM-x32\...\{78F60BDD-1923-4CF7-B6BD-087D06D7B5BB}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Corel Applications (HKLM-x32\...\Corel Applications) (Version:  - )
DesignCAD 22 (HKLM-x32\...\{C5C61F02-1453-48A1-947E-8BC9F6812F8E}) (Version: 22.0.0 - IMSIDesign)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.)
DVBViewer Pro (HKLM-x32\...\DVBViewer Pro_is1) (Version: 5.5.2.0 - CM&V)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Evernote v. 5.8.6 (HKLM-x32\...\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}) (Version: 5.8.6.7519 - Evernote Corp.)
Fugawi 4.5 (HKLM-x32\...\Fugawi45_is1) (Version: 4.5 - Northport Systems Inc.)
Fugawi Google Earth Plug-in Version 1.1.0.4 (HKLM-x32\...\Fugawi45_GE_is1) (Version: 4.5 - Northport Systems Inc.)
FugVS2005 (HKLM-x32\...\{0C8364B1-AFD8-45B7-ACE8-B76113B6C418}) (Version: 1.0.0 - Northport Systems Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4300 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 73 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JLink OB CDC Driver Package (HKLM\...\{CD0E9FFE-70DD-47E3-A7A5-750E9DE6F40B}) (Version: 1.2.1 - SEGGER)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden
LAV Filters 0.67 (HKLM-x32\...\lavfilters_is1) (Version: 0.67 - Hendrik Leppkes)
LogView V2 (HKLM-x32\...\LogView V2) (Version: LogView V2 2 - LogView.info - D.Schmidt / H.Hemmecke)
LogView V2 2 (HKU\S-1-5-21-2421830386-3516612503-909366600-1001\...\LogView V2 2) (Version: 2 - LogView.info)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Flight Simulator 2004 - Das Jahrhundert der Luftfahrt (HKLM-x32\...\Flight Simulator 9.0) (Version: 9.0 - Microsoft)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Shell (Isolated) - ENU (HKLM-x32\...\{D64B6984-242F-32BC-B008-752806E5FC44}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 44.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2 - Mozilla)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.7 - F.J. Wechselberger)
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
NVIDIA Graphics Driver 353.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.84 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.11.5.17432 - Electronic Arts, Inc.)
Paint Shop Pro 5.01 (HKLM-x32\...\Paint Shop Pro 5.01) (Version:  - )
Pico Technology Beta SDK 64-bit (HKLM-x32\...\{da5e6d88-b17c-44cb-a5f9-bf1b5948aef8}) (Version: 10.6.11.23 - Pico Technology Ltd)
Pico Technology Beta SDK 64-bit (Version: 10.6.11.23 - Pico Technology Ltd) Hidden
PicoScope 6 (HKLM-x32\...\{fe3cc74a-a370-4be1-8daf-90355086e1f4}) (Version: 6.11.10 - Pico Technology)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31213 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.)
SpyHunter 4 (HKLM-x32\...\SpyHunter) (Version: 4.21.18.4608 - Enigma Software Group, LLC)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.2 - VideoLAN)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.2.524 - ASUS Cloud Corporation)
WestwoodChat (HKLM-x32\...\{7CAE6A67-AF7B-4A6A-8705-8AFACA45BB60}) (Version: 1.0.0.0 - WestwoodChat)
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.16 - WildTangent)
Windows-Treiberpaket - ASUS (ATP) Mouse  (06/17/2015 6.0.0.66) (HKLM\...\1EFB54678773735560B565BE7FA6F2BCC557EE21) (Version: 06/17/2015 6.0.0.66 - ASUS)
Windows-Treiberpaket - Segger (jlink_ob_x64) USB  (03/13/2012 2.6.6.2) (HKLM\...\6D4C34D12E9233ABADF9D04ADF9E288A7ECF3B5B) (Version: 03/13/2012 2.6.6.2 - Segger)
Windows-Treiberpaket - SEGGER (usbser) Ports  (01/25/2012 6.0.2600.4) (HKLM\...\BD6BF8BBF7BE0D0091163F649A1A423B7EB9D4F1) (Version: 01/25/2012 6.0.2600.4 - SEGGER)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
WPS Office for ASUS (HKLM-x32\...\Kingsoft Office) (Version: 9.1.0.4947 - Kingsoft Corp.)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2421830386-3516612503-909366600-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0F71139B-44DA-4814-95B3-36544058B19C} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] ()
Task: {16C0F2CB-05FF-42DC-B079-DCDC8E771142} - System32\Tasks\WpsUpdateTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {265A3230-80C1-46DE-871D-6D0FE4A72A99} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-18] (Google Inc.)
Task: {2676E35B-A115-4EAD-9303-94D32321AE26} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.)
Task: {37600127-75F6-4D0E-AB73-1557C66DB28E} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {402CA532-759F-4D1B-A63F-7B136F42AC1D} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
Task: {42DDF692-C8FF-4705-ABD1-EF4E97066915} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-08-23] (AsusTek)
Task: {47B485D9-1AC5-4DE9-BEE0-A56921B2021A} - System32\Tasks\WpsNotifyTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {80875153-D0CA-4A0A-9947-BCF3BF2007D0} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-08-12] ()
Task: {80C44CD8-38C9-488D-8935-B27061176C6C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {8EBD672F-3CE9-4F4F-AE48-C0C1AB17EAF5} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {9DD4AD4D-DC0D-4826-B61A-46025A6F398C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-18] (Google Inc.)
Task: {A9871C1C-7FA9-4094-9760-69F1EA4F5C91} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS)
Task: {AFA1BF32-F765-406A-AF10-1B2967A4442B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-07-29] (Realtek Semiconductor)
Task: {B0B4101F-4535-45AC-A2F8-BC0A43214623} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.)
Task: {B5F2F64D-6AA7-4390-B150-9458DC19E075} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-02-18] (Microsoft Corporation)
Task: {CC5EAE02-3FB5-4F7A-B4D4-B55F51724A9E} - System32\Tasks\{FCC43C23-C686-4530-BB4D-97C7E689F677} => pcalua.exe -a C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\avrispmkii_libusb-win32_1.2.1.0\avrispmkii_libusb-win32_1.2.1.0\installer_x86.exe -d C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\avrispmkii_libusb-win32_1.2.1.0\avrispmkii_libusb-win32_1.2.1.0
Task: {DEA915F7-74D4-4B8F-BABD-86723BDCC2B1} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-07-29] (Realtek Semiconductor)
Task: {DEE7A683-A2E0-4371-B9CA-3A7A637B2562} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2015-04-29] (AVAST Software)
Task: {E7E30642-FEE3-4243-8ED8-98FC3D774790} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.)
Task: {F25573CF-40E1-4DE9-8EA5-391037769186} - System32\Tasks\DriverMaxAgent => C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\WpsNotifyTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe
Task: C:\Windows\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-18 06:25 - 2015-07-15 03:04 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll
2016-02-18 16:28 - 2015-08-11 10:14 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll
2015-11-11 08:06 - 2015-04-29 18:04 - 00445240 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
2015-11-11 07:48 - 2015-08-07 18:18 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\System32\CoreUIComponents.dll
2015-10-09 10:13 - 2015-10-06 10:03 - 00395368 _____ () C:\Windows\system32\igfxTray.exe
2016-02-18 16:28 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 11:59 - 2015-07-10 11:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2016-02-18 16:29 - 2015-11-25 05:20 - 06569472 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-02-18 16:29 - 2015-11-25 05:17 - 00471040 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-02-18 16:29 - 2015-11-25 05:17 - 01808384 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-02-18 16:29 - 2015-09-17 06:43 - 02274816 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 12:00 - 2015-07-10 17:29 - 00210432 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2016-02-17 17:23 - 2016-02-17 17:23 - 00015872 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-02-17 17:23 - 2016-02-17 17:23 - 14869504 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-02-17 17:22 - 2016-02-17 17:23 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-02-18 09:53 - 2016-02-18 09:53 - 09789952 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2016.27.2.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2015-07-08 23:18 - 2015-07-08 23:18 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kpcengine.2.3.dll
2015-08-07 02:09 - 2015-08-07 02:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-11-11 07:48 - 2015-07-24 05:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 01016832 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00028160 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00029696 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00256000 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00266240 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00346112 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00243200 _____ () C:\Program Files (x86)\Origin\mediaservice\wmfengine.dll
2015-11-11 08:06 - 2015-04-29 18:04 - 38561984 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll
2013-04-27 11:24 - 2013-04-27 11:24 - 00071680 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\checkmetro.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\TEMP:6B0023F8

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-07-10 12:04 - 2015-07-10 12:02 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\asus\wallpapers\asus.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{DF8AD133-C2FF-4C30-8618-E3E9B17D5499}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe
FirewallRules: [{985BE3A6-760C-48B6-8274-D904C621EF53}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe
FirewallRules: [{4B62578A-269D-4C39-AC91-85875738831E}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{EDD1EEA3-DAF2-4D8A-A24F-D306AC1A08C5}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{CE0848E4-9186-43C5-B6E0-EF43EDE445D1}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe
FirewallRules: [{51C45640-ADB0-4D34-918A-842910FAD03E}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe
FirewallRules: [{FFC3D9CF-365E-482F-8901-BE3E08697A66}] => (Allow) C:\Program Files (x86)\SprgFiles\SprgFiles.exe
FirewallRules: [{C6CC372F-7162-40B1-833D-CBDA05E5BFE2}] => (Allow) C:\Program Files (x86)\SprgFiles\SprgFiles.exe
FirewallRules: [{5005B685-36C4-4F40-B872-2BEECCD325C4}] => (Allow) C:\Program Files (x86)\SprgFiles\downloader.exe
FirewallRules: [{82AFB31B-8E78-4BDA-B2B8-80A1E9C2D4C6}] => (Allow) C:\Program Files (x86)\SprgFiles\downloader.exe
FirewallRules: [{32E42A9B-AFB8-485E-B1F5-69629C55AAAF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EC13B03C-CF42-42D9-A8CE-4299E35BFD6C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Wiederherstellungspunkte =========================

20-02-2016 10:25:19 Installed Atmel USB
21-02-2016 10:31:53 Sprachpaketdeinstallation
23-02-2016 16:45:46 Installed AVRStudio4
25-02-2016 09:05:02 DesignCAD 22 wurde installiert.
26-02-2016 13:24:18 Removed Microsoft Office

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (02/29/2016 11:52:16 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

Error: (02/29/2016 11:51:15 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

Error: (02/29/2016 08:37:54 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

Error: (02/29/2016 08:25:30 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

Error: (02/29/2016 08:25:25 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

Error: (02/29/2016 08:25:24 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

Error: (02/29/2016 08:25:24 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

Error: (02/29/2016 08:24:51 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

Error: (02/29/2016 08:24:02 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

Error: (02/29/2016 08:23:53 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.


Systemfehler:
=============
Error: (02/29/2016 11:53:13 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (02/29/2016 11:53:13 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\GUNTHE~1.DES\AppData\Local\Temp\ehdrv.sys

Error: (02/29/2016 11:53:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (02/29/2016 11:53:12 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\GUNTHE~1.DES\AppData\Local\Temp\ehdrv.sys

Error: (02/29/2016 11:53:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (02/29/2016 11:53:12 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\GUNTHE~1.DES\AppData\Local\Temp\ehdrv.sys

Error: (02/29/2016 11:53:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (02/29/2016 11:53:12 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\GUNTHE~1.DES\AppData\Local\Temp\ehdrv.sys

Error: (02/29/2016 11:53:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (02/29/2016 11:53:12 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\GUNTHE~1.DES\AppData\Local\Temp\ehdrv.sys


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Prozentuale Nutzung des RAM: 35%
Installierter physikalischer RAM: 8094.39 MB
Verfügbarer physikalischer RAM: 5218.67 MB
Summe virtueller Speicher: 9374.39 MB
Verfügbarer virtueller Speicher: 6258 MB

==================== Laufwerke ================================

Drive c: (OS) (Fixed) (Total:185.55 GB) (Free:113.46 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (DATA) (Fixed) (Total:279.46 GB) (Free:249.2 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 6110F75F)

Partition: GPT.

==================== Ende von Addition.txt ============================

Ich hoffe mal, dass das alles richtig war und bedanke mich nochmals ganz herzlich.
Noch eine Frage:
Das ist ja hier soweit alles öffentlich - was macht Ihr mit den vielen Scan-Ergebnissen? Können daraus nicht auch relevante Daten abgezweigt werden? Es wäre ja fatal, wenn sich Gauner gerade hier bedienen und sie daraus Zugriffsmöglichkeiten auf fremde Computer bekommen könnten. Aber vielleicht bin ich inzwischen übersensibel?
Ich habe Euch 30,00€ überwiesen und bedanke mich nochmals.
Gruß
Gunther

burningice 02.03.2016 16:32

Herzlichen Dank dafür!

Entschuldige meine Verspätung:

Zitat:

Das ist ja hier soweit alles öffentlich - was macht Ihr mit den vielen Scan-Ergebnissen? Können daraus nicht auch relevante Daten abgezweigt werden? Es wäre ja fatal, wenn sich Gauner gerade hier bedienen und sie daraus Zugriffsmöglichkeiten auf fremde Computer bekommen könnten. Aber vielleicht bin ich inzwischen übersensibel?
Nee, ich seh nur was auf deinem PC passiert, aber ich habe keine Ahnung wo du bist. Und selbst wenn könnte ich diese Infos kaum dazu benutzen um dir Schaden zuzufügren, weil um dich bewusst zu infizieren muss ich dich irgendwie "angreifen" und das muss ich immer schaffen, egal welches System du hast. Es würde höchstens die Suche nach einer bekannten, technischen Schwachstelle erleichtert - aber das ist absolut absurd und da musst du dir keine Sorgen machen :)

Schritt 1
Deaktiviere bitte dein Antivirenprogramm, da es die Entfernung von SpyHunter blockieren kann.
Bitte downloade SpyHunterCleaner und speichere die Datei auf dem Desktop. (Bebilderte Anleitung)
  • Speichere alle Arbeiten und schließe alle noch offenen Programme und Browser.
  • Starte die SpyHunterCleaner.exe.
  • Drücke eine beliebige Taste, um den Entfernungsprozess zu starten.
  • Wenn das Tool fertig ist, wird es automatisch einen Neustart durchführen.
  • Nach dem Neustart sollte SpyHunter entfernt sein. Solltest du trotzdem noch Reste entdecken, so teile mir das bitte mit.

Schritt 2
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]
folder: C:\sh4ldr
AlternateDataStreams: C:\ProgramData\TEMP:6B0023F8
emptytemp:


Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Schritt 3
Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.

gzielos 02.03.2016 17:44

Hallo Rafael,
zuerst Fixlog. Das Programm ist einmal steckengeblieben (keine Rückmeldung). Dann lief es aber durch. Einige Dateien wurden offenbar nicht gefunden?:

Code:

Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:02-03-2016
durchgeführt von Gunther (2016-03-02 17:31:31) Run:2
Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
Geladene Profile: Gunther (Verfügbare Profile: Gunther)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]
folder: C:\sh4ldr
AlternateDataStreams: C:\ProgramData\TEMP:6B0023F8
emptytemp:
*****************

klkbdflt2 => Dienst konnte nicht entfernt werden
msahci => Dienst nicht gefunden.

========================= folder: C:\sh4ldr ========================

nicht gefunden.

====== Ende von Folder: ======

"C:\ProgramData\TEMP" => ":6B0023F8" ADS nicht gefunden.
EmptyTemp: => 30.8 MB temporäre Dateien entfernt.


Das System musste neu gestartet werden.

==== Ende von Fixlog 17:31:42 ====

Dann FRST.txt erster Teil:

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:02-03-2016
durchgeführt von Gunther (Administrator) auf DESKTOP-L5KOO87 (02-03-2016 17:37:43)
Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
Geladene Profile: Gunther (Verfügbare Profile: Gunther)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
() C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGiftBoxDesktop.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
() C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe
(Zhuhai Kingsoft Office Software Co.,Ltd) C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
() C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\secureline.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\wuapihost.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe [63272 2015-05-31] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595504 2016-01-29] (Oracle Corporation)
HKU\S-1-5-21-2421830386-3516612503-909366600-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-18] (Electronic Arts)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avast! SecureLine.lnk [2015-11-11]
ShortcutTarget: avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{db2c9de7-f35d-44c5-8037-6eea81e0d451}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus15.msn.com/?pc=ASTE
HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKU\S-1-5-21-2421830386-3516612503-909366600-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2421830386-3516612503-909366600-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-21] (Oracle Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-21] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-02-17] (AO Kaspersky Lab)

FireFox:
========
FF ProfilePath: C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\fhu5bm3q.default-1456599617439
FF Homepage: hxxps://www.google.de/?gws_rd=ssl
about:preferences
FF Plugin: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-21] (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-18] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-15] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Extension: Simple Mail - C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\fhu5bm3q.default-1456599617439\extensions\simplemail@telega.phpnet.us [2016-02-27]
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2016-03-01]
FF Extension: Adblock Plus - C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla\Firefox\Profiles\fhu5bm3q.default-1456599617439\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-03-02]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe [71168 2015-05-31] (ASUS Cloud Corporation) [Datei ist nicht signiert]
R2 ASUSGiftBoxDekstop; C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe [315704 2015-07-20] (ASUS)
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2016-02-17] (Kaspersky Lab ZAO)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1385640 2015-08-17] (Intel Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-04-14] (WildTangent)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [353896 2015-10-06] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
R2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe [133480 2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-18] (Electronic Arts)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [465088 2016-03-02] ()
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.5.471.0\McCSPServiceHost.exe" [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4317808 2015-07-14] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [97680 2015-08-17] (ASUS Corporation)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [53752 2015-08-17] (Intel Corporation)
R3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [50696 2015-08-17] (Intel Corporation)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [261624 2015-08-17] (Intel Corporation)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [77728 2016-03-01] (AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [181640 2016-02-17] (AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [227512 2016-02-17] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [927640 2016-03-01] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39608 2015-06-11] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2016-02-17] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [87944 2016-02-17] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [52832 2016-02-20] (hxxp://libusb-win32.sourceforge.net)
S3 libusbK; C:\Windows\System32\drivers\libusbK.sys [47928 2016-02-20] (hxxp://libusb-win32.sourceforge.net)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-28] (Intel Corporation)
S3 PCTV_NTAMD64; C:\Windows\system32\DRIVERS\pctv4XXe_amd64.sys [571552 2016-02-21] (Pinnacle Systems GmbH)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek                                            )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [420440 2015-05-27] (Realsil Semiconductor Corporation)
S2 TVicPort; kein ImagePath
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [254976 2010-08-31] (Jungo)
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-02 17:35 - 2016-03-02 17:35 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\AVAST Software
2016-03-02 17:34 - 2016-03-02 17:34 - 00016148 _____ C:\Windows\system32\DESKTOP-L5KOO87_Gunther_HistoryPrediction.bin
2016-03-02 17:32 - 2016-03-02 17:31 - 00000979 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Fixlog.txt
2016-03-02 17:12 - 2016-03-02 17:12 - 00508416 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\SpyHunterCleaner.exe
2016-03-02 17:12 - 2016-03-02 17:12 - 00310784 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\SpyHunterCleaner-reboot.exe
2016-03-02 17:09 - 2016-03-02 17:09 - 00508416 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\SpyHunterCleaner.exe
2016-03-02 09:33 - 2016-03-02 09:33 - 00002829 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\recently-used.xbel
2016-03-01 10:51 - 2016-03-01 10:51 - 00018299 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Zeichnung.svg
2016-02-29 17:57 - 2016-02-29 17:57 - 00000000 ___RD C:\Users\Gunther.DESKTOP-L5KOO87\3D Objects
2016-02-29 17:54 - 2016-02-29 17:54 - 00169113 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Zeichnung.svg
2016-02-29 16:21 - 2016-02-29 16:21 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\fontconfig
2016-02-29 16:20 - 2016-02-29 16:20 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\inkscape
2016-02-29 16:19 - 2016-02-29 16:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inkscape 0.91
2016-02-29 16:19 - 2016-02-29 16:20 - 00000000 ____D C:\Program Files\Inkscape
2016-02-29 08:25 - 2016-02-29 08:25 - 00000000 ____D C:\Program Files (x86)\ESET
2016-02-29 08:23 - 2016-02-29 08:23 - 02870984 _____ (ESET) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\esetsmartinstaller_enu.exe
2016-02-28 19:23 - 2016-02-28 19:23 - 00000000 ____D C:\TSCDRAW2
2016-02-28 12:00 - 2004-08-04 13:00 - 00359936 _____ (Microsoft Corporation) C:\Windows\system\cards.dll
2016-02-28 11:50 - 2004-08-04 13:00 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\cards.dll
2016-02-28 11:49 - 2004-08-04 13:00 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\sol.exe
2016-02-27 15:49 - 2016-02-27 15:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Corel Grafik
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\TECHNICN.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\TECHNICI.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\NEWS701N.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\NEWS701B.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\MUSICAL.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\MTEXTRA.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\KIDNAP.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\HUM521N.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\HUM521B.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\GEOGRAPH.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\FOOD.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\FENCES.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\DOMCASN.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\COMBULL.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\AVGARDNI.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\AVGARDN.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\AVGARDMI.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\AVGARDM.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\ARCHITRN.FOT
2016-02-27 15:49 - 2016-02-27 15:49 - 00001409 _____ C:\Windows\system\ANIMALS1.FOT
2016-02-27 15:49 - 2016-02-20 16:54 - 00000150 _____ C:\Windows\win.COR
2016-02-27 15:48 - 2016-02-27 15:49 - 00000000 ____D C:\Windows\COREL
2016-02-27 15:44 - 2016-02-27 15:53 - 00000000 ____D C:\COREL
2016-02-26 19:38 - 2016-02-26 19:41 - 00000000 ____D C:\AdwCleaner
2016-02-26 19:36 - 2016-02-26 19:36 - 01511936 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\AdwCleaner_5.036.exe
2016-02-26 15:43 - 2016-02-26 16:25 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-02-26 15:42 - 2016-02-26 15:42 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-02-26 15:42 - 2016-02-26 15:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-02-26 15:42 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-02-26 15:42 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-02-26 15:42 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-02-26 15:36 - 2016-02-26 15:37 - 22908888 _____ (Malwarebytes ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\mbam-setup-2.2.0.1024.exe
2016-02-25 09:06 - 2016-02-28 11:05 - 00000000 ____D C:\ProgramData\TEMP
2016-02-25 09:06 - 2016-02-25 10:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\DesignCAD 22
2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 22
2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\ProgramData\IMSIDesign
2016-02-25 09:05 - 2016-02-25 09:05 - 00000000 ____D C:\Program Files (x86)\IMSIDesign
2016-02-25 09:01 - 2016-02-25 09:01 - 52116093 _____ (Franzis Verlag GmbH ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\30812-0-DesignCAD-V22-Basistoolkit.exe
2016-02-24 09:36 - 2016-03-02 09:32 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\ATMEGA_Programmierung
2016-02-23 16:46 - 2016-02-26 16:19 - 00000000 ____D C:\Program Files (x86)\Atmel
2016-02-23 16:36 - 2016-02-23 16:37 - 05198040 _____ (akeo.ie) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\zadig_2.2.exe
2016-02-23 13:25 - 2016-02-23 13:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Mauer
2016-02-23 09:26 - 2016-03-02 17:37 - 00000000 ____D C:\FRST
2016-02-23 09:19 - 2016-03-02 17:31 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
2016-02-23 09:18 - 2016-02-23 09:18 - 02371072 _____ (Farbar) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\FRST64.exe
2016-02-22 13:53 - 2016-02-27 16:19 - 00048200 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\GDIPFONTCACHEV1.DAT
2016-02-22 10:20 - 2016-02-22 10:20 - 00000000 ____D C:\ProgramData\Brother
2016-02-22 10:19 - 2016-02-22 10:19 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\NetworkRepairTool
2016-02-22 10:18 - 2016-02-22 10:19 - 00983784 _____ (A.I.SOFT,INC.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Nettool_12140.EXE
2016-02-22 10:09 - 2016-02-22 10:09 - 00000034 _____ C:\Windows\SysWOW64\BD2040.DAT
2016-02-22 09:49 - 2016-03-02 15:45 - 00004174 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BF62B9E7-975F-45F1-9CC0-00F0D4052F41}
2016-02-22 08:05 - 2016-02-22 08:06 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Audacity
2016-02-22 08:05 - 2016-02-22 08:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Audacity
2016-02-22 08:04 - 2016-02-22 08:05 - 00000000 ____D C:\Program Files (x86)\Audacity
2016-02-22 08:04 - 2016-02-22 08:04 - 00001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2016-02-21 17:54 - 2016-02-21 17:54 - 00002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk
2016-02-21 17:54 - 2016-02-21 17:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Google
2016-02-21 17:53 - 2016-02-21 17:53 - 00987728 _____ (Google Inc.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\GoogleEarthSetup.exe
2016-02-21 17:44 - 2016-02-21 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fugawi
2016-02-21 17:44 - 2016-02-21 17:44 - 00001107 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Fugawi Global Navigator 4.5.LNK
2016-02-21 17:43 - 2016-02-21 17:43 - 00000000 ____D C:\Program Files (x86)\Fugawi
2016-02-21 17:10 - 2016-02-21 17:44 - 00000037 _____ C:\Windows\iltwain.ini
2016-02-21 15:38 - 2016-02-21 15:45 - 00000017 ____H C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\19720201.dat
2016-02-21 15:35 - 2016-02-21 18:04 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Fugawi
2016-02-21 15:35 - 2016-02-21 17:44 - 00000000 ____D C:\ProgramData\Fugawi
2016-02-21 15:35 - 2016-02-21 15:51 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Fugawi
2016-02-21 15:35 - 2016-02-21 15:35 - 00000000 ____D C:\Program Files (x86)\Earth Resource Mapping
2016-02-21 15:35 - 2016-02-21 15:35 - 00000000 _____ C:\Windows\Lmvk32.INI
2016-02-21 15:35 - 2003-03-18 19:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2016-02-21 15:35 - 2003-02-21 03:42 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2016-02-21 15:35 - 2002-01-05 04:48 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll
2016-02-21 15:35 - 2002-01-05 04:36 - 00964608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll
2016-02-21 15:32 - 2016-02-21 15:32 - 55326352 _____ (Northport Systems Inc. ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\fugawi45565615.exe
2016-02-21 13:13 - 2016-02-22 16:39 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.mediathek3
2016-02-21 13:13 - 2016-02-21 13:13 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Sun
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Sun
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.oracle_jre_usage
2016-02-21 13:13 - 2016-02-21 13:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Oracle
2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\ProgramData\Oracle
2016-02-21 13:12 - 2016-02-21 13:12 - 00000000 ____D C:\Program Files\Java
2016-02-21 13:07 - 2016-02-21 13:12 - 57099360 _____ (Oracle Corporation) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\jre-8u73-windows-x64.exe
2016-02-21 12:24 - 2016-02-21 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
2016-02-21 12:24 - 2016-02-21 12:24 - 00000000 ____D C:\Program Files (x86)\LAV Filters
2016-02-21 12:23 - 2016-02-21 12:23 - 09532984 _____ (1f0.de ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\LAVFilters-0.67-Installer.exe
2016-02-21 12:21 - 2016-02-21 12:21 - 07185389 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\LAVFilters-0.67-x64.zip
2016-02-21 12:13 - 2016-02-21 12:13 - 00318223 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_Filter_3_8_1.zip
2016-02-21 10:09 - 2016-02-21 10:09 - 00571552 _____ (Pinnacle Systems GmbH) C:\Windows\system32\Drivers\pctv4XXe_amd64.sys
2016-02-21 10:03 - 2016-02-21 10:06 - 00000000 ____D C:\Program Files (x86)\DVBViewer
2016-02-21 10:03 - 2016-02-21 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer
2016-02-21 10:03 - 2016-02-21 10:03 - 00000000 ____D C:\ProgramData\CMUV
2016-02-21 09:58 - 2016-02-21 09:58 - 01082553 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_GE_Anleitung.zip
2016-02-21 09:57 - 2016-02-21 09:57 - 07436126 _____ (CM&V ) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\DVBViewer_setup.exe
2016-02-21 09:55 - 2016-02-21 09:55 - 00001024 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\9DD6626F58261648.dvbvkey
2016-02-21 09:26 - 2016-02-21 09:26 - 00000706 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Geräte - Shortcut.lnk
2016-02-21 09:05 - 2016-02-21 09:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Pico Technology
2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Downloaded Installations
2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pico Technology
2016-02-21 09:04 - 2016-02-21 09:04 - 00000000 ____D C:\Program Files (x86)\Pico Technology
2016-02-21 08:57 - 2016-02-21 08:57 - 00000000 ____D C:\Program Files\Pico Technology
2016-02-20 17:27 - 2016-02-20 17:27 - 111098163 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\Microsoft-Spiele-x64.zip
2016-02-20 17:03 - 2016-02-28 10:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\MyPhoneExplorer
2016-02-20 17:03 - 2016-02-20 17:03 - 00002128 _____ C:\Users\Public\Desktop\MyPhoneExplorer.lnk
2016-02-20 17:03 - 2016-02-20 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer
2016-02-20 17:03 - 2016-02-20 17:03 - 00000000 ____D C:\Program Files (x86)\MyPhoneExplorer
2016-02-20 17:01 - 2016-02-20 17:02 - 07886000 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\MyPhoneExplorer_Setup_1.8.7.exe
2016-02-20 15:24 - 2016-02-20 15:24 - 00003668 _____ C:\Windows\System32\Tasks\{FCC43C23-C686-4530-BB4D-97C7E689F677}
2016-02-20 15:23 - 2016-02-20 15:23 - 00000000 ____D C:\ProgramData\VS
2016-02-20 15:18 - 2016-02-20 15:18 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010
2016-02-20 15:18 - 2016-02-20 15:18 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010
2016-02-20 12:53 - 2016-02-20 12:53 - 00003758 _____ C:\Windows\System32\Tasks\DriverMaxAgent
2016-02-20 11:49 - 2016-02-26 19:41 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-02-20 11:49 - 2016-02-20 12:59 - 00067680 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusb0.dll
2016-02-20 11:49 - 2016-02-20 12:59 - 00052832 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusb0.sys
2016-02-20 11:49 - 2016-02-20 11:58 - 00099128 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusbK.dll
2016-02-20 11:49 - 2016-02-20 11:58 - 00084280 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusbK.dll
2016-02-20 11:49 - 2016-02-20 11:58 - 00076384 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusb0.dll
2016-02-20 11:49 - 2016-02-20 11:58 - 00047928 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusbK.sys
2016-02-20 11:49 - 2016-02-20 11:55 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\usb_driver
2016-02-20 11:49 - 2016-02-20 11:49 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2016-02-20 11:36 - 2016-02-20 11:36 - 00000000 ____D C:\ProgramData\Atmel
2016-02-20 10:37 - 2016-02-20 10:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft Corporation
2016-02-20 10:32 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\VisualAssist
2016-02-20 10:32 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\VisualAssist
2016-02-20 10:32 - 2016-02-20 10:32 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\IsolatedStorage
2016-02-20 10:31 - 2016-02-23 17:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Atmel
2016-02-20 10:27 - 2016-02-20 10:37 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Atmel Studio
2016-02-20 10:27 - 2016-02-20 10:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Atmel
2016-02-20 10:27 - 2016-02-20 10:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Atmel
2016-02-20 10:26 - 2016-02-20 10:26 - 00000000 ____D C:\Program Files\Seggger
2016-02-20 10:25 - 2016-02-20 10:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0
2016-02-20 10:25 - 2010-08-31 13:23 - 00254976 _____ (Jungo) C:\Windows\system32\Drivers\windrvr6.sys
2016-02-20 10:25 - 2010-01-17 20:13 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi1011.dll
2016-02-20 10:25 - 2009-09-02 11:48 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1010.dll
2016-02-20 10:25 - 2009-07-14 10:07 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1002.dll
2016-02-20 10:25 - 2009-05-14 13:21 - 00157184 _____ (Jungo) C:\Windows\SysWOW64\wdapi1001.dll
2016-02-20 10:25 - 2008-07-04 09:51 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi921.dll
2016-02-20 10:25 - 2006-10-18 15:39 - 00141824 _____ (Jungo) C:\Windows\SysWOW64\wdapi811.dll
2016-02-20 10:24 - 2016-02-20 10:24 - 00000000 ____D C:\Program Files\Microsoft Help Viewer
2016-02-20 10:24 - 2016-02-20 10:24 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Windows\SysWOW64\1033
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Visual Studio 2010
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2016-02-20 10:23 - 2016-02-20 10:23 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-02-20 09:37 - 2016-02-20 09:37 - 00000771 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte - Shortcut.lnk
2016-02-20 09:32 - 2016-02-29 17:55 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Atmega_Projekte
2016-02-20 09:29 - 2016-02-20 09:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\MCS Electronics
2016-02-20 09:28 - 2016-02-20 09:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\MCS Electronics
2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\MCS Electronics
2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Electronics
2016-02-20 09:26 - 2016-02-20 09:26 - 00000000 ____D C:\Program Files (x86)\MCS Electronics
2016-02-19 20:10 - 2016-02-19 20:10 - 00001230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-02-19 20:10 - 2016-02-19 20:10 - 00001218 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-02-19 17:41 - 2016-02-19 17:41 - 00000000 _____ C:\autoexec.bat
2016-02-19 13:43 - 2016-02-19 13:43 - 00003972 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-02-19 13:43 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Adobe
2016-02-19 13:43 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\CEF
2016-02-19 13:42 - 2016-02-19 13:45 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-02-19 13:42 - 2016-02-19 13:44 - 00000000 ____D C:\ProgramData\Adobe
2016-02-19 13:42 - 2016-02-19 13:42 - 00002126 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-02-19 13:42 - 2016-02-19 13:42 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-02-19 13:41 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Adobe
2016-02-19 10:06 - 2016-02-19 10:06 - 00000000 ____D C:\Windows\system32\SleepStudy
2016-02-18 19:57 - 2016-03-02 17:02 - 00001144 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-18 19:57 - 2016-02-18 19:57 - 00004202 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-18 19:57 - 2016-02-18 19:57 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\LocalLow\Google
2016-02-18 19:56 - 2016-03-02 17:34 - 00001140 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-18 19:56 - 2016-02-21 17:54 - 00000000 ____D C:\Program Files (x86)\Google
2016-02-18 19:56 - 2016-02-18 19:56 - 00003970 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-18 19:53 - 2016-02-18 19:53 - 00000764 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Arbeitsdateien - Shortcut.lnk
2016-02-18 19:50 - 2016-02-18 19:50 - 00000675 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\GPS - Shortcut.lnk
2016-02-18 19:49 - 2016-02-18 19:49 - 00000780 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kranich_Projekte - Shortcut.lnk
2016-02-18 19:43 - 2016-02-18 19:43 - 00000707 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\TK102-2 -Shortcut.lnk
2016-02-18 19:33 - 2016-03-02 09:31 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Video_Audio
2016-02-18 18:46 - 2016-02-18 18:46 - 31367109 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\vlc-2.2.2-win64.exe
2016-02-18 16:44 - 2016-02-18 16:47 - 00000000 ____D C:\Windows\system32\MRT
2016-02-18 16:44 - 2016-02-18 16:44 - 146614896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-02-18 16:33 - 2016-02-18 16:33 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-02-18 16:33 - 2016-02-18 16:33 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-02-18 16:30 - 2016-01-31 07:23 - 02601160 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2016-02-18 16:30 - 2016-01-31 07:04 - 01811360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2016-02-18 16:30 - 2016-01-31 06:38 - 21873152 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-02-18 16:30 - 2016-01-31 06:34 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll
2016-02-18 16:30 - 2016-01-31 06:33 - 24593920 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 12504576 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-02-18 16:30 - 2016-01-31 06:25 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-02-18 16:30 - 2016-01-31 06:23 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-02-18 16:30 - 2016-01-31 06:22 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2016-02-18 16:30 - 2016-01-31 06:17 - 19324928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-02-18 16:30 - 2016-01-31 06:17 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2016-02-18 16:30 - 2016-01-31 06:14 - 07525376 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-02-18 16:30 - 2016-01-31 06:14 - 03588096 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-02-18 16:30 - 2016-01-31 06:13 - 04791808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-02-18 16:30 - 2016-01-31 06:11 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-02-18 16:30 - 2016-01-31 06:07 - 18802176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-02-18 16:30 - 2016-01-31 06:04 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2016-02-18 16:30 - 2016-01-31 06:02 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-02-18 16:30 - 2016-01-31 06:00 - 11263488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-02-18 16:30 - 2016-01-31 05:59 - 05457408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-02-18 16:30 - 2016-01-05 04:06 - 08022368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-02-18 16:30 - 2016-01-05 04:06 - 01063504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-02-18 16:30 - 2016-01-05 04:06 - 00119800 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-02-18 16:30 - 2016-01-05 04:04 - 02824248 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-02-18 16:30 - 2016-01-05 03:30 - 00882208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-02-18 16:30 - 2016-01-05 03:30 - 00100712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-02-18 16:30 - 2016-01-05 03:28 - 02445128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-02-18 16:30 - 2016-01-05 03:09 - 01234944 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-02-18 16:30 - 2016-01-05 02:57 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-02-18 16:30 - 2016-01-05 02:57 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-02-18 16:30 - 2016-01-05 02:29 - 00650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-02-18 16:30 - 2016-01-05 02:29 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-02-18 16:30 - 2016-01-05 02:26 - 00373760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-02-18 16:30 - 2015-11-25 06:40 - 00516448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2016-02-18 16:30 - 2015-11-25 05:49 - 01569280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2016-02-18 16:30 - 2015-11-25 05:30 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-02-18 16:30 - 2015-11-25 05:30 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2016-02-18 16:30 - 2015-11-25 05:22 - 01383424 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-02-18 16:30 - 2015-11-25 05:18 - 01233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2016-02-18 16:30 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2016-02-18 16:30 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-02-18 16:30 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-02-18 16:30 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-02-18 16:30 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2016-02-18 16:30 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2016-02-18 16:30 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-02-18 16:30 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2016-02-18 16:30 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-02-18 16:30 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-02-18 16:30 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-02-18 16:30 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-02-18 16:30 - 2015-09-17 07:48 - 02432336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-02-18 16:30 - 2015-09-17 07:48 - 00406864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-02-18 16:30 - 2015-09-17 07:06 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll
2016-02-18 16:30 - 2015-09-17 07:06 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2016-02-18 16:30 - 2015-09-17 07:03 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2016-02-18 16:30 - 2015-09-17 07:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2016-02-18 16:30 - 2015-09-17 06:55 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll
2016-02-18 16:30 - 2015-09-17 06:52 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2016-02-18 16:30 - 2015-09-17 06:52 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-02-18 16:30 - 2015-09-17 06:51 - 01812480 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2016-02-18 16:30 - 2015-09-17 06:50 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-02-18 16:30 - 2015-09-17 06:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\buttonconverter.sys
2016-02-18 16:30 - 2015-09-17 06:48 - 02093056 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2016-02-18 16:30 - 2015-09-17 06:47 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2016-02-18 16:30 - 2015-09-17 06:46 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2016-02-18 16:30 - 2015-09-17 06:46 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll
2016-02-18 16:30 - 2015-09-17 06:44 - 01844736 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2016-02-18 16:30 - 2015-09-17 06:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2016-02-18 16:30 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2016-02-18 16:30 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-02-18 16:30 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2016-02-18 16:30 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-02-18 16:30 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2016-02-18 16:30 - 2015-08-11 11:03 - 00442208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-02-18 16:30 - 2015-08-11 11:02 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2016-02-18 16:30 - 2015-08-11 10:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\tetheringclient.dll
2016-02-18 16:30 - 2015-08-11 10:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2016-02-18 16:29 - 2016-01-31 07:25 - 01951872 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-02-18 16:29 - 2016-01-31 07:25 - 01248896 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2016-02-18 16:29 - 2016-01-31 07:24 - 01824880 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-02-18 16:29 - 2016-01-31 07:23 - 01420392 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-02-18 16:29 - 2016-01-31 07:06 - 01535032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-02-18 16:29 - 2016-01-31 07:06 - 01531368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-02-18 16:29 - 2016-01-31 07:06 - 00809336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2016-02-18 16:29 - 2016-01-31 07:04 - 01180696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-02-18 16:29 - 2016-01-31 06:33 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\IoTAssignedAccessLockFramework.dll
2016-02-18 16:29 - 2016-01-31 06:29 - 11557888 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-02-18 16:29 - 2016-01-31 06:26 - 06787072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-02-18 16:29 - 2016-01-31 06:26 - 03793408 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-02-18 16:29 - 2016-01-31 06:20 - 02849792 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-02-18 16:29 - 2016-01-31 06:19 - 01602560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-02-18 16:29 - 2016-01-31 06:19 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll
2016-02-18 16:29 - 2016-01-31 06:16 - 09889280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-02-18 16:29 - 2016-01-31 06:16 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-02-18 16:29 - 2016-01-31 06:11 - 05156352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-02-18 16:29 - 2016-01-31 06:11 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2016-02-18 16:29 - 2016-01-31 06:06 - 02316800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-02-18 16:29 - 2016-01-31 06:05 - 01380864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-02-18 16:29 - 2016-01-31 06:02 - 00768000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-02-18 16:29 - 2016-01-05 04:07 - 02463704 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2016-02-18 16:29 - 2016-01-05 04:07 - 00377592 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-02-18 16:29 - 2016-01-05 04:06 - 01991120 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-02-18 16:29 - 2016-01-05 04:06 - 01270104 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 02641928 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 01150816 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00862056 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00787720 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 00784136 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00779928 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00772448 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00751992 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 00667856 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00233992 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00115704 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-02-18 16:29 - 2016-01-05 04:04 - 00090912 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-02-18 16:29 - 2016-01-05 04:04 - 00083704 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-02-18 16:29 - 2016-01-05 03:59 - 00781976 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-02-18 16:29 - 2016-01-05 03:50 - 01083072 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-02-18 16:29 - 2016-01-05 03:50 - 00723648 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-02-18 16:29 - 2016-01-05 03:50 - 00345080 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-02-18 16:29 - 2016-01-05 03:50 - 00205072 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-02-18 16:29 - 2016-01-05 03:30 - 02459096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-02-18 16:29 - 2016-01-05 03:30 - 02162064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-02-18 16:29 - 2016-01-05 03:30 - 02152744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2016-02-18 16:29 - 2016-01-05 03:30 - 01106872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2016-02-18 16:29 - 2016-01-05 03:30 - 00368776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-02-18 16:29 - 2016-01-05 03:29 - 00208688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00714808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00696192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-02-18 16:29 - 2016-01-05 03:28 - 00695752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-02-18 16:29 - 2016-01-05 03:28 - 00645144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00635312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00497896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00107952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-02-18 16:29 - 2016-01-05 03:28 - 00082096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-02-18 16:29 - 2016-01-05 03:28 - 00072808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-02-18 16:29 - 2016-01-05 03:21 - 00658528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-02-18 16:29 - 2016-01-05 03:15 - 00931328 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-02-18 16:29 - 2016-01-05 03:15 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\usermgrcli.dll
2016-02-18 16:29 - 2016-01-05 03:10 - 00305776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-02-18 16:29 - 2016-01-05 03:10 - 00188032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-02-18 16:29 - 2016-01-05 03:09 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-02-18 16:29 - 2016-01-05 03:02 - 01672192 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-02-18 16:29 - 2016-01-05 03:02 - 00678912 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-02-18 16:29 - 2016-01-05 03:00 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-02-18 16:29 - 2016-01-05 02:59 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-02-18 16:29 - 2016-01-05 02:57 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2016-02-18 16:29 - 2016-01-05 02:51 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 01009664 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-02-18 16:29 - 2016-01-05 02:51 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:44 - 00159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2016-02-18 16:29 - 2016-01-05 02:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usermgrcli.dll
2016-02-18 16:29 - 2016-01-05 02:42 - 00871936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-02-18 16:29 - 2016-01-05 02:32 - 01541632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-02-18 16:29 - 2016-01-05 02:32 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-02-18 16:29 - 2016-01-05 02:31 - 00563200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-02-18 16:29 - 2016-01-05 02:20 - 00890880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 01070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 00747008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 00409088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-02-18 16:29 - 2016-01-05 02:19 - 00404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-02-18 16:29 - 2015-12-01 07:03 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\gpuenergydrv.sys
2016-02-18 16:29 - 2015-11-25 06:42 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-02-18 16:29 - 2015-11-25 06:42 - 00168288 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.exe
2016-02-18 16:29 - 2015-11-25 06:33 - 03622272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-02-18 16:29 - 2015-11-25 06:27 - 01366680 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-02-18 16:29 - 2015-11-25 06:12 - 04047288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-02-18 16:29 - 2015-11-25 06:09 - 01310880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-02-18 16:29 - 2015-11-25 06:01 - 02879024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-02-18 16:29 - 2015-11-25 05:49 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:49 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:49 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\RasMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:48 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\EthernetMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:48 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\DAMediaManager.dll
2016-02-18 16:29 - 2015-11-25 05:37 - 02350592 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-02-18 16:29 - 2015-11-25 05:36 - 01710592 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2016-02-18 16:29 - 2015-11-25 05:35 - 00929792 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2016-02-18 16:29 - 2015-11-25 05:35 - 00845824 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2016-02-18 16:29 - 2015-11-25 05:31 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll
2016-02-18 16:29 - 2015-11-25 05:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll
2016-02-18 16:29 - 2015-11-25 05:29 - 01649152 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-02-18 16:29 - 2015-11-25 05:29 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\ninput.dll
2016-02-18 16:29 - 2015-11-25 05:27 - 02180608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-02-18 16:29 - 2015-11-25 05:23 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-02-18 16:29 - 2015-11-25 05:22 - 01717248 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-02-18 16:29 - 2015-11-25 05:22 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2016-02-18 16:29 - 2015-11-25 05:19 - 01795584 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-02-18 16:29 - 2015-11-25 05:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2016-02-18 16:29 - 2015-11-25 05:17 - 00774656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2016-02-18 16:29 - 2015-11-25 05:16 - 01442816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll
2016-02-18 16:29 - 2015-11-25 05:16 - 00786432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2016-02-18 16:29 - 2015-11-25 05:13 - 02153984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-02-18 16:29 - 2015-11-25 05:10 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-02-18 16:29 - 2015-11-25 05:04 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-02-18 16:29 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2016-02-18 16:29 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2016-02-18 16:29 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2016-02-18 16:29 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2016-02-18 16:29 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2016-02-18 16:29 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2016-02-18 16:29 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2016-02-18 16:29 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-02-18 16:29 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2016-02-18 16:29 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2016-02-18 16:29 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2016-02-18 16:29 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2016-02-18 16:29 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-02-18 16:29 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2016-02-18 16:29 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2016-02-18 16:29 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-02-18 16:29 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-02-18 16:29 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-02-18 16:29 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2016-02-18 16:29 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-02-18 16:29 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2016-02-18 16:29 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-02-18 16:29 - 2015-09-17 07:50 - 00099664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-02-18 16:29 - 2015-09-17 07:49 - 06487248 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2016-02-18 16:29 - 2015-09-17 07:49 - 00894256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-02-18 16:29 - 2015-09-17 07:49 - 00553808 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ C:\Windows\system32\CoreUIComponents.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 02156400 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 01983824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-02-18 16:29 - 2015-09-17 07:48 - 00555768 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 00476760 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2016-02-18 16:29 - 2015-09-17 07:37 - 01295712 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2016-02-18 16:29 - 2015-09-17 07:28 - 05120056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2016-02-18 16:29 - 2015-09-17 07:28 - 00441168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-02-18 16:29 - 2015-09-17 07:28 - 00074880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2016-02-18 16:29 - 2015-09-17 07:27 - 01766952 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2016-02-18 16:29 - 2015-09-17 07:27 - 00454512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2016-02-18 16:29 - 2015-09-17 07:26 - 01895568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2016-02-18 16:29 - 2015-09-17 07:26 - 00434376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2016-02-18 16:29 - 2015-09-17 07:05 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2016-02-18 16:29 - 2015-09-17 07:05 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-02-18 16:29 - 2015-09-17 07:04 - 07569408 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2016-02-18 16:29 - 2015-09-17 07:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2016-02-18 16:29 - 2015-09-17 07:00 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll
2016-02-18 16:29 - 2015-09-17 06:57 - 02228736 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2016-02-18 16:29 - 2015-09-17 06:56 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2016-02-18 16:29 - 2015-09-17 06:55 - 00671232 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2016-02-18 16:29 - 2015-09-17 06:54 - 03781120 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2016-02-18 16:29 - 2015-09-17 06:54 - 00780288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-02-18 16:29 - 2015-09-17 06:54 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-02-18 16:29 - 2015-09-17 06:53 - 07055872 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2016-02-18 16:29 - 2015-09-17 06:52 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2016-02-18 16:29 - 2015-09-17 06:52 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2016-02-18 16:29 - 2015-09-17 06:52 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2016-02-18 16:29 - 2015-09-17 06:51 - 02660864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-02-18 16:29 - 2015-09-17 06:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\LocationGeofences.dll
2016-02-18 16:29 - 2015-09-17 06:49 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2016-02-18 16:29 - 2015-09-17 06:47 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-02-18 16:29 - 2015-09-17 06:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2016-02-18 16:29 - 2015-09-17 06:46 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2016-02-18 16:29 - 2015-09-17 06:45 - 01331200 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2016-02-18 16:29 - 2015-09-17 06:43 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2016-02-18 16:29 - 2015-09-17 06:40 - 06101504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2016-02-18 16:29 - 2015-09-17 06:39 - 00587264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2016-02-18 16:29 - 2015-09-17 06:39 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-02-18 16:29 - 2015-09-17 06:36 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2016-02-18 16:29 - 2015-09-17 06:35 - 05079552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2016-02-18 16:29 - 2015-09-17 06:35 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-02-18 16:29 - 2015-09-17 06:30 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2016-02-18 16:29 - 2015-09-17 06:29 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2016-02-18 16:29 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2016-02-18 16:29 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.PicturePassword.dll
2016-02-18 16:29 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-02-18 16:29 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2016-02-18 16:29 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2016-02-18 16:29 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2016-02-18 16:29 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2016-02-18 16:29 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2016-02-18 16:29 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2016-02-18 16:29 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2016-02-18 16:29 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-02-18 16:29 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2016-02-18 16:29 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2016-02-18 16:29 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2016-02-18 16:29 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2016-02-18 16:29 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2016-02-18 16:29 - 2015-08-11 10:50 - 01643872 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-02-18 16:29 - 2015-08-11 10:08 - 00893440 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2016-02-18 16:29 - 2015-08-11 10:05 - 03527168 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-02-18 16:29 - 2015-08-11 10:05 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\LocationPermissions.dll
2016-02-18 16:29 - 2015-08-11 10:03 - 02558976 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-02-18 16:29 - 2015-08-11 09:48 - 00671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2016-02-18 16:29 - 2015-08-11 09:43 - 02748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2016-02-18 16:29 - 2015-08-11 09:40 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2016-02-18 16:28 - 2016-01-31 06:29 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rasman.dll
2016-02-18 16:28 - 2016-01-31 06:24 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-02-18 16:28 - 2016-01-31 06:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-02-18 16:28 - 2016-01-31 06:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-02-18 16:28 - 2016-01-31 06:19 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IoTAssignedAccessLockFramework.dll
2016-02-18 16:28 - 2016-01-31 06:18 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-02-18 16:28 - 2016-01-31 06:18 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-02-18 16:28 - 2016-01-31 06:13 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasman.dll
2016-02-18 16:28 - 2016-01-31 06:13 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\ztrace_maps.dll
2016-02-18 16:28 - 2016-01-31 06:11 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-02-18 16:28 - 2016-01-31 06:05 - 00574464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2016-02-18 16:28 - 2016-01-31 06:05 - 00118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-02-18 16:28 - 2016-01-31 05:58 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ztrace_maps.dll
2016-02-18 16:28 - 2016-01-05 04:04 - 01591848 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-02-18 16:28 - 2016-01-05 04:04 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-02-18 16:28 - 2016-01-05 04:04 - 00249464 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-02-18 16:28 - 2016-01-05 04:04 - 00243248 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-02-18 16:28 - 2016-01-05 03:52 - 00441696 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-02-18 16:28 - 2016-01-05 03:50 - 01817064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-02-18 16:28 - 2016-01-05 03:50 - 00251544 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-02-18 16:28 - 2016-01-05 03:31 - 01365576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-02-18 16:28 - 2016-01-05 03:30 - 00232896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-02-18 16:28 - 2016-01-05 03:28 - 00277400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-02-18 16:28 - 2016-01-05 03:28 - 00116728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-02-18 16:28 - 2016-01-05 03:15 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2016-02-18 16:28 - 2016-01-05 03:10 - 00539136 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2016-02-18 16:28 - 2016-01-05 03:10 - 00278424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-02-18 16:28 - 2016-01-05 03:02 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-02-18 16:28 - 2016-01-05 03:01 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-02-18 16:28 - 2016-01-05 02:38 - 00556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2016-02-18 16:28 - 2016-01-05 02:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-02-18 16:28 - 2015-12-01 08:01 - 02115936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-02-18 16:28 - 2015-11-25 06:32 - 00113184 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2016-02-18 16:28 - 2015-11-25 05:59 - 00092992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2016-02-18 16:28 - 2015-11-25 05:36 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2016-02-18 16:28 - 2015-11-25 05:28 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-02-18 16:28 - 2015-11-25 05:26 - 00849408 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2016-02-18 16:28 - 2015-11-25 05:26 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2016-02-18 16:28 - 2015-11-25 05:25 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-02-18 16:28 - 2015-11-25 05:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZST.DLL
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2016-02-18 16:28 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2016-02-18 16:28 - 2015-11-25 05:11 - 00296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll
2016-02-18 16:28 - 2015-11-25 05:10 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-02-18 16:28 - 2015-11-25 05:08 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2016-02-18 16:28 - 2015-11-25 05:07 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00480768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00474624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll


gzielos 02.03.2016 17:53

FRST.txt zweiter Teil:

Code:

2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZST.DLL
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2016-02-18 16:28 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2016-02-18 16:28 - 2015-11-25 03:52 - 00775312 _____ C:\Windows\SysWOW64\locale.nls
2016-02-18 16:28 - 2015-11-25 03:52 - 00775312 _____ C:\Windows\system32\locale.nls
2016-02-18 16:28 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2016-02-18 16:28 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-02-18 16:28 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-02-18 16:28 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2016-02-18 16:28 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2016-02-18 16:28 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2016-02-18 16:28 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2016-02-18 16:28 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2016-02-18 16:28 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-02-18 16:28 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-02-18 16:28 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-02-18 16:28 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-02-18 16:28 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-02-18 16:28 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-02-18 16:28 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2016-02-18 16:28 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll
2016-02-18 16:28 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll
2016-02-18 16:28 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2016-02-18 16:28 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2016-02-18 16:28 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2016-02-18 16:28 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2016-02-18 16:28 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2016-02-18 16:28 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\CallHistoryClient.dll
2016-02-18 16:28 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2016-02-18 16:28 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll
2016-02-18 16:28 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2016-02-18 16:28 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2016-02-18 16:28 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallHistoryClient.dll
2016-02-18 16:28 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2016-02-18 16:28 - 2015-09-19 06:14 - 00102304 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2016-02-18 16:28 - 2015-09-17 07:50 - 01563392 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2016-02-18 16:28 - 2015-09-17 07:50 - 00088384 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2016-02-18 16:28 - 2015-09-17 07:49 - 01563472 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-02-18 16:28 - 2015-09-17 07:49 - 00501008 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00809352 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00584656 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00537080 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2016-02-18 16:28 - 2015-09-17 07:48 - 00505696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-02-18 16:28 - 2015-09-17 07:48 - 00395088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-02-18 16:28 - 2015-09-17 07:48 - 00332624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2016-02-18 16:28 - 2015-09-17 07:48 - 00278352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2016-02-18 16:28 - 2015-09-17 07:37 - 01168736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-02-18 16:28 - 2015-09-17 07:28 - 01357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2016-02-18 16:28 - 2015-09-17 07:28 - 00407608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-02-18 16:28 - 2015-09-17 07:26 - 00508248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-02-18 16:28 - 2015-09-17 07:26 - 00428128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2016-02-18 16:28 - 2015-09-17 07:11 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2016-02-18 16:28 - 2015-09-17 07:10 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2016-02-18 16:28 - 2015-09-17 07:09 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2016-02-18 16:28 - 2015-09-17 07:09 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2016-02-18 16:28 - 2015-09-17 07:08 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2016-02-18 16:28 - 2015-09-17 07:08 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll
2016-02-18 16:28 - 2015-09-17 07:08 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerShellext.exe
2016-02-18 16:28 - 2015-09-17 07:04 - 00910848 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2016-02-18 16:28 - 2015-09-17 07:03 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2016-02-18 16:28 - 2015-09-17 07:03 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2016-02-18 16:28 - 2015-09-17 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2016-02-18 16:28 - 2015-09-17 07:02 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-02-18 16:28 - 2015-09-17 07:00 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2016-02-18 16:28 - 2015-09-17 06:58 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2016-02-18 16:28 - 2015-09-17 06:57 - 00403456 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2016-02-18 16:28 - 2015-09-17 06:57 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2016-02-18 16:28 - 2015-09-17 06:57 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2016-02-18 16:28 - 2015-09-17 06:56 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2016-02-18 16:28 - 2015-09-17 06:56 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 01601536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll
2016-02-18 16:28 - 2015-09-17 06:55 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2016-02-18 16:28 - 2015-09-17 06:55 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2016-02-18 16:28 - 2015-09-17 06:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2016-02-18 16:28 - 2015-09-17 06:51 - 01203712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2016-02-18 16:28 - 2015-09-17 06:51 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2016-02-18 16:28 - 2015-09-17 06:51 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeWiFi.dll
2016-02-18 16:28 - 2015-09-17 06:50 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeCell.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 01290240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00439296 _____ (Microsoft Corporation) C:\Windows\system32\LocationWebproxy.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\LocationCrowdsource.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeIP.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\LocationWiFiAdapter.dll
2016-02-18 16:28 - 2015-09-17 06:49 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Speech.Pal.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2016-02-18 16:28 - 2015-09-17 06:47 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2016-02-18 16:28 - 2015-09-17 06:46 - 00928256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2016-02-18 16:28 - 2015-09-17 06:46 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2016-02-18 16:28 - 2015-09-17 06:46 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2016-02-18 16:28 - 2015-09-17 06:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\syncmlhook.dll
2016-02-18 16:28 - 2015-09-17 06:45 - 00869376 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2016-02-18 16:28 - 2015-09-17 06:45 - 00832512 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2016-02-18 16:28 - 2015-09-17 06:45 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2016-02-18 16:28 - 2015-09-17 06:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2016-02-18 16:28 - 2015-09-17 06:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\syncutil.dll
2016-02-18 16:28 - 2015-09-17 06:43 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll
2016-02-18 16:28 - 2015-09-17 06:43 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2016-02-18 16:28 - 2015-09-17 06:41 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-02-18 16:28 - 2015-09-17 06:40 - 01162240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2016-02-18 16:28 - 2015-09-17 06:38 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2016-02-18 16:28 - 2015-09-17 06:37 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2016-02-18 16:28 - 2015-09-17 06:35 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2016-02-18 16:28 - 2015-09-17 06:34 - 00253440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2016-02-18 16:28 - 2015-09-17 06:32 - 00336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2016-02-18 16:28 - 2015-09-17 06:32 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2016-02-18 16:28 - 2015-09-17 06:32 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-02-18 16:28 - 2015-09-17 06:31 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2016-02-18 16:28 - 2015-09-17 06:29 - 00701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2016-02-18 16:28 - 2015-09-17 06:29 - 00677888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2016-02-18 16:28 - 2015-09-17 06:28 - 00473088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2016-02-18 16:28 - 2015-09-17 06:26 - 00899584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll
2016-02-18 16:28 - 2015-09-17 06:16 - 00512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2016-02-18 16:28 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-02-18 16:28 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2016-02-18 16:28 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-02-18 16:28 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2016-02-18 16:28 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2016-02-18 16:28 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2016-02-18 16:28 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2016-02-18 16:28 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2016-02-18 16:28 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-02-18 16:28 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2016-02-18 16:28 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2016-02-18 16:28 - 2015-08-18 07:54 - 00247296 _____ C:\Windows\system32\facecredentialprovider.dll
2016-02-18 16:28 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2016-02-18 16:28 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2016-02-18 16:28 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2016-02-18 16:28 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-02-18 16:28 - 2015-08-18 05:44 - 00008847 _____ C:\Windows\system32\ResPriHMImageList
2016-02-18 16:28 - 2015-08-11 11:04 - 01087296 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-02-18 16:28 - 2015-08-11 11:02 - 00292856 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-02-18 16:28 - 2015-08-11 10:52 - 00993104 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2016-02-18 16:28 - 2015-08-11 10:40 - 00918320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-02-18 16:28 - 2015-08-11 10:37 - 00243800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2016-02-18 16:28 - 2015-08-11 10:26 - 00845664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2016-02-18 16:28 - 2015-08-11 10:19 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2016-02-18 16:28 - 2015-08-11 10:14 - 00404480 _____ C:\Windows\system32\diagtrack_wininternal.dll
2016-02-18 16:28 - 2015-08-11 10:13 - 00413184 _____ C:\Windows\system32\diagtrack_win.dll
2016-02-18 16:28 - 2015-08-11 10:11 - 02446336 _____ C:\Windows\system32\InputService.dll
2016-02-18 16:28 - 2015-08-11 10:11 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2016-02-18 16:28 - 2015-08-11 10:10 - 00293376 _____ C:\Windows\system32\TextInputFramework.dll
2016-02-18 16:28 - 2015-08-11 10:09 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll
2016-02-18 16:28 - 2015-08-11 10:05 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll
2016-02-18 16:28 - 2015-08-11 10:00 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-02-18 16:28 - 2015-08-11 09:59 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-02-18 16:28 - 2015-08-11 09:59 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll
2016-02-18 16:28 - 2015-08-11 09:59 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2016-02-18 16:28 - 2015-08-11 09:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tetheringclient.dll
2016-02-18 16:28 - 2015-08-11 09:51 - 01823232 _____ C:\Windows\SysWOW64\InputService.dll
2016-02-18 16:28 - 2015-08-11 09:50 - 00420352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2016-02-18 16:28 - 2015-08-11 09:50 - 00200704 _____ C:\Windows\SysWOW64\TextInputFramework.dll
2016-02-18 16:28 - 2015-08-11 09:50 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2016-02-18 16:28 - 2015-08-11 09:39 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-02-18 16:28 - 2015-08-11 09:38 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2016-02-18 16:08 - 2016-02-20 17:33 - 00000000 ____D C:\Program Files\Microsoft Games
2016-02-18 16:05 - 2016-02-20 17:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft Games
2016-02-18 16:05 - 2016-02-18 16:05 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Microsoft Games
2016-02-18 16:00 - 2016-02-18 16:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vista Games
2016-02-18 15:59 - 2010-05-17 08:33 - 00061440 _____ (Rafael & ZoRoNaX) C:\Windows\system32\Vista.Emulation.dll
2016-02-18 13:29 - 2016-02-18 19:35 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\vlc
2016-02-18 13:29 - 2016-02-18 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-02-18 13:29 - 2016-02-18 13:29 - 00000000 ____D C:\Program Files\VideoLAN
2016-02-18 12:55 - 2016-02-23 13:38 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Flight Simulator-Dateien
2016-02-18 12:51 - 2016-02-18 12:51 - 00000000 ____D C:\Users\Public\Documents\Flight Simulator-Dateien
2016-02-18 12:49 - 2016-02-18 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2016-02-18 12:43 - 2016-02-29 08:24 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Programme
2016-02-18 12:42 - 2016-02-18 16:00 - 00000000 ____D C:\Program Files (x86)\Microsoft Games
2016-02-18 11:29 - 2016-02-18 11:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Criterion Games
2016-02-18 11:26 - 2012-04-12 14:25 - 00539136 _____ (Microsoft Corporation) C:\Program Files (x86)\spider.exe
2016-02-18 10:54 - 2016-02-28 12:00 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Spiele
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Chat
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\Program Files (x86)\WestwoodOnline
2016-02-18 10:53 - 2016-02-18 10:53 - 00000000 ____D C:\Program Files (x86)\WestwoodChat
2016-02-18 10:52 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-02-18 10:52 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-02-18 10:52 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2016-02-18 10:52 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2016-02-18 10:52 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2016-02-18 10:52 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2016-02-18 10:52 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2016-02-18 10:52 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2016-02-18 10:52 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2016-02-18 10:52 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2016-02-18 10:52 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2016-02-18 10:52 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2016-02-18 10:52 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2016-02-18 10:52 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2016-02-18 10:52 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-02-18 10:52 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2016-02-18 10:52 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2016-02-18 10:52 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2016-02-18 10:52 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2016-02-18 10:52 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2016-02-18 10:52 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2016-02-18 10:52 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2016-02-18 10:52 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2016-02-18 10:52 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2016-02-18 10:52 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2016-02-18 10:52 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2016-02-18 10:52 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2016-02-18 10:52 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2016-02-18 10:52 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2016-02-18 10:52 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2016-02-18 10:52 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2016-02-18 10:52 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2016-02-18 10:52 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2016-02-18 10:52 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2016-02-18 10:52 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2016-02-18 10:52 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2016-02-18 10:52 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2016-02-18 10:52 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2016-02-18 10:52 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2016-02-18 10:52 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2016-02-18 10:52 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2016-02-18 10:52 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2016-02-18 10:52 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2016-02-18 10:52 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2016-02-18 10:52 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2016-02-18 10:52 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2016-02-18 10:52 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2016-02-18 10:52 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2016-02-18 10:52 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-02-18 10:52 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2016-02-18 10:52 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2016-02-18 10:52 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2016-02-18 10:52 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2016-02-18 10:52 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2016-02-18 10:52 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2016-02-18 10:52 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2016-02-18 10:52 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2016-02-18 10:52 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2016-02-18 10:52 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2016-02-18 10:52 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2016-02-18 10:52 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2016-02-18 10:52 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2016-02-18 10:52 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2016-02-18 10:52 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2016-02-18 10:52 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2016-02-18 10:52 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2016-02-18 10:52 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2016-02-18 10:52 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2016-02-18 10:52 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2016-02-18 10:52 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2016-02-18 10:52 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-02-18 10:52 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-02-18 10:52 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-02-18 10:52 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2016-02-18 10:52 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-02-18 10:52 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2016-02-18 10:52 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2016-02-18 10:52 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2016-02-18 10:52 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2016-02-18 10:52 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2016-02-18 10:52 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-02-18 10:52 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2016-02-18 10:52 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2016-02-18 10:52 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2016-02-18 10:52 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2016-02-18 10:52 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2016-02-18 10:52 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2016-02-18 10:52 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2016-02-18 10:52 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2016-02-18 10:52 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2016-02-18 10:52 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2016-02-18 10:52 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2016-02-18 10:46 - 2016-02-18 15:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Origin
2016-02-18 10:46 - 2016-02-18 11:18 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-02-18 10:46 - 2016-02-18 10:46 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Origin
2016-02-18 10:43 - 2016-03-02 17:35 - 00000000 ____D C:\ProgramData\Origin
2016-02-18 10:43 - 2016-02-18 11:29 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-02-18 10:43 - 2016-02-18 10:46 - 00000000 ____D C:\Program Files (x86)\Origin
2016-02-18 10:43 - 2016-02-18 10:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-02-18 10:42 - 2016-02-18 10:42 - 31335272 _____ (Electronic Arts, Inc.) C:\Users\Gunther.DESKTOP-L5KOO87\Downloads\OriginThinSetup.exe
2016-02-18 10:25 - 2016-02-27 15:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik
2016-02-18 10:11 - 2016-02-18 10:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogView V2
2016-02-18 10:11 - 2016-02-18 10:11 - 00000000 ____D C:\Program Files (x86)\LogView V2
2016-02-18 10:06 - 2016-02-18 10:06 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Documents\LogView 7
2016-02-18 09:56 - 2016-02-18 10:25 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\LogView
2016-02-18 09:52 - 2016-02-18 09:54 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Comms
2016-02-18 09:42 - 2016-03-01 09:56 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Grafik
2016-02-18 09:41 - 2016-02-18 09:41 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paint Shop Pro 5
2016-02-18 09:41 - 2016-02-18 09:41 - 00000000 ____D C:\Program Files (x86)\Paint Shop Pro 5
2016-02-18 09:30 - 2016-02-18 09:30 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\.android
2016-02-17 21:14 - 2016-02-17 21:14 - 00000000 ___RD C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Brother
2016-02-17 21:13 - 2016-02-22 13:41 - 00000432 _____ C:\Windows\BRWMARK.INI
2016-02-17 21:13 - 2016-02-22 13:41 - 00000034 _____ C:\Windows\SysWOW64\BD2030.DAT
2016-02-17 20:27 - 2016-02-17 20:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\NetworkTiles
2016-02-17 18:35 - 2016-02-29 11:51 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Wichtige Internetseiten
2016-02-17 18:11 - 2016-02-17 18:11 - 00026296 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Abrechnung_4475958910292900_20160214.PDF
2016-02-17 17:44 - 2016-02-17 17:45 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Office
2016-02-17 17:42 - 2016-02-21 16:24 - 00425472 _____ (Steganos GmbH) C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\LockNote105.exe
2016-02-17 17:40 - 2016-02-18 16:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2016-02-17 17:40 - 2016-02-17 17:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-02-17 17:39 - 2016-02-17 17:39 - 00000000 ____D C:\Windows\PCHEALTH
2016-02-17 17:36 - 2016-02-17 17:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft Help
2016-02-17 17:36 - 2016-02-17 17:36 - 00000000 ____D C:\Program Files\Microsoft Office
2016-02-17 17:35 - 2016-02-17 17:35 - 00000000 __RHD C:\MSOCache
2016-02-17 17:15 - 2016-02-17 21:20 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\ElevatedDiagnostics
2016-02-17 17:14 - 2016-02-17 17:14 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Kaspersky
2016-02-17 17:12 - 2016-02-17 17:12 - 00002026 _____ C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Editor.lnk
2016-02-17 17:11 - 2016-02-17 17:11 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\WildTangent
2016-02-17 16:59 - 2016-02-17 16:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2016-02-17 16:59 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2016-02-17 16:58 - 2016-03-02 17:34 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-02-17 16:58 - 2016-03-02 17:34 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-02-17 16:58 - 2016-03-01 15:29 - 00927640 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2016-02-17 16:58 - 2016-02-17 17:21 - 00181640 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2016-02-17 16:58 - 2016-02-17 17:04 - 00227512 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2016-02-17 16:58 - 2016-02-17 16:58 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2016-02-17 16:43 - 2015-07-09 20:38 - 01996288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0007.dll
2016-02-17 16:43 - 2015-07-09 20:36 - 12039680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsLexicons0007.dll
2016-02-17 16:43 - 2015-07-09 20:26 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0007.dll
2016-02-17 16:43 - 2015-07-09 20:25 - 12039680 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0007.dll
2016-02-17 16:43 - 2015-07-09 20:25 - 11602944 _____ (Microsoft Corporation) C:\Windows\system32\prm0007.dll
2016-02-17 16:42 - 2016-02-17 16:48 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Mozilla
2016-02-17 16:42 - 2016-02-17 16:42 - 00001049 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2016-02-17 16:42 - 2016-02-17 16:42 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Mozilla
2016-02-17 16:41 - 2016-02-17 16:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-02-17 16:36 - 2016-02-17 16:36 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\awsRun
2016-02-17 16:33 - 2016-02-17 16:33 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Macromedia
2016-02-17 16:32 - 2016-02-17 20:11 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\MicrosoftEdge
2016-02-17 16:31 - 2016-02-17 16:31 - 00002439 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-02-17 16:31 - 2016-02-17 16:31 - 00000000 ___RD C:\Users\Gunther.DESKTOP-L5KOO87\OneDrive
2016-02-17 16:31 - 2016-02-17 16:31 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\NVIDIA
2016-02-17 16:28 - 2016-02-19 13:43 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Adobe
2016-02-17 16:28 - 2016-02-17 16:29 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\DropboxOEM
2016-02-17 16:28 - 2016-02-17 16:28 - 00003628 _____ C:\Windows\System32\Tasks\ASUS Smart Gesture Launcher
2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\WebStorage
2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Publishers
2016-02-17 16:28 - 2016-02-17 16:28 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\DropboxOEM
2016-02-17 16:27 - 2016-03-02 17:35 - 00000165 _____ C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\sp_data.sys
2016-02-17 16:27 - 2016-02-29 17:57 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87
2016-02-17 16:27 - 2016-02-21 15:35 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\VirtualStore
2016-02-17 16:27 - 2016-02-20 17:12 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Packages
2016-02-17 16:27 - 2016-02-17 16:27 - 00056952 _____ C:\Windows\system32\ASGCoInstaller_x64.dll
2016-02-17 16:27 - 2016-02-17 16:27 - 00016148 _____ C:\Windows\system32\DESKTOP-L5KOO87_defaultuser0_HistoryPrediction.bin
2016-02-17 16:27 - 2016-02-17 16:27 - 00000020 ___SH C:\Users\Gunther.DESKTOP-L5KOO87\ntuser.ini
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Vorlagen
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Startmenü
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Netzwerkumgebung
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Lokale Einstellungen
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Eigene Dateien
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Druckumgebung
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Videos
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Musik
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Documents\Eigene Bilder
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Verlauf
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Anwendungsdaten
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 _SHDL C:\Users\Gunther.DESKTOP-L5KOO87\Anwendungsdaten
2016-02-17 16:27 - 2016-02-17 16:27 - 00000000 ____D C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\TileDataLayer
2016-02-17 16:24 - 2016-03-02 17:34 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-02-17 16:18 - 2015-12-09 04:39 - 00301728 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-02 17:34 - 2015-11-11 08:51 - 00000000 __SHD C:\Users\Gunther\IntelGraphicsProfiles
2016-03-02 17:33 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-02 17:32 - 2015-07-10 10:05 - 00131072 ___SH C:\Windows\system32\config\BBI
2016-03-02 17:18 - 2015-08-18 14:14 - 00773778 _____ C:\Windows\system32\perfh007.dat
2016-03-02 17:18 - 2015-08-18 14:14 - 00154590 _____ C:\Windows\system32\perfc007.dat
2016-03-02 17:18 - 2015-08-18 06:20 - 01790124 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-02 17:18 - 2015-07-10 12:02 - 00000000 ____D C:\Windows\INF
2016-03-02 17:00 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsNotifyTask_Administrator.job
2016-03-02 16:57 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsUpdateTask_Administrator.job
2016-03-02 12:00 - 2015-11-11 08:02 - 00003544 _____ C:\Windows\System32\Tasks\ASUS Live Update1
2016-03-02 12:00 - 2015-11-11 08:02 - 00003534 _____ C:\Windows\System32\Tasks\ASUS Live Update2
2016-03-02 08:31 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-02 08:31 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\AppReadiness
2016-03-01 15:29 - 2015-06-06 08:51 - 00077728 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\kldisk.sys
2016-02-28 12:00 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\System
2016-02-28 11:55 - 2015-07-10 13:20 - 00243544 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-26 19:41 - 2015-11-11 08:23 - 00001542 _____ C:\Users\Public\Desktop\WPS Office.lnk
2016-02-26 16:18 - 2015-07-10 17:27 - 00000000 ____D C:\Windows\OCR
2016-02-26 13:24 - 2015-08-18 06:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-02-26 13:24 - 2015-07-10 12:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-02-25 09:27 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp
2016-02-23 17:55 - 2015-11-11 07:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-02-21 15:29 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-02-21 10:37 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\rescache
2016-02-21 10:34 - 2015-08-18 14:13 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-02-21 10:34 - 2015-07-10 17:30 - 00000000 ____D C:\Program Files\Windows Journal
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\winrm
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\WCN
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\winrm
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\WCN
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\slmgr
2016-02-21 10:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\F12
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\F12
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\dsc
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\MiracastView
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\DevicesFlow
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\oobe
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\MUI
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\Com
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\oobe
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\MUI
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\migwiz
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\Com
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\IME
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Help
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Defender
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\System
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-02-21 10:34 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Sysprep
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Dism
2016-02-21 10:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\servicing
2016-02-21 09:55 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\en-GB
2016-02-21 09:55 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\en-GB
2016-02-21 08:56 - 2015-11-11 07:39 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-20 16:54 - 2015-07-10 12:04 - 00000150 _____ C:\Windows\win.ini
2016-02-20 10:26 - 2015-11-11 08:02 - 00000000 ____D C:\Program Files\DIFX
2016-02-20 10:25 - 2015-08-18 14:00 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-02-19 20:10 - 2015-11-11 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-02-19 19:43 - 2015-11-11 10:41 - 00000000 ___HD C:\$SysReset
2016-02-19 15:16 - 2015-11-11 07:36 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\PurchaseDialog
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\appraiser
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Provisioning
2016-02-19 15:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\L2Schemas
2016-02-18 19:53 - 2015-08-18 15:00 - 00000000 ____D C:\Windows\Panther
2016-02-18 19:48 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT
2016-02-18 16:26 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2016-02-18 12:51 - 2015-07-10 11:59 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2016-02-18 12:51 - 2015-07-10 11:59 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2016-02-18 12:51 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2016-02-18 12:51 - 2015-07-10 11:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2016-02-18 12:50 - 2015-07-10 11:59 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2016-02-18 08:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\appcompat
2016-02-17 17:36 - 2015-07-10 17:30 - 00000000 ____D C:\Windows\ShellNew
2016-02-17 17:21 - 2015-06-26 23:58 - 00087944 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klwfp.sys
2016-02-17 17:21 - 2015-06-08 19:43 - 00041352 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klpd.sys
2016-02-17 16:59 - 2015-11-11 09:08 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2016-02-17 16:59 - 2015-07-10 10:05 - 00032768 ___SH C:\Windows\system32\config\ELAM
2016-02-17 16:58 - 2015-07-10 12:04 - 00000000 ___HD C:\Windows\ELAMBKUP
2016-02-17 16:57 - 2015-11-11 08:07 - 00000000 ____D C:\ProgramData\McAfee
2016-02-17 16:57 - 2015-11-11 08:07 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-02-17 16:50 - 2015-11-11 08:51 - 00000000 ____D C:\Users\Gunther
2016-02-17 16:42 - 2015-11-11 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-17 16:33 - 2015-08-18 06:27 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-02-17 16:27 - 2015-11-11 08:53 - 00000000 ____D C:\ProgramData\SetupTPDriver
2016-02-17 16:25 - 2015-11-11 08:50 - 00000000 ____D C:\ProgramData\USBChargerPlus
2016-02-02 23:47 - 2015-08-18 06:34 - 00828920 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-02-02 23:47 - 2015-08-18 06:34 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-02-18 11:26 - 2012-04-12 14:25 - 0539136 _____ (Microsoft Corporation) C:\Program Files (x86)\spider.exe
2016-02-17 16:27 - 2016-03-02 17:35 - 0000165 _____ () C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Roaming\sp_data.sys
2016-02-21 15:38 - 2016-02-21 15:45 - 0000017 ____H () C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\19720201.dat
2016-03-02 09:33 - 2016-03-02 09:33 - 0002829 _____ () C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\recently-used.xbel
2015-11-11 07:51 - 2015-11-11 07:51 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-01-26 09:02 - 2016-01-26 09:02 - 0010346 _____ () C:\ProgramData\regid.1996-09.com.picotech_{d03e5488-efee-4362-98cf-72f093b918f0}.swidtag

==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-03-02 16:13

==================== Ende von FRST.txt ============================

jetzt noch Addition.txt:

Code:

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:02-03-2016
durchgeführt von Gunther (2016-03-02 17:39:16)
Gestartet von C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen
Windows 10 Home (X64) (2016-02-17 15:23:58)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2421830386-3516612503-909366600-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2421830386-3516612503-909366600-503 - Limited - Disabled)
Gast (S-1-5-21-2421830386-3516612503-909366600-501 - Limited - Disabled)
Gunther (S-1-5-21-2421830386-3516612503-909366600-1001 - Administrator - Enabled) => C:\Users\Gunther.DESKTOP-L5KOO87

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20059 - Adobe Systems Incorporated)
ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.6 - ASUS)
ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.5 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.5 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
Atmel USB (HKLM-x32\...\{E8F8861D-98E0-43FF-9E48-AC236CC3BE4E}) (Version: 10.6 - Atmel)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.105 - ICEpower a/s)
Avast SecureLine for Asustek (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.239.3 - AVAST Software)
BASCOM-AVR (HKLM-x32\...\{47F94730-ABD2-47F6-920E-EA8CDB6DD0C6}_is1) (Version: 2.0.7.5 - MCS Electronics)
Command & Conquer™ Red Alert, Counterstrike and The Aftermath (HKLM-x32\...\{B9A7CCBE-48F7-4B3E-BD20-76ADDD4DC69F}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Corel Applications (HKLM-x32\...\Corel Applications) (Version:  - )
DesignCAD 22 (HKLM-x32\...\{C5C61F02-1453-48A1-947E-8BC9F6812F8E}) (Version: 22.0.0 - IMSIDesign)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.)
DVBViewer Pro (HKLM-x32\...\DVBViewer Pro_is1) (Version: 5.5.2.0 - CM&V)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Evernote v. 5.8.6 (HKLM-x32\...\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}) (Version: 5.8.6.7519 - Evernote Corp.)
Fugawi 4.5 (HKLM-x32\...\Fugawi45_is1) (Version: 4.5 - Northport Systems Inc.)
Fugawi Google Earth Plug-in Version 1.1.0.4 (HKLM-x32\...\Fugawi45_GE_is1) (Version: 4.5 - Northport Systems Inc.)
FugVS2005 (HKLM-x32\...\{0C8364B1-AFD8-45B7-ACE8-B76113B6C418}) (Version: 1.0.0 - Northport Systems Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Inkscape 0.91 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.91 - inkscape.org)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4300 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 73 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JLink OB CDC Driver Package (HKLM\...\{CD0E9FFE-70DD-47E3-A7A5-750E9DE6F40B}) (Version: 1.2.1 - SEGGER)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden
LAV Filters 0.67 (HKLM-x32\...\lavfilters_is1) (Version: 0.67 - Hendrik Leppkes)
LogView V2 (HKLM-x32\...\LogView V2) (Version: LogView V2 2 - LogView.info - D.Schmidt / H.Hemmecke)
LogView V2 2 (HKU\S-1-5-21-2421830386-3516612503-909366600-1001\...\LogView V2 2) (Version: 2 - LogView.info)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Flight Simulator 2004 - Das Jahrhundert der Luftfahrt (HKLM-x32\...\Flight Simulator 9.0) (Version: 9.0 - Microsoft)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Shell (Isolated) - ENU (HKLM-x32\...\{D64B6984-242F-32BC-B008-752806E5FC44}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 44.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2 - Mozilla)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.7 - F.J. Wechselberger)
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
NVIDIA Graphics Driver 353.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.84 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.11.5.17432 - Electronic Arts, Inc.)
Paint Shop Pro 5.01 (HKLM-x32\...\Paint Shop Pro 5.01) (Version:  - )
Pico Technology Beta SDK 64-bit (HKLM-x32\...\{da5e6d88-b17c-44cb-a5f9-bf1b5948aef8}) (Version: 10.6.11.23 - Pico Technology Ltd)
Pico Technology Beta SDK 64-bit (Version: 10.6.11.23 - Pico Technology Ltd) Hidden
PicoScope 6 (HKLM-x32\...\{fe3cc74a-a370-4be1-8daf-90355086e1f4}) (Version: 6.11.10 - Pico Technology)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31213 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.2 - VideoLAN)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.2.524 - ASUS Cloud Corporation)
WestwoodChat (HKLM-x32\...\{7CAE6A67-AF7B-4A6A-8705-8AFACA45BB60}) (Version: 1.0.0.0 - WestwoodChat)
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.16 - WildTangent)
Windows-Treiberpaket - ASUS (ATP) Mouse  (06/17/2015 6.0.0.66) (HKLM\...\1EFB54678773735560B565BE7FA6F2BCC557EE21) (Version: 06/17/2015 6.0.0.66 - ASUS)
Windows-Treiberpaket - Segger (jlink_ob_x64) USB  (03/13/2012 2.6.6.2) (HKLM\...\6D4C34D12E9233ABADF9D04ADF9E288A7ECF3B5B) (Version: 03/13/2012 2.6.6.2 - Segger)
Windows-Treiberpaket - SEGGER (usbser) Ports  (01/25/2012 6.0.2600.4) (HKLM\...\BD6BF8BBF7BE0D0091163F649A1A423B7EB9D4F1) (Version: 01/25/2012 6.0.2600.4 - SEGGER)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
WPS Office for ASUS (HKLM-x32\...\Kingsoft Office) (Version: 9.1.0.4947 - Kingsoft Corp.)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2421830386-3516612503-909366600-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Gunther.DESKTOP-L5KOO87\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0F71139B-44DA-4814-95B3-36544058B19C} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] ()
Task: {16C0F2CB-05FF-42DC-B079-DCDC8E771142} - System32\Tasks\WpsUpdateTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {1835ADCA-CCD1-45A9-8199-301FFD8793C2} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.)
Task: {265A3230-80C1-46DE-871D-6D0FE4A72A99} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-18] (Google Inc.)
Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.)
Task: {37600127-75F6-4D0E-AB73-1557C66DB28E} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {402CA532-759F-4D1B-A63F-7B136F42AC1D} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
Task: {42DDF692-C8FF-4705-ABD1-EF4E97066915} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-08-23] (AsusTek)
Task: {47B485D9-1AC5-4DE9-BEE0-A56921B2021A} - System32\Tasks\WpsNotifyTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {766602FE-43BF-40EE-8B15-EFA43F15F9BA} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-02-18] (Microsoft Corporation)
Task: {80875153-D0CA-4A0A-9947-BCF3BF2007D0} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-08-12] ()
Task: {80C44CD8-38C9-488D-8935-B27061176C6C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {8EBD672F-3CE9-4F4F-AE48-C0C1AB17EAF5} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {9DD4AD4D-DC0D-4826-B61A-46025A6F398C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-18] (Google Inc.)
Task: {A9871C1C-7FA9-4094-9760-69F1EA4F5C91} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS)
Task: {AC08783D-22E1-4CB5-9FAE-8A7CF7326A9B} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.)
Task: {AFA1BF32-F765-406A-AF10-1B2967A4442B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-07-29] (Realtek Semiconductor)
Task: {CC5EAE02-3FB5-4F7A-B4D4-B55F51724A9E} - System32\Tasks\{FCC43C23-C686-4530-BB4D-97C7E689F677} => pcalua.exe -a C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\avrispmkii_libusb-win32_1.2.1.0\avrispmkii_libusb-win32_1.2.1.0\installer_x86.exe -d C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Elektronik\avrispmkii_libusb-win32_1.2.1.0\avrispmkii_libusb-win32_1.2.1.0
Task: {DEA915F7-74D4-4B8F-BABD-86723BDCC2B1} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-07-29] (Realtek Semiconductor)
Task: {DEE7A683-A2E0-4371-B9CA-3A7A637B2562} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2016-03-02] (AVAST Software)
Task: {F25573CF-40E1-4DE9-8EA5-391037769186} - System32\Tasks\DriverMaxAgent => C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\WpsNotifyTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe
Task: C:\Windows\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-18 06:25 - 2015-07-15 03:04 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll
2015-11-11 07:48 - 2015-08-07 18:18 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-05-19 10:11 - 2015-05-19 10:11 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2016-02-18 16:28 - 2015-08-11 10:14 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll
2016-03-02 17:26 - 2016-03-02 17:26 - 00465088 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-02-18 16:29 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\System32\CoreUIComponents.dll
2016-02-18 16:28 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-10-09 10:13 - 2015-10-06 10:03 - 00395368 _____ () C:\Windows\system32\igfxTray.exe
2016-02-18 16:29 - 2015-11-25 05:20 - 06569472 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-02-18 16:29 - 2015-11-25 05:17 - 00471040 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-02-18 16:29 - 2015-11-25 05:17 - 01808384 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-02-18 16:29 - 2015-09-17 06:43 - 02274816 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-05-31 17:15 - 2015-05-31 17:15 - 00063272 _____ () C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe
2015-07-08 23:18 - 2015-07-08 23:18 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kpcengine.2.3.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-11-11 07:48 - 2015-07-24 05:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 01016832 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00028160 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00029696 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00256000 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00266240 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00346112 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2016-02-18 10:45 - 2016-02-18 10:45 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2016-03-02 17:26 - 2016-03-02 17:26 - 38907672 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll
2015-08-07 02:09 - 2015-08-07 02:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-07-10 12:04 - 2015-07-10 12:02 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2421830386-3516612503-909366600-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\asus\wallpapers\asus.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{DF8AD133-C2FF-4C30-8618-E3E9B17D5499}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe
FirewallRules: [{985BE3A6-760C-48B6-8274-D904C621EF53}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe
FirewallRules: [{4B62578A-269D-4C39-AC91-85875738831E}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{EDD1EEA3-DAF2-4D8A-A24F-D306AC1A08C5}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{FFC3D9CF-365E-482F-8901-BE3E08697A66}] => (Allow) C:\Program Files (x86)\SprgFiles\SprgFiles.exe
FirewallRules: [{C6CC372F-7162-40B1-833D-CBDA05E5BFE2}] => (Allow) C:\Program Files (x86)\SprgFiles\SprgFiles.exe
FirewallRules: [{5005B685-36C4-4F40-B872-2BEECCD325C4}] => (Allow) C:\Program Files (x86)\SprgFiles\downloader.exe
FirewallRules: [{82AFB31B-8E78-4BDA-B2B8-80A1E9C2D4C6}] => (Allow) C:\Program Files (x86)\SprgFiles\downloader.exe
FirewallRules: [{32E42A9B-AFB8-485E-B1F5-69629C55AAAF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EC13B03C-CF42-42D9-A8CE-4299E35BFD6C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Wiederherstellungspunkte =========================

23-02-2016 16:45:46 Installed AVRStudio4
25-02-2016 09:05:02 DesignCAD 22 wurde installiert.
26-02-2016 13:24:18 Removed Microsoft Office
29-02-2016 16:18:41 Installed Inkscape 0.91
02-03-2016 11:23:36 DirectX wurde installiert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (03/02/2016 05:37:04 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

Error: (03/02/2016 05:32:25 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10603.192) TYPE: ERROR FUNC: rsrc_app_start_app_in_active_user_session FILE: rsrc_app.c LINE: 328 TIME: 1116351 ms

Unable to start capture program. Error = 2

Error: (03/02/2016 05:30:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm FRST64.exe, Version 2.3.2016.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: b4c

Startzeit: 01d174a07e5d8fb2

Beendigungszeit: 21

Anwendungspfad: C:\Users\Gunther.DESKTOP-L5KOO87\Desktop\Infektionen\FRST64.exe

Berichts-ID: 04aaf4e5-e094-11e5-9be4-2c56dc295e0b

Vollständiger Name des fehlerhaften Pakets:

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (03/02/2016 04:06:43 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (03/02/2016 04:06:09 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (03/02/2016 11:23:43 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (03/02/2016 11:11:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: TSLauncher.EXE, Version: 1.0.0.1, Zeitstempel: 0x5035adcc
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x5d301d58
ID des fehlerhaften Prozesses: 0x23bc
Startzeit der fehlerhaften Anwendung: 0xTSLauncher.EXE0
Pfad der fehlerhaften Anwendung: TSLauncher.EXE1
Pfad des fehlerhaften Moduls: TSLauncher.EXE2
Berichtskennung: TSLauncher.EXE3
Vollständiger Name des fehlerhaften Pakets: TSLauncher.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: TSLauncher.EXE5

Error: (03/02/2016 08:29:34 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (7688) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (03/02/2016 08:29:34 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (7688) Der Versuch, die Datei "C:\Windows\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (03/02/2016 08:29:24 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (7688) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.


Systemfehler:
=============
Error: (03/02/2016 05:36:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee CSP Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (03/02/2016 05:33:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "TVicPort" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (03/02/2016 05:32:32 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-L5KOO87)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (03/02/2016 05:32:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/02/2016 05:32:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/02/2016 05:32:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/02/2016 05:32:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/02/2016 05:26:01 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (03/02/2016 05:25:41 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (03/02/2016 05:25:38 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Prozentuale Nutzung des RAM: 26%
Installierter physikalischer RAM: 8094.39 MB
Verfügbarer physikalischer RAM: 5936.97 MB
Summe virtueller Speicher: 9374.39 MB
Verfügbarer virtueller Speicher: 7195.3 MB

==================== Laufwerke ================================

Drive c: (OS) (Fixed) (Total:185.55 GB) (Free:118.44 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (DATA) (Fixed) (Total:279.46 GB) (Free:249.2 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 6110F75F)

Partition: GPT.

==================== Ende von Addition.txt ============================

Zum Schluss noch - ich habe natürlich nicht gemeint, dass Du oder Euer Team mit den Daten Missbrauch treiben werdet, sondern Leute, die die Textfiles hier lesen können. Ich weiß ja nicht, was da für Daten drinstecken, die vielleicht missbräuchlich von Außenstehenden benutzt werden könnten. Aber danke, dass Du mich da beruhigt hast. Schließlich bin ich (leider) nur ein einfacher PC-Nutzer...
Vielen Dank nochmal und viele Grüße
Gunther

burningice 03.03.2016 18:24

ja ich weiß schon, aber da gilt das selbe :) Alle anderen Leute sehen ja nicht mehr, als ich hier was du postest.

Die Logs von deinem Rechner sehen jetzt für mich sauber aus: Herzlichen Glückwunsch - du bist Clean :daumenhoc



Zum Schluss müssen wir noch etwas aufräumen und ich gebe dir ein paar Hinweise mit auf den Weg:

Entfernen der verwendeten Tools

Die Reihenfolge ist hier entscheidend.
  1. Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
  2. Falls Combofix benutzt wurde:
    1. Windowstaste + R > Combofix /Uninstall (eingeben) > OK
    2. Alternative: Combofix.exe in uninstall.exe umbenennen und starten
    Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
  3. Downloade Dir bitte auf jeden Fall DelFix auf deinen Desktop:
    • Schließe alle offenen Programme.
    • Starte die delfix.exe mit einem Doppelklick.
    • Setze vor jede Funktion ein Häkchen.
    • Klicke auf Start.
    Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
  4. Starte deinen Rechner abschließend neu.
Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.
http://filepony.de/icon/tiny/malware...ti_malware.png Malwarebytes Anti-Malware und http://filepony.de/icon/tiny/eset_online_scanner.pngESET kannst du als Ergänzung zu deiner bestehenden Antivirus-Lösung auf dem Computer belassen und deinen Computer damit regelmäßig scannen.



Persönliche Empfehlungen

Aktiviere unbedingt die automatischen Updates von Windows und stelle auch sicher, dass diese regelmäßig installiert werden.


Verwende immer ein Antivirenprogramm und stelle sicher, dass es sich regelmäßig aktualisiert (sollte Standard sein).
Meine Empfehlungen dazu:
Aktiviere immer eine Firewall - die in Windows integrierte reicht dazu vollkommen aus.


Verwende nach Möglichkeit nicht den Internet Explorer oder unter Windows 10 den Browser Edge, da diese Browser wegen ihrer großen Verbreitung sehr häufig Ziel von Angriffen sind. Trotzdem achte darauf, dass auch dieser Browser durch die Windows Updates aktuell gehalten wird.
Meine Empfehlungen dazu:
Dazu gibt es einige praktische Add-ons:

Halte immer deine Plug-ins und Software aktuell, am wichtigsten ist:Tipp: Deinstalliere am besten Flash Player und Java komplett, häufig benötigt man diese Anwendungen überhaupt nicht mehr.


Du kannst dir http://filepony.de/icon/tiny/malware...ti_exploit.pngMalwarebytes Anti-Exploit installieren. Es schützt gegen viele aktuelle Sicherheitslücken und erhöht so deine Sicherheit.


Tipps, um dein System sicherer zu machen

Pass auf, wenn du dir Software aus dem Internet herunterlädst! Viele Portale im Internet wie Chip, Softonic und Sourceforge versuchen häufig, dir Adware oder sonstige Downloader mit unerwünschten Programmen unterzujubeln. Downloade nach Möglichkeit immer direkt von der Herstellerseite oder alternativ von einem sauberen Download-Portal, wie von FilePony.de.
Lese dir dazu auch folgenden Artikel durch: CHIP-Installer - was ist das? - Anleitungen

Selbst wenn du ein Programm von einer seriösen Quelle heruntergeladen hast, ist das keine Garantie, dass dein Programm nicht doch versucht, unerwünschte Änderungen an deinem Computer vorzunehmen. So versuchen immer mehr Programme, durch modifizierte Installationsroutinen unerwünschte Programme mit auf deinen PC zu schleusen. Das klappt leider auch häufig, weil viele Anwender nicht lesen, was auf dem Bildschirm steht und stattdessen schnell durchklicken.
Deshalb: Wenn du ein Programm installierst, wähle immer die benutzerdefinierte Installation und schaue, was du da gerade eigentlich alles mit einem Klick auf "Ok" oder "Weiter" abnickst - entferne entsprechend die Haken bei Dingen, die du nicht möchtest. Wer lesen kann, ist klar im Vorteil!

Ein Tool, welches dich dabei gut unterstützen kann, ist: http://filepony.de/icon/tiny/unchecky.pngUnchecky. Dieses überwacht im Hintergrund Installationsprozesse und hakt automatisch nervige Adwarekomponenten wie Toolbars ab. Falls man etwas übersieht, warnt noch ein Pop-up, bevor man fortfahren kann.


Benutze keine Optimizer, Cleaner oder sonstige SpeedUp Wunder, da diese Tools fast nie einen auch nur messbaren Performancegewinn bringen.
Du kannst jedoch regelmäßig auf deinem PC die Datenträgerbereinigung ausführen, so gewinnst du belegten Speicherplatz zurück.


Ändere regelmäßig deine Passwörter! Zudem musst du sichere Passwörter benutzen, das bedeutet: mindestens 8 Zeichen, Groß- und Kleinbuchstaben und Sonderzeichen.
Ganz wichtig: benutze pro Account ein anderes Passwort!
Tipp: Benutze einen Spruch, den du dir leicht merken kannst, als Hilfe für ein Passwort! Zum Beispiel: Der Himmel ist blau und wenn es regnet?-grau ==> DHibuwer?-grau


Unterstütze uns und empfiehl uns weiter

Du kennst Freunde und Bekannte, die Probleme mit ihrem Computer haben? Schick sie doch zu uns auf das Trojaner Board, wir helfen gerne :daumenhoc

Wenn du uns mit einer Spende unterstützen möchtest, freuen wir uns sehr und dies kannst du hier tun: http://www.trojaner-board.de/79994-s...ndenkonto.html Herzlichen Dank dafür :party:

Wir machen diese Tätigkeit hier freiwillig, darum freue ich mich besonders über ein kurzes Danke wenn du mit mir zufrieden warest oder sonst über Verbesserungsvorschläge - das kannst du gerne hier machen :)

Besuche und like unsere Facebook-Seite! http://3.bp.blogspot.com/--h4eLCX9kl...ike-symbol.png


:abklatsch: Danke für deine Mitarbeit und alles Gute! :abklatsch:

Bitte gib mir Bescheid, wenn du das alles gelesen hast und du keine weiteren Fragen mehr hast, damit ich dieses Thema aus meinen Abos löschen kann.

gzielos 04.03.2016 09:01

Hallo Rafael,
ja, ich habe alles gelesen und soweit wie möglich befolgt. Ich habe ebenfalls den Eindruck, dass die beschriebenen Plagegeister jetzt verschwunden sind. Außerdem habe ich eine Menge gelernt. Vielen Dank dafür.
Eine Spende von 30€ habe ich überwiesen, ich hoffe, dass sie richtig angekommen ist. Dir insbesondere nochmals vielen Dank für Deine Mühe und Geduld. Auch wenn der Kontakt zu Dir angenehm war, hoffe ich, dass ich das nicht nochmal brauche - Du verstehst schon...
Viele Grüße
Gunther

burningice 05.03.2016 14:53

Klar doch ;D

Herzlichen Dank! Alles Gute!


Alle Zeitangaben in WEZ +1. Es ist jetzt 01:32 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132