| |
| |||||||
Log-Analyse und Auswertung: UCGuard eingefangen, lässt sich nicht entfernenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
20.11.2016, 16:43
| #1 |
 |  UCGuard eingefangen, lässt sich nicht entfernen Hallo, mein neuer Rechner hat sich UCGuard eingefangen und ich werde es nicht mehr los. Ich bin nach Euer Erstanleitung vorgegangen, folgend die Logfiles in je einem Beitrag, da sie zu groß sind. h bedanke mich schon einmal vorab für Eure Hilfe. LG, Daniel |
|
20.11.2016, 16:46
| #2 |
| | UCGuard eingefangen, lässt sich nicht entfernen FRST im ANhang, ist zu groß
__________________Addition: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-11-2016
durchgeführt von Daniel (20-11-2016 16:31:53)
Gestartet von C:\Users\Daniel\Desktop\Malware
Windows 10 Home Version 1607 (X64) (2016-11-13 18:29:26)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3857371912-3165755019-847613773-500 - Administrator - Disabled)
Daniel (S-1-5-21-3857371912-3165755019-847613773-1001 - Administrator - Enabled) => C:\Users\Daniel
DefaultAccount (S-1-5-21-3857371912-3165755019-847613773-503 - Limited - Disabled)
Gast (S-1-5-21-3857371912-3165755019-847613773-501 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 8.0 - PainteR)
Alt.Binz 0.39.4 (HKLM-x32\...\Alt.Binz) (Version: 0.39.4 - Rdl)
Ansel (Version: 375.70 - NVIDIA Corporation) Hidden
ASUS GIFTBOX (HKLM-x32\...\ASUS GIFTBOX) (Version: 7.1.13 - ASUSTek Computer Inc)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.15.0003 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.112 - ICEpower a/s)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brackets (HKLM-x32\...\{0ED76FF2-9370-4437-8C51-39F27DD0361B}) (Version: 1.8 - brackets.io)
CloudConvert (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\CloudConvert) (Version: - Lunaweb Ltd.)
Combined Community Codec Pack 64bit 2015-10-18 (HKLM\...\Combined Community Codec Pack 64bit_is1) (Version: 2015.10.19.0 - CCCP Project)
Dashlane (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Dashlane) (Version: 4.6.3.20593 - Dashlane SAS)
david® Client (HKLM-x32\...\david® Client) (Version: 12.00a - Tobit.Software)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.3 - ASUSTek Computer Inc.)
Dropbox 25 GB (HKLM-x32\...\{736A97C6-8766-3699-84A9-71736C5E0CE3}) (Version: 3.1.11.0 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.57.1 - Dropbox, Inc.) Hidden
eBay (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\eBay) (Version: - eBay Inc.)
EVE Online (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\{975d25d5-e53d-4afa-9ec8-db6e8b9cfe94}) (Version: 1.0.0 - CCP)
FileZilla Client 3.22.2.2 (HKLM-x32\...\FileZilla Client) (Version: 3.22.2.2 - Tim Kosse)
Foxit PhantomPDF (HKLM-x32\...\{39263796-F296-43AF-909C-FCF99592BAC4}) (Version: 7.2.52.1209 - Foxit Software Inc.)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.14) (Version: 9.14 - Artifex Software Inc.)
IMDb (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\IMDb) (Version: - IMDb.com, Inc.)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.11 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10604.207 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1169 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4364 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{C7CD6D54-26AF-4D93-B06F-D81ACE8624CB}) (Version: 6.0.40.0 - Intel Corporation)
Intel(R) WiDi Software Asset Manager (x32 Version: 1.1.347 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{64FD4757-7186-4F12-9AA8-5EE809CAB282}) (Version: 17.1.1532.1814 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{4c8b7360-62a2-4339-b745-41323055d0bb}) (Version: 18.20.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.7466.2038 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 7 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 3.7.5.0 - Duodian Technology Co. Ltd.)
NVIDIA GeForce Experience 3.1.0.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.0.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.70 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Oracle VM VirtualBox 4.3.12_ZZZZ (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation)
QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10143.21278 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7647 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0330 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
Solid State Doctor - Asus Edition 3.1.3.9 (HKLM-x32\...\{63327DD6-398B-480F-838D-B7C55E82B1D4}_is1) (Version: 3.1.3.9 - LC Technology International, Inc.)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.70155 Beta - TeamViewer)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.11.570 - ASUS Cloud Corporation)
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation)
Windows Driver Package - ASUS (AsusSGDrv) Mouse (11/11/2015 8.0.0.23) (HKLM\...\FF0137EA2940E916D51DA702B6425126CC7C89BF) (Version: 11/11/2015 8.0.0.23 - ASUS)
Windows Driver Package - BigNox Corporation VBoxUSBMon System (09/16/2015 4.3.12) (HKLM\...\39F54A37125643D2E1E90FA7D81F36ACC9441510) (Version: 09/16/2015 4.3.12 - BigNox Corporation)
Windows Driver Package - BigNox Corporation XQHDrv System (09/16/2015 4.3.12) (HKLM\...\0147813640F7AF69F569581EE672B6BE1E71798E) (Version: 09/16/2015 4.3.12 - BigNox Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.1.0 - ASUS)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0100E7FD-5EB7-492E-B167-91E916F30B1F} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {0E1523E6-CAB2-485B-8AC9-AEFC1EB450E4} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {157421A9-FB3C-4AFA-9FFF-512C01F8711F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
Task: {17781704-2916-4310-864A-245F0C8CEAB8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-11] (Google Inc.)
Task: {37D5E902-2B4C-4199-9978-152D48BB5FB3} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-16] (Intel Corporation)
Task: {3984F180-3CD4-4C54-B4D0-E2BB4D30188E} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-16] (Intel Corporation)
Task: {39CD21EB-35CB-4512-AA79-269F27FC6E2F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-11] (Dropbox, Inc.)
Task: {40C16C89-5B22-4B8C-9C81-473B802B8152} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-11] (Dropbox, Inc.)
Task: {4946EDF4-0687-4D4B-B641-4317E441D4EC} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {4B461FB9-85A6-46DA-84CC-4629C116A3F6} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-18] (AsusTek)
Task: {4D0CA996-758A-498D-A879-F2E2DD79379F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {55B98368-E604-4474-AEB8-DBBC8D7AF48F} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2015-06-05] (Intel Corporation)
Task: {5EFE99ED-0609-4B85-8F0C-B0FB931A558A} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {60BE0F07-FFC3-41B5-882F-2E324A7B65D6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {61EC3082-1113-4C52-84F7-06C10BD03CDE} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {6430CC72-EBF8-4F8C-AF87-2CCE1878ED23} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2016-01-19] (ASUSTek Computer Inc.)
Task: {719AF2B3-0F3C-442A-AD40-47FF278E6E21} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-11-02] (Realtek Semiconductor)
Task: {76889A72-0460-4039-BE04-868F62E0B8AD} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {89E300DF-43FF-4939-91CB-45285F8EE911} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {9631D532-5E87-47F4-82F5-55C22C4F6F19} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-02] (Realtek Semiconductor)
Task: {9AEAF006-2239-41F4-B7D2-B90EF1E161F2} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {A2AB61D5-D872-47C1-967A-EAD1E3C91A7B} - System32\Tasks\ASUS\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [2016-09-14] (ASUSTek Computer Inc)
Task: {AA1FEAD2-6BB6-4C28-9138-869379C33D41} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {B424492A-A56B-4EFB-857A-175905372003} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {B76BD0CD-871B-4C3B-B89C-51B60F6C0651} - System32\Tasks\AdobeAAMUpdater-1.0-DANIEL-LAPPI-Daniel => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {C1914B36-E14E-4413-889B-0CF9D246EC90} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-10-25] (NVIDIA Corporation)
Task: {D6B9EC85-29B4-43F8-9C7E-02C645225585} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2016-04-04] ()
Task: {D9180713-B6C3-4854-9560-B3F647A70393} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-11] (Google Inc.)
Task: {DEAB7728-9873-4322-B061-7A6EB4875CC6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-10-25] (NVIDIA Corporation)
Task: {E8F5CCD2-280E-42AB-A0FA-514491C2BB9E} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2016-02-23] (ASUS)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-12 12:06 - 2006-07-19 11:01 - 00099840 _____ () C:\WINDOWS\IMGMSGMO.dll
2015-05-19 09:11 - 2015-05-19 09:11 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2016-11-12 13:47 - 2016-10-25 21:22 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-11-13 19:38 - 2016-11-13 19:38 - 01864384 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll
2015-11-19 15:46 - 2015-11-19 15:46 - 01201344 _____ () C:\Program Files (x86)\Foxit PhantomPDF\plugins\FXCrypto64.dll
2016-09-21 21:16 - 2016-09-21 21:16 - 00230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-20 14:42 - 2016-11-20 14:42 - 00146944 _____ () C:\Users\Daniel\AppData\Roaming\Chihupyberjesp\Suzaph.dll
2016-11-11 14:09 - 2016-11-10 14:52 - 00536960 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe
2016-11-17 13:45 - 2016-11-17 13:45 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-11-17 13:45 - 2016-11-17 13:45 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-17 13:45 - 2016-11-17 13:45 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-11-20 14:42 - 2016-11-20 14:42 - 00276992 _____ () c:\program files (x86)\drabapythebution\whtcore.dll
2016-11-12 13:47 - 2016-10-25 21:21 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00029184 _____ () C:\Program Files (x86)\ASUS\Splendid\VideoEnhance.dll
2016-11-12 13:47 - 2016-10-25 20:57 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-12 13:47 - 2016-10-25 20:57 - 02808256 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-12 13:47 - 2016-10-25 21:21 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-12 13:47 - 2016-10-25 21:21 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-12 13:47 - 2016-10-25 20:57 - 00246840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-09-14 16:06 - 2016-09-14 16:06 - 01481728 _____ () C:\Program Files (x86)\ASUS\Giftbox\libglesv2.dll
2016-09-14 16:06 - 2016-09-14 16:06 - 00073728 _____ () C:\Program Files (x86)\ASUS\Giftbox\libegl.dll
2016-09-14 16:06 - 2016-09-14 16:06 - 00239616 _____ () C:\Program Files (x86)\ASUS\Giftbox\node_modules\appcloud-native-utils\anu.node
2016-11-13 19:38 - 2016-11-13 19:38 - 01383616 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll
2016-11-13 19:38 - 2016-11-13 19:38 - 00118976 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00346496 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebugDll_win32.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00441216 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebug.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00471424 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWUtils.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 63181696 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWExternLib.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00292736 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib_win.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 06322048 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWData.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 07602560 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWApplication.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 13827456 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 02285440 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLibData.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00334208 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\Kwift_DP.4.6.3.20593.dll
2016-11-12 13:47 - 2016-10-25 21:21 - 60817344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2015-09-18 23:34 - 2015-09-18 23:34 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\localhost -> localhost
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-10-30 08:24 - 2016-11-20 16:31 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\asus\wallpapers\asus.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{503EB958-CC8A-41C0-8A3E-CD9F338E4E67}D:\spiele\doom 2016\doomx64vk.exe] => (Allow) D:\spiele\doom 2016\doomx64vk.exe
FirewallRules: [TCP Query User{D809933E-A172-49FB-995F-F883B52972CF}D:\spiele\doom 2016\doomx64vk.exe] => (Allow) D:\spiele\doom 2016\doomx64vk.exe
FirewallRules: [UDP Query User{2A25E36B-69B2-4D01-AB8B-C830637529EC}D:\spiele\quantum break\dx11\quantumbreak.exe] => (Allow) D:\spiele\quantum break\dx11\quantumbreak.exe
FirewallRules: [TCP Query User{25F46325-0B53-4F7F-80F7-4BD4D062C4B3}D:\spiele\quantum break\dx11\quantumbreak.exe] => (Allow) D:\spiele\quantum break\dx11\quantumbreak.exe
FirewallRules: [{F5133C28-3CB8-4EE4-A07E-C34DD8E95323}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{453BA9F9-C703-4CF5-8737-5A793CFED059}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{25F5B39B-92A2-4375-BFC0-89C1EA40780D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{743CD073-70F0-4A5D-913A-F0CA3164A708}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{AD2CBCD9-C4DD-4A90-AC0E-6F4DBDC646E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [UDP Query User{BCB25C4D-2B2A-41F9-9979-EE76CF72078F}D:\spiele\quantum break\game\dx11\quantumbreak.exe] => (Block) D:\spiele\quantum break\game\dx11\quantumbreak.exe
FirewallRules: [TCP Query User{A57BA6F8-8831-4A8E-867A-BC74B259C417}D:\spiele\quantum break\game\dx11\quantumbreak.exe] => (Block) D:\spiele\quantum break\game\dx11\quantumbreak.exe
FirewallRules: [UDP Query User{A31DFB79-2FE4-4E3E-9650-F1A34C62505E}D:\spiele\call of duty infinite warfare\iw7_ship.exe] => (Allow) D:\spiele\call of duty infinite warfare\iw7_ship.exe
FirewallRules: [TCP Query User{F63227DB-3CB4-46DD-A82B-3F40B2D7800F}D:\spiele\call of duty infinite warfare\iw7_ship.exe] => (Allow) D:\spiele\call of duty infinite warfare\iw7_ship.exe
FirewallRules: [{DDA3959D-70CC-4EAC-A008-C55E954F3137}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{97471493-F33B-4D83-9779-7816B3A596CB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A6D932F2-78BF-45F3-A0C2-1DD9C5341971}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B51601E2-B10D-4327-AE6C-4F475F92CAD4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{758D054B-9FA2-42FE-B36D-18B365AD32D0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{6EE4C259-DFB6-426B-AFC2-9FF91C894185}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{F26F6E94-0E76-4927-8B21-82EBF142722D}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{B8E0DF08-7602-4E3C-9AE1-71CA7284E838}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiAppOld.exe
FirewallRules: [{A3D1C3B4-C2E7-42E5-8AC6-BE34B232690C}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\Next\WirelessDisplay.exe
FirewallRules: [{1795864C-4439-43F8-B2C4-C9E0A204FAF9}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\SmartAgentTest.exe
FirewallRules: [{A32D5548-A2CB-434C-8105-0A59A2F9F3A9}] => (Allow) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
FirewallRules: [TCP Query User{FBBAF9E3-A66A-4E20-9949-DAF8D946BCB7}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [UDP Query User{DA40D239-21AF-4415-A204-2A7AB1901575}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [{1DB6D851-B186-4757-8300-7EBB30165DEC}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{3396AE47-66E6-4A83-9F42-FD66694449D9}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{3C29DC8E-3A5F-4A55-A25E-4A4A9D3ED040}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{3A6534AB-FB52-46CF-A381-AE00ECFE9E37}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{98F68D9E-F81A-4A6C-BB89-92AE473DA9C1}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{0270A14B-40C4-4A03-AF3C-7E25241FCBA2}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{E218D7BE-DAB5-4910-80AA-C9BD5CCE3CB4}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{813BB494-B83B-4E3C-80BC-01822CB188A5}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{676D32BF-7EAD-4A31-AAAF-50015C05FD8C}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{3EC93D62-3AB7-4113-BFFF-2FCDBA9809CA}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{0080A997-9B04-4755-958B-D6E113E452DB}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{B91952FD-910F-4325-81F2-2128A33C3C08}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{291BE070-7EBE-4402-BC36-488ADF0A4C89}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{30BDA45C-947B-4821-9AE9-51E3CDD35FFD}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{E46AEE8E-83C2-4434-94C2-EDE4ECF6D688}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{900B3700-3C7B-46FC-B8D7-A421D0BFF6FB}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [TCP Query User{82418E8B-5667-415F-9271-82B0DF667A58}C:\users\daniel\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\daniel\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe
FirewallRules: [{864147E3-FE8A-4C75-81A2-AA00EE21E4D9}] => (Allow) D:\Programme\Doid4X\Droid4X\Droid4X.exe
FirewallRules: [{9D103E7C-9743-47A2-BE44-D86F335AEE40}] => (Allow) D:\Programme\Doid4X\Droid4X\download\MiniThunderPlatform.exe
FirewallRules: [{875F23DD-6C4F-4191-901B-0ED554957E6A}] => (Allow) D:\Programme\Doid4X\Droid4X\download\MiniThunderPlatform.exe
FirewallRules: [{D3424DE1-2F8B-4E59-8B8F-B67F7D73BF5A}] => (Allow) C:\Program Files\Oracle\VirtualBox\vboxheadless.exe
FirewallRules: [{435EE6E6-A54F-40A8-B040-EAF8179D637B}] => (Allow) D:\Programme\NoxAppPlayer\Nox\bin\Nox.exe
FirewallRules: [{5B52BD14-569E-4A90-A29A-014CCB2518E7}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{99E1310E-7B55-427D-8794-2C56B6A9EBEE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{E0B1D176-4A9F-46E2-AED4-B7C4AC3F14FC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{24C9F2A4-581E-4CE5-834B-A4B33105C0DB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A0771446-3AC9-4A1C-AF81-E3513657FA9D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{5694C93F-D6E2-4851-BFE4-AE28FDCD58C2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{A11C1B93-6702-47EA-A65F-2E0218427CCA}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [UDP Query User{D82E0C3E-D29A-4EAE-B18A-8653D6499E56}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [TCP Query User{B5A66176-D38C-4320-ABB3-81FD30997C37}D:\spiele\eve\sharedcache\tq\bin\exefile.exe] => (Allow) D:\spiele\eve\sharedcache\tq\bin\exefile.exe
FirewallRules: [UDP Query User{4103919F-0A86-4708-99B5-5985A41CF5E2}D:\spiele\eve\sharedcache\tq\bin\exefile.exe] => (Allow) D:\spiele\eve\sharedcache\tq\bin\exefile.exe
FirewallRules: [{8B281CD7-4698-407C-991D-7EBBF07F04C4}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\is-I4F9A.tmp\download\MiniThunderPlatform.exe
FirewallRules: [{D7393346-0F2D-481C-AAF9-B550BDBBE685}] => (Allow) C:\Program Files (x86)\GreatMaker\MaohaWiFi\MaohaWifiSvr.exe
FirewallRules: [{40FA591D-8DB7-4D1B-9A39-F75E1A0746A2}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
FirewallRules: [{BE526E6B-A01A-4671-8A3D-F44277DEE4F8}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/20/2016 04:26:20 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\daniel\appdata\local\temp\creative cloud uninstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Error: (11/20/2016 04:23:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Adobe CEF Helper.exe, Version: 3.9.1.335, Zeitstempel: 0x580f9487
Name des fehlerhaften Moduls: libcef.dll, Version: 3.2171.2069.0, Zeitstempel: 0x551bdc44
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00444106
ID des fehlerhaften Prozesses: 0x1ed0
Startzeit der fehlerhaften Anwendung: 0x01d2434115fe8ae9
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
Berichtskennung: 38bdbf64-d8e8-421b-a56f-948ffc989879
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (11/20/2016 04:16:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\daniel\appdata\local\temp\creative cloud uninstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Error: (11/20/2016 04:16:16 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\Creative Cloud Uninstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 22 2.8.D.D.9.5.6.0.A.2.1.6.4.F.9.A.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Daniel-Lappi-2.local.
Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.2.105:5353 20 2.8.D.D.9.5.6.0.A.2.1.6.4.F.9.A.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Daniel-Lappi.local.
Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 22 105.2.168.192.in-addr.arpa. PTR Daniel-Lappi-2.local.
Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.2.105:5353 20 105.2.168.192.in-addr.arpa. PTR Daniel-Lappi.local.
Error: (11/20/2016 03:46:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname Daniel-Lappi.local already in use; will try Daniel-Lappi-2.local instead
Error: (11/20/2016 03:46:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 Daniel-Lappi.local. Addr 192.168.2.105
Systemfehler:
=============
Error: (11/20/2016 04:24:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (11/20/2016 04:24:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (11/20/2016 04:24:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (11/20/2016 04:24:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (11/20/2016 04:24:05 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (11/20/2016 04:23:36 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll
Error: (11/20/2016 04:23:36 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll
Error: (11/20/2016 04:23:33 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll
Error: (11/20/2016 04:23:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Security Assist" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/20/2016 04:23:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2016-11-20 14:40:39.731
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-20 14:40:39.729
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-17 14:05:01.079
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-17 14:05:01.078
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-16 22:43:40.743
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-16 22:43:40.742
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-16 22:42:28.866
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-16 22:42:28.865
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-15 19:30:19.816
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-14 20:04:00.813
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Prozentuale Nutzung des RAM: 31%
Installierter physikalischer RAM: 7991.77 MB
Verfügbarer physikalischer RAM: 5495.9 MB
Summe virtueller Speicher: 16695.77 MB
Verfügbarer virtueller Speicher: 14157.13 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:118.48 GB) (Free:51.15 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:654.1 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 05CE14A8)
Partition: GPT.
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: B9613EEF)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
20.11.2016, 16:47
| #3 |
| | UCGuard eingefangen, lässt sich nicht entfernen TDSKiller:
__________________Code:
ATTFilter 16:32:59.0826 0x1ed8 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
16:32:59.0826 0x1ed8 UEFI system
16:33:02.0498 0x1ed8 ============================================================
16:33:02.0498 0x1ed8 Current date / time: 2016/11/20 16:33:02.0498
16:33:02.0514 0x1ed8 SystemInfo:
16:33:02.0514 0x1ed8
16:33:02.0514 0x1ed8 OS Version: 10.0.14393 ServicePack: 0.0
16:33:02.0514 0x1ed8 Product type: Workstation
16:33:02.0514 0x1ed8 ComputerName: DANIEL-LAPPI
16:33:02.0514 0x1ed8 UserName: Daniel
16:33:02.0514 0x1ed8 Windows directory: C:\WINDOWS
16:33:02.0514 0x1ed8 System windows directory: C:\WINDOWS
16:33:02.0514 0x1ed8 Running under WOW64
16:33:02.0514 0x1ed8 Processor architecture: Intel x64
16:33:02.0514 0x1ed8 Number of processors: 8
16:33:02.0514 0x1ed8 Page size: 0x1000
16:33:02.0514 0x1ed8 Boot type: Normal boot
16:33:02.0514 0x1ed8 CodeIntegrityOptions = 0x00000001
16:33:02.0514 0x1ed8 ============================================================
16:33:02.0592 0x1ed8 KLMD registered as C:\WINDOWS\system32\drivers\75996787.sys
16:33:02.0592 0x1ed8 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.447, osProperties = 0x19
16:33:02.0702 0x1ed8 System UUID: {9372FE06-1C65-9260-EEE6-3C057C2C8770}
16:33:03.0045 0x1ed8 Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:33:05.0249 0x1ed8 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:33:05.0264 0x1ed8 ============================================================
16:33:05.0264 0x1ed8 \Device\Harddisk0\DR0:
16:33:05.0264 0x1ed8 GPT partitions:
16:33:05.0264 0x1ed8 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {CD41598A-2540-4229-AF17-868A5CDA974B}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x82000
16:33:05.0264 0x1ed8 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {1162E662-13C6-491E-91A9-0605FD58CDDE}, Name: Microsoft reserved partition, StartLBA 0x82800, BlocksNum 0x8000
16:33:05.0264 0x1ed8 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {5D37B476-4001-49A8-9533-85561738E562}, Name: Basic data partition, StartLBA 0x8A800, BlocksNum 0xECF8000
16:33:05.0264 0x1ed8 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {0D7583BA-D8C8-4EBD-B0BB-A52390F626AA}, Name: Basic data partition, StartLBA 0xED82800, BlocksNum 0xF9800
16:33:05.0264 0x1ed8 MBR partitions:
16:33:05.0264 0x1ed8 \Device\Harddisk1\DR1:
16:33:05.0264 0x1ed8 GPT partitions:
16:33:05.0264 0x1ed8 \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F4FD9FD5-F141-4620-A302-CA878BB39276}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x74706000
16:33:05.0264 0x1ed8 MBR partitions:
16:33:05.0264 0x1ed8 ============================================================
16:33:05.0264 0x1ed8 C: <-> \Device\Harddisk0\DR0\Partition3
16:33:05.0280 0x1ed8 D: <-> \Device\Harddisk1\DR1\Partition1
16:33:05.0280 0x1ed8 ============================================================
16:33:05.0280 0x1ed8 Initialize success
16:33:05.0280 0x1ed8 ============================================================
16:33:07.0358 0x0354 ============================================================
16:33:07.0358 0x0354 Scan started
16:33:07.0358 0x0354 Mode: Manual;
16:33:07.0358 0x0354 ============================================================
16:33:07.0358 0x0354 KSN ping started
16:33:07.0405 0x0354 KSN ping finished: true
16:33:08.0374 0x0354 ================ Scan system memory ========================
16:33:08.0374 0x0354 System memory - ok
16:33:08.0374 0x0354 ================ Scan services =============================
16:33:08.0436 0x0354 1394ohci - ok
16:33:08.0436 0x0354 3ware - ok
16:33:08.0452 0x0354 ACPI - ok
16:33:08.0452 0x0354 AcpiDev - ok
16:33:08.0452 0x0354 acpiex - ok
16:33:08.0452 0x0354 acpipagr - ok
16:33:08.0452 0x0354 AcpiPmi - ok
16:33:08.0468 0x0354 acpitime - ok
16:33:08.0468 0x0354 ADP80XX - ok
16:33:08.0468 0x0354 AFD - ok
16:33:08.0515 0x0354 [ 021D06851E7AFF5C314039DF813608F3, 081B14840F4AD428B4407AA2E639369A45D174D9507BD107F33FE3A94FB8F8EC ] AGSService C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
16:33:08.0546 0x0354 AGSService - ok
16:33:08.0561 0x0354 ahcache - ok
16:33:08.0561 0x0354 [ 50910888109FA9C041D9256541BE70EC, 3E907506E386423DBD8DDCB36FDCE4F2FC2F90A522B24BEF60B8ED05F5A3BD0F ] AiCharger C:\WINDOWS\system32\DRIVERS\AiCharger.sys
16:33:08.0561 0x0354 AiCharger - ok
16:33:08.0577 0x0354 AJRouter - ok
16:33:08.0577 0x0354 ALG - ok
16:33:08.0577 0x0354 AmdK8 - ok
16:33:08.0577 0x0354 AmdPPM - ok
16:33:08.0593 0x0354 amdsata - ok
16:33:08.0593 0x0354 amdsbs - ok
16:33:08.0593 0x0354 amdxata - ok
16:33:08.0593 0x0354 AppID - ok
16:33:08.0593 0x0354 AppIDSvc - ok
16:33:08.0608 0x0354 Appinfo - ok
16:33:08.0608 0x0354 applockerfltr - ok
16:33:08.0608 0x0354 AppReadiness - ok
16:33:08.0608 0x0354 AppXSvc - ok
16:33:08.0608 0x0354 arcsas - ok
16:33:08.0624 0x0354 [ 16829ED03B336F1B09DE2D6939B39778, D3FBE494537B2CB6D66E6A15B0F73C22CEFD3D8702256B5B5FA5F99E3EF821B6 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
16:33:08.0624 0x0354 ASLDRService - ok
16:33:08.0624 0x0354 [ 116DD55EEF8843D7C526EB17A932822F, 003326A58256A5BF9912A0B4F6F39295C2909596B33C3837A0C85C7BA7523E14 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
16:33:08.0624 0x0354 ASMMAP64 - ok
16:33:08.0640 0x0354 [ AF0561974536C33073E0DF48C2F47C19, 792E2717B5A9AADB92E22C1778F39C3FE86045C34E09F2CEB4E3B1ED11ADC556 ] Asus WebStorage Windows Service C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe
16:33:08.0640 0x0354 Asus WebStorage Windows Service - ok
16:33:08.0640 0x0354 [ 308437492F76E3498F5D9B8DB5E5B2C8, 2300B9EFC27B053CAB0E933F0193E11BA27B738A087DDA7E0BF0AD746CBFDBC3 ] AsusSGDrv C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys
16:33:08.0640 0x0354 AsusSGDrv - ok
16:33:08.0655 0x0354 AsyncMac - ok
16:33:08.0655 0x0354 atapi - ok
16:33:08.0655 0x0354 [ 89810E9E27C8BB0AFB01814523A76347, A85B817A16096730D8559FD5D5597CA1A9FA3F192FF83885840089AE8F7C9EF5 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
16:33:08.0655 0x0354 ATKGFNEXSrv - ok
16:33:08.0655 0x0354 [ 0E717D7FED23731863EC44B4031DC268, A6F98FE201320FE3FF041768E426008C86B15BA7593EA04B1AC71B6FAE837A1E ] ATKWMIACPIIO C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
16:33:08.0655 0x0354 ATKWMIACPIIO - ok
16:33:08.0671 0x0354 AudioEndpointBuilder - ok
16:33:08.0671 0x0354 Audiosrv - ok
16:33:08.0671 0x0354 AxInstSV - ok
16:33:08.0671 0x0354 b06bdrv - ok
16:33:08.0671 0x0354 BasicDisplay - ok
16:33:08.0671 0x0354 BasicRender - ok
16:33:08.0687 0x0354 bcmfn - ok
16:33:08.0687 0x0354 bcmfn2 - ok
16:33:08.0687 0x0354 BDESVC - ok
16:33:08.0687 0x0354 Beep - ok
16:33:08.0702 0x0354 BFE - ok
16:33:08.0702 0x0354 BITS - ok
16:33:08.0718 0x0354 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:33:08.0718 0x0354 Bonjour Service - ok
16:33:08.0718 0x0354 bowser - ok
16:33:08.0718 0x0354 BrokerInfrastructure - ok
16:33:08.0733 0x0354 Browser - ok
16:33:08.0733 0x0354 BthAvrcpTg - ok
16:33:08.0733 0x0354 BthEnum - ok
16:33:08.0733 0x0354 BthHFEnum - ok
16:33:08.0733 0x0354 bthhfhid - ok
16:33:08.0749 0x0354 BthHFSrv - ok
16:33:08.0749 0x0354 BthLEEnum - ok
16:33:08.0749 0x0354 BTHMODEM - ok
16:33:08.0749 0x0354 BthPan - ok
16:33:08.0749 0x0354 BTHPORT - ok
16:33:08.0765 0x0354 bthserv - ok
16:33:08.0765 0x0354 BTHUSB - ok
16:33:08.0765 0x0354 buttonconverter - ok
16:33:08.0765 0x0354 CapImg - ok
16:33:08.0765 0x0354 cdfs - ok
16:33:08.0780 0x0354 CDPSvc - ok
16:33:08.0780 0x0354 CDPUserSvc - ok
16:33:08.0780 0x0354 cdrom - ok
16:33:08.0780 0x0354 CertPropSvc - ok
16:33:08.0780 0x0354 cht4iscsi - ok
16:33:08.0796 0x0354 cht4vbd - ok
16:33:08.0796 0x0354 circlass - ok
16:33:08.0796 0x0354 CLFS - ok
16:33:08.0858 0x0354 [ 4B6F8B7BFDB04916CC11F07114ABC4B0, E2D9FB4D23231943FF8B3AC8EA87B194F965197EA1C25186733AAF034F4EE33A ] ClickToRunSvc C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
16:33:08.0905 0x0354 ClickToRunSvc - ok
16:33:08.0905 0x0354 ClipSVC - ok
16:33:08.0905 0x0354 clreg - ok
16:33:08.0921 0x0354 CmBatt - ok
16:33:08.0921 0x0354 CNG - ok
16:33:08.0921 0x0354 cnghwassist - ok
16:33:08.0937 0x0354 CompositeBus - ok
16:33:08.0952 0x0354 COMSysApp - ok
16:33:08.0952 0x0354 condrv - ok
16:33:08.0952 0x0354 CoreMessagingRegistrar - ok
16:33:08.0968 0x0354 [ 0F0BB33129C878432400F003599F466E, 91821B07F2902435DA0A763E00C8C63380C79B1A48A9713B28ACA75EC888A7BF ] cphs C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHeciSvc.exe
16:33:08.0968 0x0354 cphs - ok
16:33:08.0984 0x0354 [ 53C56B7FA0426DF2DEF08B7CBFFC3ABF, 19E5A5AD69D79993F1A5BE960569AD3DA35E5FFFF6674C73BCB96CE0CCE34D47 ] cplspcon C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHDCPSvc.exe
16:33:08.0984 0x0354 cplspcon - ok
16:33:08.0999 0x0354 CryptSvc - ok
16:33:08.0999 0x0354 dam - ok
16:33:08.0999 0x0354 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
16:33:08.0999 0x0354 dbupdate - ok
16:33:09.0015 0x0354 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
16:33:09.0015 0x0354 dbupdatem - ok
16:33:09.0015 0x0354 [ A4700D1F78539C0ED32FA50E64F9C692, 5CB03B5F36307BA152245BAD29CB2AC703BBE8197ABC0338A7092ADEA1C3221A ] dc3d C:\WINDOWS\System32\drivers\dc3d.sys
16:33:09.0015 0x0354 dc3d - ok
16:33:09.0030 0x0354 DcomLaunch - ok
16:33:09.0030 0x0354 DcpSvc - ok
16:33:09.0030 0x0354 defragsvc - ok
16:33:09.0030 0x0354 DeviceAssociationService - ok
16:33:09.0030 0x0354 DeviceInstall - ok
16:33:09.0030 0x0354 DevQueryBroker - ok
16:33:09.0046 0x0354 Dfsc - ok
16:33:09.0046 0x0354 [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
16:33:09.0046 0x0354 dg_ssudbus - ok
16:33:09.0062 0x0354 Dhcp - ok
16:33:09.0062 0x0354 diagnosticshub.standardcollector.service - ok
16:33:09.0062 0x0354 DiagTrack - ok
16:33:09.0062 0x0354 disk - ok
16:33:09.0077 0x0354 DmEnrollmentSvc - ok
16:33:09.0077 0x0354 dmvsc - ok
16:33:09.0077 0x0354 dmwappushservice - ok
16:33:09.0077 0x0354 Dnscache - ok
16:33:09.0077 0x0354 dot3svc - ok
16:33:09.0093 0x0354 DPS - ok
16:33:09.0093 0x0354 [ 85680CFC129C7BD79B09404DB833DB78, 62A5AF0ACF16ACAC84F95AB9E82E43A9F1A6D4EBED3319E1C83112FB41678EAA ] dptf_acpi C:\WINDOWS\System32\drivers\dptf_acpi.sys
16:33:09.0093 0x0354 dptf_acpi - ok
16:33:09.0093 0x0354 [ 4FC126DB5602E8661E9D78818C3FCED7, DC5CE610B408C02B1B2567BF5B8BB2B52E0C6699A5987FE3FF34AECC78071E98 ] dptf_cpu C:\WINDOWS\System32\drivers\dptf_cpu.sys
16:33:09.0093 0x0354 dptf_cpu - ok
16:33:09.0108 0x0354 drmkaud - ok
16:33:09.0108 0x0354 DsmSvc - ok
16:33:09.0108 0x0354 DsSvc - ok
16:33:09.0108 0x0354 DXGKrnl - ok
16:33:09.0108 0x0354 EapHost - ok
16:33:09.0108 0x0354 ebdrv - ok
16:33:09.0124 0x0354 EFS - ok
16:33:09.0124 0x0354 EhStorClass - ok
16:33:09.0124 0x0354 EhStorTcgDrv - ok
16:33:09.0124 0x0354 embeddedmode - ok
16:33:09.0140 0x0354 EntAppSvc - ok
16:33:09.0140 0x0354 ErrDev - ok
16:33:09.0202 0x0354 [ BB6815A7650EB9CA27D6AE53D636C028, FC78D6B8F2F27E6500AF2823C6CA7072503A344201C26D34319383B32E2CA92C ] esifsvc C:\WINDOWS\SysWoW64\esif_uf.exe
16:33:09.0218 0x0354 esifsvc - ok
16:33:09.0234 0x0354 [ 438D377AF3651B762568AB6CFAE3C831, F1D28D7F4AC83076D2D7B271FE015410953B7A2F1CFFAEC456F6CF3A2909A47E ] esif_lf C:\WINDOWS\system32\DRIVERS\esif_lf.sys
16:33:09.0234 0x0354 esif_lf - ok
16:33:09.0234 0x0354 EventSystem - ok
16:33:09.0249 0x0354 [ 6DCB7233AAD29E43331B3ECFCC8FB8D1, A8E203BB774A4E055C871E9A28F958287A75E8BEA42496E6BA9983063CF6C539 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
16:33:09.0265 0x0354 EvtEng - ok
16:33:09.0265 0x0354 exfat - ok
16:33:09.0265 0x0354 fastfat - ok
16:33:09.0265 0x0354 Fax - ok
16:33:09.0280 0x0354 fdc - ok
16:33:09.0280 0x0354 fdPHost - ok
16:33:09.0280 0x0354 FDResPub - ok
16:33:09.0280 0x0354 fhsvc - ok
16:33:09.0280 0x0354 FileCrypt - ok
16:33:09.0296 0x0354 FileInfo - ok
16:33:09.0296 0x0354 Filetrace - ok
16:33:09.0296 0x0354 flpydisk - ok
16:33:09.0296 0x0354 FltMgr - ok
16:33:09.0296 0x0354 FontCache - ok
16:33:09.0312 0x0354 FontCache3.0.0.0 - ok
16:33:09.0312 0x0354 FrameServer - ok
16:33:09.0312 0x0354 FsDepends - ok
16:33:09.0312 0x0354 Fs_Rec - ok
16:33:09.0312 0x0354 fvevol - ok
16:33:09.0327 0x0354 gencounter - ok
16:33:09.0327 0x0354 genericusbfn - ok
16:33:09.0327 0x0354 GPIOClx0101 - ok
16:33:09.0327 0x0354 gpsvc - ok
16:33:09.0327 0x0354 GpuEnergyDrv - ok
16:33:09.0343 0x0354 [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:33:09.0343 0x0354 gupdate - ok
16:33:09.0343 0x0354 [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:33:09.0343 0x0354 gupdatem - ok
16:33:09.0359 0x0354 HDAudBus - ok
16:33:09.0359 0x0354 HidBatt - ok
16:33:09.0359 0x0354 HidBth - ok
16:33:09.0359 0x0354 hidi2c - ok
16:33:09.0359 0x0354 hidinterrupt - ok
16:33:09.0374 0x0354 HidIr - ok
16:33:09.0374 0x0354 hidserv - ok
16:33:09.0374 0x0354 [ 38DA94B6DD8022DA43810E4328608E54, ACE0A36143FF37BC42F136DB7317028540D1C0F21A5FD13F67E1A3DB2426A5EA ] HIDSwitch C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys
16:33:09.0374 0x0354 HIDSwitch - ok
16:33:09.0374 0x0354 HidUsb - ok
16:33:09.0390 0x0354 HomeGroupListener - ok
16:33:09.0390 0x0354 HomeGroupProvider - ok
16:33:09.0390 0x0354 HpSAMD - ok
16:33:09.0390 0x0354 HTTP - ok
16:33:09.0390 0x0354 HvHost - ok
16:33:09.0405 0x0354 hvservice - ok
16:33:09.0405 0x0354 hwpolicy - ok
16:33:09.0405 0x0354 hyperkbd - ok
16:33:09.0405 0x0354 i8042prt - ok
16:33:09.0405 0x0354 iagpio - ok
16:33:09.0405 0x0354 iai2c - ok
16:33:09.0421 0x0354 iaLPSS2i_GPIO2 - ok
16:33:09.0421 0x0354 iaLPSS2i_I2C - ok
16:33:09.0421 0x0354 [ 54829E0B5F2FF133E6AEF13104689FA1, 322B3DA3E3BACE1A8584DA5AADA527983FB40B49AFFE23AA002295146435BB12 ] iaLPSS2_I2C C:\WINDOWS\System32\drivers\iaLPSS2_I2C.sys
16:33:09.0421 0x0354 iaLPSS2_I2C - ok
16:33:09.0437 0x0354 iaLPSSi_GPIO - ok
16:33:09.0437 0x0354 iaLPSSi_I2C - ok
16:33:09.0468 0x0354 [ 5F6CA62BE8ECC4D0E1F5D4D4A02B456B, F720A1F14C9053D24C5B42827E5F9578A27F3E62A6C65A3CFA068E580F02F072 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
16:33:09.0484 0x0354 iaStorA - ok
16:33:09.0484 0x0354 iaStorAV - ok
16:33:09.0484 0x0354 iaStorV - ok
16:33:09.0484 0x0354 ibbus - ok
16:33:09.0499 0x0354 ibtsiva - ok
16:33:09.0499 0x0354 [ 606148419C4F99C3102E1EF5E3AFC72A, 63DB5D2ABFB3A0F048B87FCF4B32C4B862F396DDBD3AC5E52951648C99BEC3DD ] ibtusb C:\WINDOWS\system32\DRIVERS\ibtusb.sys
16:33:09.0499 0x0354 ibtusb - ok
16:33:09.0515 0x0354 icssvc - ok
16:33:09.0704 0x0354 [ 42A8E802D412117D6707FB5CB819CF33, 585C81320D58F731472827D9E67F5752ACB554BB5333221A3D91E6F60454E26D ] igfx C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igdkmd64.sys
16:33:09.0829 0x0354 igfx - ok
16:33:09.0845 0x0354 [ 5495E7F548D0DD4BD5A3D2C071DB1FB3, 320344AEF67751BA80E5737F90D736DEF6555D1610F27D4BE86747C1D8200E31 ] igfxCUIService2.0.0.0 C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe
16:33:09.0845 0x0354 igfxCUIService2.0.0.0 - ok
16:33:09.0845 0x0354 IKEEXT - ok
16:33:09.0860 0x0354 IndirectKmd - ok
16:33:09.0860 0x0354 [ AFA7F1696B431C07729E9BF2565D6045, 77966485A23581C079A480BEC13982AB926F5C62686F48A44F8C562B3C67745B ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
16:33:09.0860 0x0354 intaud_WaveExtensible - ok
16:33:09.0938 0x0354 [ A1F8EEE8C5DF4BC77376485F133750C7, 4AA5BBBA31302640A825DB26507B6FE494CE25966940FA770EFED8D78EAFA491 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
16:33:09.0985 0x0354 IntcAzAudAddService - ok
16:33:10.0016 0x0354 [ 739A977693ACC5D64967F3809BAB1854, 1FAE0ABB0412053D9ACE960C1233E2F556BD8F524A29AB7242847C8D6B4B87AD ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
16:33:10.0032 0x0354 IntcDAud - ok
16:33:10.0048 0x0354 [ B63CF22D1AD2ABDC39D85851B2BEAA6D, 37E9043BABB5895BFD2B59AFB60C438B992C6EAA1B5FDE5B3445314343F4C406 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
16:33:10.0063 0x0354 Intel(R) Capability Licensing Service TCP IP Interface - ok
16:33:10.0063 0x0354 [ 8213094EA736A9C575AB0E22AD09B0BA, 12670A466B5AA37283BD4CB481D000DE3AE2A8D1BD159F67A41703A6FE5675EC ] Intel(R) Security Assist C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
16:33:10.0079 0x0354 Intel(R) Security Assist - ok
16:33:10.0079 0x0354 [ 97AC7006869B90F9B09445B7122BA90E, B1C8FCD6DEFA468BAE0A905999C8AA828656D6E7A6EF60F99A4FBC1A0597346E ] Intel(R) WiDi SAM C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe
16:33:10.0079 0x0354 Intel(R) WiDi SAM - ok
16:33:10.0079 0x0354 intelide - ok
16:33:10.0079 0x0354 intelpep - ok
16:33:10.0079 0x0354 intelppm - ok
16:33:10.0095 0x0354 [ ED8B27761A86EA41BDCCE7EDC44155DB, 9D8E06836C6D19079179CD4022754F533D6C5556A153E3A8A2A3AA9EF3390931 ] IntelUSBoverIP C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
16:33:10.0110 0x0354 IntelUSBoverIP - ok
16:33:10.0110 0x0354 iorate - ok
16:33:10.0110 0x0354 IpFilterDriver - ok
16:33:10.0110 0x0354 iphlpsvc - ok
16:33:10.0110 0x0354 IPMIDRV - ok
16:33:10.0110 0x0354 IPNAT - ok
16:33:10.0126 0x0354 irda - ok
16:33:10.0126 0x0354 IRENUM - ok
16:33:10.0126 0x0354 irmon - ok
16:33:10.0126 0x0354 [ 1DFC3CCA51785254C5604238BB1A5467, 31451A90A91AEE14C6B24F84CB9816E5C77179D411B8B3E8547F538235BEEFB0 ] isaHelperSvc C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
16:33:10.0126 0x0354 isaHelperSvc - ok
16:33:10.0141 0x0354 isapnp - ok
16:33:10.0141 0x0354 iScsiPrt - ok
16:33:10.0141 0x0354 [ DA0A946E6C4228B659FA798EF0B075C1, BC2F5710D6165615CD578A970BC154C8DB1ECCA5725D09A29954E9BE8FAC0ED7 ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys
16:33:10.0141 0x0354 iwdbus - ok
16:33:10.0141 0x0354 [ 1D6E77475AF059458AB7E15034EE1F9D, DEB72B8DCD2341373CBB5BD2915EE991E539864C15E30198B8B3638D42228324 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
16:33:10.0157 0x0354 jhi_service - ok
16:33:10.0157 0x0354 kbdclass - ok
16:33:10.0157 0x0354 kbdhid - ok
16:33:10.0157 0x0354 kdnic - ok
16:33:10.0157 0x0354 KeyIso - ok
16:33:10.0173 0x0354 KSecDD - ok
16:33:10.0173 0x0354 KSecPkg - ok
16:33:10.0173 0x0354 ksthunk - ok
16:33:10.0173 0x0354 KtmRm - ok
16:33:10.0173 0x0354 LanmanServer - ok
16:33:10.0188 0x0354 LanmanWorkstation - ok
16:33:10.0235 0x0354 [ 303C2F9010876D1A43616EB94E37EEF6, 224F6E085C6EB81394C05AFB5B12674A3F3790B1EBE3214748569EF288353A9C ] LCTechSSDToolAsus C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe
16:33:10.0266 0x0354 LCTechSSDToolAsus - ok
16:33:10.0266 0x0354 lfsvc - ok
16:33:10.0266 0x0354 LicenseManager - ok
16:33:10.0282 0x0354 lltdio - ok
16:33:10.0282 0x0354 lltdsvc - ok
16:33:10.0282 0x0354 lmhosts - ok
16:33:10.0298 0x0354 [ 258B7A8D42365472A184C064154F265F, 70FDBE83157C6EABF0223C54A6C57137D52E389D0118BFAD4E2BF11D15507354 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:33:10.0298 0x0354 LMS - ok
16:33:10.0298 0x0354 LSI_SAS - ok
16:33:10.0298 0x0354 LSI_SAS2i - ok
16:33:10.0313 0x0354 LSI_SAS3i - ok
16:33:10.0313 0x0354 LSI_SSS - ok
16:33:10.0313 0x0354 LSM - ok
16:33:10.0313 0x0354 luafv - ok
16:33:10.0313 0x0354 MapsBroker - ok
16:33:10.0329 0x0354 [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
16:33:10.0329 0x0354 MBAMProtector - ok
16:33:10.0360 0x0354 [ 9611577752E293259C7DCE19E9026362, 8CB5DFD63FA15603BB6FA6B501E09ED7F4DE0E8F68CB28B78CECAC3711BEFD24 ] MBAMScheduler C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
16:33:10.0376 0x0354 MBAMScheduler - ok
16:33:10.0392 0x0354 [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
16:33:10.0407 0x0354 MBAMService - ok
16:33:10.0423 0x0354 [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
16:33:10.0423 0x0354 MBAMSwissArmy - ok
16:33:10.0423 0x0354 [ 898415AC0B5F1D2A9A48ABCB68A6DC4B, E1FD9AE5E22E3E5A18288E66A6184E92A4B63A1274DCE147A7728BB09C6A225E ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
16:33:10.0423 0x0354 MBAMWebAccessControl - ok
16:33:10.0438 0x0354 megasas - ok
16:33:10.0438 0x0354 megasas2i - ok
16:33:10.0438 0x0354 megasr - ok
16:33:10.0438 0x0354 [ 6ECDA51525C123C55ABC470F2144F925, 7B2E8976F126219AF0953FD641E613A9336CCC80843AF4A37AA71067D55CCBBB ] MEIx64 C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
16:33:10.0454 0x0354 MEIx64 - ok
16:33:10.0454 0x0354 MessagingService - ok
16:33:10.0454 0x0354 mlx4_bus - ok
16:33:10.0454 0x0354 MMCSS - ok
16:33:10.0470 0x0354 Modem - ok
16:33:10.0470 0x0354 monitor - ok
16:33:10.0470 0x0354 mouclass - ok
16:33:10.0470 0x0354 mouhid - ok
16:33:10.0470 0x0354 mountmgr - ok
16:33:10.0470 0x0354 mpsdrv - ok
16:33:10.0485 0x0354 MpsSvc - ok
16:33:10.0485 0x0354 MRxDAV - ok
16:33:10.0485 0x0354 mrxsmb - ok
16:33:10.0485 0x0354 mrxsmb10 - ok
16:33:10.0485 0x0354 mrxsmb20 - ok
16:33:10.0501 0x0354 MsBridge - ok
16:33:10.0501 0x0354 MSDTC - ok
16:33:10.0501 0x0354 Msfs - ok
16:33:10.0501 0x0354 msgpiowin32 - ok
16:33:10.0501 0x0354 mshidkmdf - ok
16:33:10.0516 0x0354 mshidumdf - ok
16:33:10.0516 0x0354 msisadrv - ok
16:33:10.0516 0x0354 MSiSCSI - ok
16:33:10.0516 0x0354 msiserver - ok
16:33:10.0516 0x0354 MSKSSRV - ok
16:33:10.0532 0x0354 MsLldp - ok
16:33:10.0532 0x0354 MSPCLOCK - ok
16:33:10.0532 0x0354 MSPQM - ok
16:33:10.0532 0x0354 MsRPC - ok
16:33:10.0532 0x0354 mssmbios - ok
16:33:10.0548 0x0354 MSTEE - ok
16:33:10.0548 0x0354 MTConfig - ok
16:33:10.0548 0x0354 Mup - ok
16:33:10.0548 0x0354 mvumis - ok
16:33:10.0564 0x0354 [ F1F6EE6C068CBDB80BAC43A79591F1F2, 39387A25ECFBFDD5B6A43A9A2CA2EC5703D0CCCFFE36C989B0E461B72C242D1C ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
16:33:10.0564 0x0354 MyWiFiDHCPDNS - ok
16:33:10.0564 0x0354 NativeWifiP - ok
16:33:10.0564 0x0354 NcaSvc - ok
16:33:10.0579 0x0354 NcbService - ok
16:33:10.0579 0x0354 NcdAutoSetup - ok
16:33:10.0579 0x0354 ndfltr - ok
16:33:10.0579 0x0354 NDIS - ok
16:33:10.0579 0x0354 NdisCap - ok
16:33:10.0595 0x0354 NdisImPlatform - ok
16:33:10.0595 0x0354 NdisTapi - ok
16:33:10.0595 0x0354 Ndisuio - ok
16:33:10.0595 0x0354 NdisVirtualBus - ok
16:33:10.0595 0x0354 NdisWan - ok
16:33:10.0610 0x0354 ndiswanlegacy - ok
16:33:10.0610 0x0354 ndproxy - ok
16:33:10.0610 0x0354 Ndu - ok
16:33:10.0610 0x0354 NetAdapterCx - ok
16:33:10.0610 0x0354 NetBIOS - ok
16:33:10.0610 0x0354 NetBT - ok
16:33:10.0626 0x0354 Netlogon - ok
16:33:10.0626 0x0354 Netman - ok
16:33:10.0626 0x0354 netprofm - ok
16:33:10.0626 0x0354 NetSetupSvc - ok
16:33:10.0641 0x0354 NetTcpPortSharing - ok
16:33:10.0657 0x0354 Netwtw04 - ok
16:33:10.0657 0x0354 NgcCtnrSvc - ok
16:33:10.0657 0x0354 NgcSvc - ok
16:33:10.0657 0x0354 NlaSvc - ok
16:33:10.0657 0x0354 Npfs - ok
16:33:10.0673 0x0354 npsvctrig - ok
16:33:10.0673 0x0354 nsi - ok
16:33:10.0673 0x0354 nsiproxy - ok
16:33:10.0673 0x0354 NTFS - ok
16:33:10.0673 0x0354 Null - ok
16:33:10.0688 0x0354 [ E5FB1DED60CD5461625955E00838541A, 5F8EF2B1169E0C8F1CF3638A1C670ADAE9DC7D5EAF114D3F91C0556967311EB9 ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
16:33:10.0704 0x0354 NvContainerLocalSystem - ok
16:33:10.0704 0x0354 [ E5FB1DED60CD5461625955E00838541A, 5F8EF2B1169E0C8F1CF3638A1C670ADAE9DC7D5EAF114D3F91C0556967311EB9 ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
16:33:10.0720 0x0354 NvContainerNetworkService - ok
16:33:10.0735 0x0354 [ EDF2A6D3EC66A6175BF9C48356130F81, 3AFEFE39D911D0298F382AA98B3C7C2EE147211A09D438C25657512D5840E53E ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
16:33:10.0751 0x0354 NVIDIA Wireless Controller Service - ok
16:33:11.0001 0x0354 [ 76ECA562B95DB26C64BEC14BB188A3F6, B4DB40D391B227393EEC13659C64B03499632FD11A75E5183BE8A0C8F3C9688B ] nvlddmkm C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvlddmkm.sys
16:33:11.0157 0x0354 nvlddmkm - ok
16:33:11.0173 0x0354 nvraid - ok
16:33:11.0188 0x0354 nvstor - ok
16:33:11.0188 0x0354 [ E5340E353E5DB0350DE759C77CD4C3F5, 4D7FE3EE2101FD6208BA56D876A6622175D8B817DCCCE5D3CE8D0026AAE93174 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:33:11.0188 0x0354 NvStreamKms - ok
16:33:11.0188 0x0354 [ 1A059C00CD7D0CC0CC9FD03E77FDC646, C9E41B0C8DF5C70C410F229F95CC1EAD24BC249D1F0939AA06D9A86C60B6EF41 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
16:33:11.0188 0x0354 nvvad_WaveExtensible - ok
16:33:11.0204 0x0354 OneSyncSvc - ok
16:33:11.0204 0x0354 [ D1AF4C86F851F9A345A400FD3B9D673A, BCC7B3AF92A2AB09CC52FB10107E209C02AC078E5F0197AEC40D7AE56F3A7CA0 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:33:11.0204 0x0354 ose64 - ok
16:33:11.0220 0x0354 p2pimsvc - ok
16:33:11.0220 0x0354 p2psvc - ok
16:33:11.0220 0x0354 Parport - ok
16:33:11.0220 0x0354 partmgr - ok
16:33:11.0235 0x0354 PcaSvc - ok
16:33:11.0235 0x0354 pci - ok
16:33:11.0235 0x0354 pciide - ok
16:33:11.0235 0x0354 pcmcia - ok
16:33:11.0235 0x0354 pcw - ok
16:33:11.0251 0x0354 pdc - ok
16:33:11.0251 0x0354 PEAUTH - ok
16:33:11.0251 0x0354 percsas2i - ok
16:33:11.0251 0x0354 percsas3i - ok
16:33:11.0298 0x0354 PerfHost - ok
16:33:11.0298 0x0354 PhoneSvc - ok
16:33:11.0298 0x0354 PimIndexMaintenanceSvc - ok
16:33:11.0313 0x0354 pla - ok
16:33:11.0313 0x0354 PlugPlay - ok
16:33:11.0313 0x0354 PNRPAutoReg - ok
16:33:11.0313 0x0354 PNRPsvc - ok
16:33:11.0329 0x0354 PolicyAgent - ok
16:33:11.0329 0x0354 Power - ok
16:33:11.0329 0x0354 PptpMiniport - ok
16:33:11.0423 0x0354 [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
16:33:11.0454 0x0354 PrintNotify - ok
16:33:11.0470 0x0354 Processor - ok
16:33:11.0470 0x0354 ProfSvc - ok
16:33:11.0470 0x0354 Psched - ok
16:33:11.0470 0x0354 QWAVE - ok
16:33:11.0470 0x0354 QWAVEdrv - ok
16:33:11.0485 0x0354 RasAcd - ok
16:33:11.0485 0x0354 RasAgileVpn - ok
16:33:11.0485 0x0354 RasAuto - ok
16:33:11.0485 0x0354 Rasl2tp - ok
16:33:11.0485 0x0354 RasMan - ok
16:33:11.0501 0x0354 RasPppoe - ok
16:33:11.0501 0x0354 RasSstp - ok
16:33:11.0501 0x0354 rdbss - ok
16:33:11.0501 0x0354 rdpbus - ok
16:33:11.0501 0x0354 RDPDR - ok
16:33:11.0517 0x0354 RdpVideoMiniport - ok
16:33:11.0517 0x0354 rdyboost - ok
16:33:11.0517 0x0354 ReFSv1 - ok
16:33:11.0532 0x0354 [ B91EE7363FDC2B0CB1C5E6190B46F7DC, 650EE0262F2EE242D99A5BE013A64F76CA3537274C0B9313F9BD7741ACF38017 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
16:33:11.0532 0x0354 RegSrvc - ok
16:33:11.0532 0x0354 RemoteAccess - ok
16:33:11.0532 0x0354 RemoteRegistry - ok
16:33:11.0532 0x0354 RetailDemo - ok
16:33:11.0548 0x0354 RFCOMM - ok
16:33:11.0548 0x0354 RmSvc - ok
16:33:11.0548 0x0354 RpcEptMapper - ok
16:33:11.0548 0x0354 RpcLocator - ok
16:33:11.0548 0x0354 RpcSs - ok
16:33:11.0563 0x0354 rspndr - ok
16:33:11.0579 0x0354 [ E11A3F79475F9D019CD51ADCCC377909, CF14C494C4A969233C1D2B32A56C86C8636AC70004725B53447C42EB63C31BA9 ] rt640x64 C:\WINDOWS\System32\drivers\rt640x64.sys
16:33:11.0595 0x0354 rt640x64 - ok
16:33:11.0610 0x0354 [ F75C6FFD09A6C51E4B5166E05D97FD96, 12174DA89456347704455B1544C6E0FB54E55504E6C88F5E9962018D53D6F84D ] RTSPER C:\WINDOWS\system32\DRIVERS\RtsPer.sys
16:33:11.0626 0x0354 RTSPER - ok
16:33:11.0626 0x0354 s3cap - ok
16:33:11.0626 0x0354 SamSs - ok
16:33:11.0626 0x0354 sbp2port - ok
16:33:11.0642 0x0354 SCardSvr - ok
16:33:11.0642 0x0354 ScDeviceEnum - ok
16:33:11.0642 0x0354 scfilter - ok
16:33:11.0642 0x0354 Schedule - ok
16:33:11.0642 0x0354 scmbus - ok
16:33:11.0657 0x0354 scmdisk0101 - ok
16:33:11.0657 0x0354 SCPolicySvc - ok
16:33:11.0657 0x0354 sdbus - ok
16:33:11.0657 0x0354 SDRSVC - ok
16:33:11.0657 0x0354 sdstor - ok
16:33:11.0673 0x0354 seclogon - ok
16:33:11.0673 0x0354 SENS - ok
16:33:11.0673 0x0354 SensorDataService - ok
16:33:11.0673 0x0354 SensorService - ok
16:33:11.0688 0x0354 SensrSvc - ok
16:33:11.0688 0x0354 SerCx - ok
16:33:11.0688 0x0354 SerCx2 - ok
16:33:11.0688 0x0354 Serenum - ok
16:33:11.0688 0x0354 Serial - ok
16:33:11.0688 0x0354 sermouse - ok
16:33:11.0704 0x0354 SessionEnv - ok
16:33:11.0704 0x0354 sfloppy - ok
16:33:11.0704 0x0354 SharedAccess - ok
16:33:11.0704 0x0354 ShellHWDetection - ok
16:33:11.0720 0x0354 shpamsvc - ok
16:33:11.0720 0x0354 SiSRaid2 - ok
16:33:11.0720 0x0354 SiSRaid4 - ok
16:33:11.0720 0x0354 smphost - ok
16:33:11.0720 0x0354 SmsRouter - ok
16:33:11.0735 0x0354 SNMPTRAP - ok
16:33:11.0735 0x0354 spaceport - ok
16:33:11.0735 0x0354 SpbCx - ok
16:33:11.0735 0x0354 Spooler - ok
16:33:11.0751 0x0354 sppsvc - ok
16:33:11.0751 0x0354 srv - ok
16:33:11.0751 0x0354 srv2 - ok
16:33:11.0751 0x0354 srvnet - ok
16:33:11.0751 0x0354 SSDPSRV - ok
16:33:11.0767 0x0354 [ 3725AD72054E339CAE17A252AE0EE0FD, 7205D5558C37E6B29056B477945546887368843E195C956CB67E39F14ACD18D5 ] sshid C:\WINDOWS\System32\drivers\sshid.sys
16:33:11.0767 0x0354 sshid - ok
16:33:11.0767 0x0354 SstpSvc - ok
16:33:11.0767 0x0354 [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
16:33:11.0782 0x0354 ssudmdm - ok
16:33:11.0782 0x0354 StateRepository - ok
16:33:11.0782 0x0354 stexstor - ok
16:33:11.0782 0x0354 stisvc - ok
16:33:11.0782 0x0354 storahci - ok
16:33:11.0798 0x0354 storflt - ok
16:33:11.0798 0x0354 stornvme - ok
16:33:11.0798 0x0354 storqosflt - ok
16:33:11.0798 0x0354 StorSvc - ok
16:33:11.0798 0x0354 storufs - ok
16:33:11.0813 0x0354 storvsc - ok
16:33:11.0813 0x0354 svsvc - ok
16:33:11.0813 0x0354 swenum - ok
16:33:11.0813 0x0354 swprv - ok
16:33:11.0813 0x0354 Synth3dVsc - ok
16:33:11.0829 0x0354 SysMain - ok
16:33:11.0829 0x0354 SystemEventsBroker - ok
16:33:11.0829 0x0354 TabletInputService - ok
16:33:11.0829 0x0354 TapiSrv - ok
16:33:11.0829 0x0354 Tcpip - ok
16:33:11.0845 0x0354 Tcpip6 - ok
16:33:11.0845 0x0354 tcpipreg - ok
16:33:11.0845 0x0354 tdx - ok
16:33:12.0048 0x0354 [ AD521C349AA567683E1DA4361ECF7DFB, 5BA9DD327565EAF11481553BCBD01C1BFAA6651ABED4D3587D6F742B06294A09 ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
16:33:12.0157 0x0354 TeamViewer - ok
16:33:12.0173 0x0354 terminpt - ok
16:33:12.0189 0x0354 TermService - ok
16:33:12.0189 0x0354 Themes - ok
16:33:12.0189 0x0354 TieringEngineService - ok
16:33:12.0189 0x0354 tiledatamodelsvc - ok
16:33:12.0189 0x0354 TimeBrokerSvc - ok
16:33:12.0204 0x0354 [ 3B2A2F3EE3D783A667F75B2814D223B1, C6B474C24161A00B331AD26DD4B218284CDCE1D60B594F81B3F7BACBCED50D89 ] Tipuly C:\Program Files (x86)\Drabapythebution\whtcore.dll
16:33:12.0204 0x0354 Tipuly - ok
16:33:12.0220 0x0354 TPM - ok
16:33:12.0220 0x0354 TrkWks - ok
16:33:12.0220 0x0354 TrustedInstaller - ok
16:33:12.0282 0x0354 [ C3CC02C678D760B12F2F75BB5FD4075A, 4491EC28E5238DE9052CDB5DA31CAA87D6C287DCBAEB2F545D495F6B8D9BDB1A ] TSMaintenanceService C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe
16:33:12.0329 0x0354 TSMaintenanceService - ok
16:33:12.0329 0x0354 tsusbflt - ok
16:33:12.0345 0x0354 TsUsbGD - ok
16:33:12.0345 0x0354 tunnel - ok
16:33:12.0345 0x0354 tzautoupdate - ok
16:33:12.0345 0x0354 UASPStor - ok
16:33:12.0361 0x0354 [ EB482DBC9786F1A9E3ED5AB6864794FA, 4154B259587D743612830F67800450DD04031C215A8459CC26E11D3498640BA0 ] UCGuard C:\WINDOWS\system32\DRIVERS\ucguard.sys
16:33:12.0361 0x0354 UCGuard - ok
16:33:12.0361 0x0354 UcmCx0101 - ok
16:33:12.0361 0x0354 UcmTcpciCx0101 - ok
16:33:12.0361 0x0354 UcmUcsi - ok
16:33:12.0376 0x0354 Ucx01000 - ok
16:33:12.0376 0x0354 UdeCx - ok
16:33:12.0376 0x0354 udfs - ok
16:33:12.0376 0x0354 UEFI - ok
16:33:12.0376 0x0354 Ufx01000 - ok
16:33:12.0392 0x0354 UfxChipidea - ok
16:33:12.0392 0x0354 ufxsynopsys - ok
16:33:12.0392 0x0354 UI0Detect - ok
16:33:12.0392 0x0354 umbus - ok
16:33:12.0407 0x0354 UmPass - ok
16:33:12.0407 0x0354 UmRdpService - ok
16:33:12.0407 0x0354 UnistoreSvc - ok
16:33:12.0407 0x0354 upnphost - ok
16:33:12.0423 0x0354 UrsChipidea - ok
16:33:12.0423 0x0354 UrsCx01000 - ok
16:33:12.0423 0x0354 UrsSynopsys - ok
16:33:12.0439 0x0354 [ DB2D395585587BC4D63AB7DCC7826EF2, 1B7D39CB6E15A875061BDD1433FF6F344A4F1710BF7B9471CBFFCD722EB66B68 ] usb3Hub C:\WINDOWS\System32\drivers\usb3Hub.sys
16:33:12.0439 0x0354 usb3Hub - ok
16:33:12.0439 0x0354 usbccgp - ok
16:33:12.0439 0x0354 usbcir - ok
16:33:12.0439 0x0354 usbehci - ok
16:33:12.0454 0x0354 usbhub - ok
16:33:12.0454 0x0354 USBHUB3 - ok
16:33:12.0454 0x0354 usbohci - ok
16:33:12.0454 0x0354 usbprint - ok
16:33:12.0470 0x0354 usbser - ok
16:33:12.0470 0x0354 USBSTOR - ok
16:33:12.0470 0x0354 usbuhci - ok
16:33:12.0470 0x0354 usbvideo - ok
16:33:12.0485 0x0354 USBXHCI - ok
16:33:12.0485 0x0354 UserDataSvc - ok
16:33:12.0485 0x0354 UserManager - ok
16:33:12.0485 0x0354 UsoSvc - ok
16:33:12.0485 0x0354 VaultSvc - ok
16:33:12.0501 0x0354 [ CDA796F41C2B64CEEC143B3A86904CFB, 8D9CACB74608C145A75424F4169E447A9EFA0EC3DD1412F097B56F86C0FC8E6E ] VBoxDrv C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys
16:33:12.0501 0x0354 VBoxDrv - ok
16:33:12.0517 0x0354 [ 0E3C4F20B2CE21168F3242D9CAC6CBF2, 1BD5E1A2000EBC1C335A8960ACDCD08BDC8230F533A80D086D2EE6FE4990EA02 ] VBoxUSBMon C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
16:33:12.0517 0x0354 VBoxUSBMon - ok
16:33:12.0517 0x0354 vdrvroot - ok
16:33:12.0517 0x0354 vds - ok
16:33:12.0517 0x0354 VerifierExt - ok
16:33:12.0532 0x0354 vhdmp - ok
16:33:12.0532 0x0354 vhf - ok
16:33:12.0532 0x0354 vmbus - ok
16:33:12.0532 0x0354 VMBusHID - ok
16:33:12.0548 0x0354 vmgid - ok
16:33:12.0548 0x0354 vmicguestinterface - ok
16:33:12.0548 0x0354 vmicheartbeat - ok
16:33:12.0548 0x0354 vmickvpexchange - ok
16:33:12.0548 0x0354 vmicrdv - ok
16:33:12.0564 0x0354 vmicshutdown - ok
16:33:12.0564 0x0354 vmictimesync - ok
16:33:12.0564 0x0354 vmicvmsession - ok
16:33:12.0564 0x0354 vmicvss - ok
16:33:12.0579 0x0354 VMnetAdapter - ok
16:33:12.0579 0x0354 volmgr - ok
16:33:12.0579 0x0354 volmgrx - ok
16:33:12.0579 0x0354 volsnap - ok
16:33:12.0579 0x0354 volume - ok
16:33:12.0595 0x0354 vpci - ok
16:33:12.0595 0x0354 vsmraid - ok
16:33:12.0595 0x0354 VSS - ok
16:33:12.0595 0x0354 VSTXRAID - ok
16:33:12.0610 0x0354 vwifibus - ok
16:33:12.0610 0x0354 vwififlt - ok
16:33:12.0610 0x0354 vwifimp - ok
16:33:12.0610 0x0354 W32Time - ok
16:33:12.0610 0x0354 WacomPen - ok
16:33:12.0626 0x0354 WalletService - ok
16:33:12.0626 0x0354 wanarp - ok
16:33:12.0626 0x0354 wanarpv6 - ok
16:33:12.0626 0x0354 wbengine - ok
16:33:12.0642 0x0354 WbioSrvc - ok
16:33:12.0642 0x0354 wcifs - ok
16:33:12.0642 0x0354 Wcmsvc - ok
16:33:12.0642 0x0354 wcncsvc - ok
16:33:12.0657 0x0354 wcnfs - ok
16:33:12.0657 0x0354 WdBoot - ok
16:33:12.0657 0x0354 Wdf01000 - ok
16:33:12.0657 0x0354 WdFilter - ok
16:33:12.0657 0x0354 WdiServiceHost - ok
16:33:12.0673 0x0354 WdiSystemHost - ok
16:33:12.0673 0x0354 wdiwifi - ok
16:33:12.0673 0x0354 WdNisDrv - ok
16:33:12.0673 0x0354 WdNisSvc - ok
16:33:12.0689 0x0354 WebClient - ok
16:33:12.0689 0x0354 Wecsvc - ok
16:33:12.0689 0x0354 WEPHOSTSVC - ok
16:33:12.0689 0x0354 wercplsupport - ok
16:33:12.0689 0x0354 WerSvc - ok
16:33:12.0704 0x0354 WFPLWFS - ok
16:33:12.0704 0x0354 WiaRpc - ok
16:33:12.0704 0x0354 WIMMount - ok
16:33:12.0704 0x0354 WinDefend - ok
16:33:12.0720 0x0354 WindowsTrustedRT - ok
16:33:12.0720 0x0354 WindowsTrustedRTProxy - ok
16:33:12.0720 0x0354 WinHttpAutoProxySvc - ok
16:33:12.0735 0x0354 WinMad - ok
16:33:12.0735 0x0354 Winmgmt - ok
16:33:12.0751 0x0354 WinRM - ok
16:33:12.0751 0x0354 WINUSB - ok
16:33:12.0751 0x0354 WinVerbs - ok
16:33:12.0767 0x0354 wisvc - ok
16:33:12.0767 0x0354 WlanSvc - ok
16:33:12.0767 0x0354 wlidsvc - ok
16:33:12.0767 0x0354 WmiAcpi - ok
16:33:12.0782 0x0354 wmiApSrv - ok
16:33:12.0782 0x0354 WMPNetworkSvc - ok
16:33:12.0782 0x0354 Wof - ok
16:33:12.0782 0x0354 workfolderssvc - ok
16:33:12.0798 0x0354 WPDBusEnum - ok
16:33:12.0798 0x0354 WpdUpFltr - ok
16:33:12.0798 0x0354 WpnService - ok
16:33:12.0798 0x0354 WpnUserService - ok
16:33:12.0814 0x0354 ws2ifsl - ok
16:33:12.0814 0x0354 wscsvc - ok
16:33:12.0814 0x0354 WSDPrintDevice - ok
16:33:12.0829 0x0354 WSDScan - ok
16:33:12.0829 0x0354 WSearch - ok
16:33:12.0829 0x0354 wuauserv - ok
16:33:12.0829 0x0354 WudfPf - ok
16:33:12.0845 0x0354 WUDFRd - ok
16:33:12.0845 0x0354 wudfsvc - ok
16:33:12.0845 0x0354 WUDFWpdFs - ok
16:33:12.0845 0x0354 WUDFWpdMtp - ok
16:33:12.0845 0x0354 WwanSvc - ok
16:33:12.0860 0x0354 XblAuthManager - ok
16:33:12.0860 0x0354 XblGameSave - ok
16:33:12.0860 0x0354 xboxgip - ok
16:33:12.0860 0x0354 XboxNetApiSvc - ok
16:33:12.0876 0x0354 xinputhid - ok
16:33:12.0876 0x0354 [ D3D9CB4BA15C1854294517AA8954E201, DFBB6E1A5FF01123FEAD6EFFA67F4A0203792AFDF82EAFFC2DA981A584896542 ] XQHDrv C:\WINDOWS\system32\DRIVERS\XQHDrv.sys
16:33:12.0892 0x0354 XQHDrv - ok
16:33:12.0954 0x0354 [ 65308E8DDBCA0A3D7A72E3404E194319, 93D51235D4CB50F3C73DE006843CB98B8940F92BBB84365443C9A31DEB2426A6 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
16:33:13.0001 0x0354 ZeroConfigService - ok
16:33:13.0001 0x0354 ================ Scan global ===============================
16:33:13.0017 0x0354 [ Global ] - ok
16:33:13.0017 0x0354 ================ Scan MBR ==================================
16:33:13.0032 0x0354 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
16:33:13.0032 0x0354 \Device\Harddisk0\DR0 - ok
16:33:13.0314 0x0354 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
16:33:13.0329 0x0354 \Device\Harddisk1\DR1 - ok
16:33:13.0329 0x0354 ================ Scan VBR ==================================
16:33:13.0329 0x0354 [ E8BC60D6177C7E783C6D98CCE8B10C63 ] \Device\Harddisk0\DR0\Partition1
16:33:13.0329 0x0354 \Device\Harddisk0\DR0\Partition1 - ok
16:33:13.0329 0x0354 [ 99D9B226D8C32332D88CDBFE6DBE64BB ] \Device\Harddisk0\DR0\Partition2
16:33:13.0329 0x0354 \Device\Harddisk0\DR0\Partition2 - ok
16:33:13.0329 0x0354 [ A91CC8CE6FE74A032D6BD2321C959E54 ] \Device\Harddisk0\DR0\Partition3
16:33:13.0329 0x0354 \Device\Harddisk0\DR0\Partition3 - ok
16:33:13.0329 0x0354 [ BA9706B85B49A72CBD6A2F932C2120F5 ] \Device\Harddisk0\DR0\Partition4
16:33:13.0329 0x0354 \Device\Harddisk0\DR0\Partition4 - ok
16:33:13.0345 0x0354 [ DC14DD589E75DF8F3D7C982CA83AE39C ] \Device\Harddisk1\DR1\Partition1
16:33:13.0345 0x0354 \Device\Harddisk1\DR1\Partition1 - ok
16:33:13.0345 0x0354 ================ Scan generic autorun ======================
16:33:13.0345 0x0354 Logitech Download Assistant - ok
16:33:13.0345 0x0354 ShadowPlay - ok
16:33:13.0345 0x0354 WindowsDefender - ok
16:33:13.0345 0x0354 [ 793749330DCDE2C9850823C632AF5A89, 2EFC8DB3A0B350AAAA13FF96DAB75B2E2BBCC3FC807D9219B80CBFFFFF88544F ] C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\ASUSWSLoader.exe
16:33:13.0361 0x0354 WebStorage - ok
16:33:13.0361 0x0354 DV4TS.EXE - ok
16:33:13.0392 0x0354 OneDriveSetup - ok
16:33:13.0392 0x0354 OneDriveSetup - ok
16:33:13.0423 0x0354 [ 1D7DD340E13DF9585EABB849CFC3E11B, 31CCD9753402DC030C641214B4ECB48A757BCD9F427A143A88745C62EFF87766 ] C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
16:33:13.0423 0x0354 OneDrive - ok
16:33:13.0439 0x0354 [ F4DA83165AF5A49A967E7D37187BBD11, 4A85DE224C4AD6E1F8EE0AB472B8B0F9E8FED5E1255DF3EB1B174319E5785906 ] C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe
16:33:13.0439 0x0354 Dashlane - ok
16:33:13.0454 0x0354 [ 2E920FADD711940901519898F2D8A62E, A2781523781CD21A3FA8B08C87DCDBA9D9095A0333B8C07B5978931BD415204F ] C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe
16:33:13.0470 0x0354 DashlanePlugin - ok
16:33:13.0470 0x0354 ARLworks - ok
16:33:13.0470 0x0354 Waiting for KSN requests completion. In queue: 45
16:33:13.0595 0x15b8 Object required for P2P: [ AD521C349AA567683E1DA4361ECF7DFB ] TeamViewer
16:33:14.0486 0x0354 Waiting for KSN requests completion. In queue: 13
16:33:15.0491 0x0354 Waiting for KSN requests completion. In queue: 13
16:33:16.0507 0x0354 Waiting for KSN requests completion. In queue: 13
16:33:16.0601 0x15b8 Object send P2P result: true
16:33:17.0539 0x0354 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x60100 ( disabled : updated )
16:33:17.0554 0x0354 Win FW state via NFP2: enabled ( trusted )
16:33:17.0632 0x0354 ============================================================
16:33:17.0632 0x0354 Scan finished
16:33:17.0632 0x0354 ============================================================
16:33:17.0648 0x2fa0 Detected object count: 0
16:33:17.0648 0x2fa0 Actual detected object count: 0
16:33:24.0828 0x2570 ============================================================
16:33:24.0828 0x2570 Scan started
16:33:24.0828 0x2570 Mode: Manual; SigCheck; TDLFS;
16:33:24.0828 0x2570 ============================================================
16:33:24.0828 0x2570 KSN ping started
16:33:24.0906 0x2570 KSN ping finished: true
16:33:25.0453 0x2570 ================ Scan system memory ========================
16:33:25.0453 0x2570 System memory - ok
16:33:25.0453 0x2570 ================ Scan services =============================
16:33:25.0531 0x2570 1394ohci - ok
16:33:25.0531 0x2570 3ware - ok
16:33:25.0547 0x2570 ACPI - ok
16:33:25.0547 0x2570 AcpiDev - ok
16:33:25.0547 0x2570 acpiex - ok
16:33:25.0547 0x2570 acpipagr - ok
16:33:25.0547 0x2570 AcpiPmi - ok
16:33:25.0547 0x2570 acpitime - ok
16:33:25.0562 0x2570 ADP80XX - ok
16:33:25.0562 0x2570 AFD - ok
16:33:25.0609 0x2570 [ 021D06851E7AFF5C314039DF813608F3, 081B14840F4AD428B4407AA2E639369A45D174D9507BD107F33FE3A94FB8F8EC ] AGSService C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
16:33:25.0672 0x2570 AGSService - ok
16:33:25.0672 0x2570 ahcache - ok
16:33:25.0687 0x2570 [ 50910888109FA9C041D9256541BE70EC, 3E907506E386423DBD8DDCB36FDCE4F2FC2F90A522B24BEF60B8ED05F5A3BD0F ] AiCharger C:\WINDOWS\system32\DRIVERS\AiCharger.sys
16:33:25.0687 0x2570 AiCharger - ok
16:33:25.0703 0x2570 AJRouter - ok
16:33:25.0703 0x2570 ALG - ok
16:33:25.0703 0x2570 AmdK8 - ok
16:33:25.0703 0x2570 AmdPPM - ok
16:33:25.0703 0x2570 amdsata - ok
16:33:25.0703 0x2570 amdsbs - ok
16:33:25.0719 0x2570 amdxata - ok
16:33:25.0719 0x2570 AppID - ok
16:33:25.0719 0x2570 AppIDSvc - ok
16:33:25.0719 0x2570 Appinfo - ok
16:33:25.0719 0x2570 applockerfltr - ok
16:33:25.0734 0x2570 AppReadiness - ok
16:33:25.0734 0x2570 AppXSvc - ok
16:33:25.0734 0x2570 arcsas - ok
16:33:25.0734 0x2570 [ 16829ED03B336F1B09DE2D6939B39778, D3FBE494537B2CB6D66E6A15B0F73C22CEFD3D8702256B5B5FA5F99E3EF821B6 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
16:33:25.0750 0x2570 ASLDRService - ok
16:33:25.0750 0x2570 [ 116DD55EEF8843D7C526EB17A932822F, 003326A58256A5BF9912A0B4F6F39295C2909596B33C3837A0C85C7BA7523E14 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
16:33:25.0765 0x2570 ASMMAP64 - ok
16:33:25.0765 0x2570 [ AF0561974536C33073E0DF48C2F47C19, 792E2717B5A9AADB92E22C1778F39C3FE86045C34E09F2CEB4E3B1ED11ADC556 ] Asus WebStorage Windows Service C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe
16:33:25.0781 0x2570 Asus WebStorage Windows Service - detected UnsignedFile.Multi.Generic ( 1 )
16:33:25.0781 0x2570 Detect skipped due to KSN trusted
16:33:25.0781 0x2570 Asus WebStorage Windows Service - ok
16:33:25.0781 0x2570 [ 308437492F76E3498F5D9B8DB5E5B2C8, 2300B9EFC27B053CAB0E933F0193E11BA27B738A087DDA7E0BF0AD746CBFDBC3 ] AsusSGDrv C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys
16:33:25.0797 0x2570 AsusSGDrv - ok
16:33:25.0797 0x2570 AsyncMac - ok
16:33:25.0797 0x2570 atapi - ok
16:33:25.0797 0x2570 [ 89810E9E27C8BB0AFB01814523A76347, A85B817A16096730D8559FD5D5597CA1A9FA3F192FF83885840089AE8F7C9EF5 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
16:33:25.0812 0x2570 ATKGFNEXSrv - ok
16:33:25.0812 0x2570 [ 0E717D7FED23731863EC44B4031DC268, A6F98FE201320FE3FF041768E426008C86B15BA7593EA04B1AC71B6FAE837A1E ] ATKWMIACPIIO C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
16:33:25.0812 0x2570 ATKWMIACPIIO - ok
16:33:25.0828 0x2570 AudioEndpointBuilder - ok
16:33:25.0828 0x2570 Audiosrv - ok
16:33:25.0828 0x2570 AxInstSV - ok
16:33:25.0828 0x2570 b06bdrv - ok
16:33:25.0828 0x2570 BasicDisplay - ok
16:33:25.0844 0x2570 BasicRender - ok
16:33:25.0844 0x2570 bcmfn - ok
16:33:25.0844 0x2570 bcmfn2 - ok
16:33:25.0844 0x2570 BDESVC - ok
16:33:25.0844 0x2570 Beep - ok
16:33:25.0859 0x2570 BFE - ok
16:33:25.0859 0x2570 BITS - ok
16:33:25.0875 0x2570 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:33:25.0875 0x2570 Bonjour Service - ok
16:33:25.0890 0x2570 bowser - ok
16:33:25.0890 0x2570 BrokerInfrastructure - ok
16:33:25.0890 0x2570 Browser - ok
16:33:25.0890 0x2570 BthAvrcpTg - ok
16:33:25.0890 0x2570 BthEnum - ok
16:33:25.0906 0x2570 BthHFEnum - ok
16:33:25.0906 0x2570 bthhfhid - ok
16:33:25.0906 0x2570 BthHFSrv - ok
16:33:25.0906 0x2570 BthLEEnum - ok
16:33:25.0906 0x2570 BTHMODEM - ok
16:33:25.0922 0x2570 BthPan - ok
16:33:25.0922 0x2570 BTHPORT - ok
16:33:25.0922 0x2570 bthserv - ok
16:33:25.0922 0x2570 BTHUSB - ok
16:33:25.0922 0x2570 buttonconverter - ok
16:33:25.0922 0x2570 CapImg - ok
16:33:25.0937 0x2570 cdfs - ok
16:33:25.0937 0x2570 CDPSvc - ok
16:33:25.0937 0x2570 CDPUserSvc - ok
16:33:25.0937 0x2570 cdrom - ok
16:33:25.0953 0x2570 CertPropSvc - ok
16:33:25.0953 0x2570 cht4iscsi - ok
16:33:25.0953 0x2570 cht4vbd - ok
16:33:25.0953 0x2570 circlass - ok
16:33:25.0953 0x2570 CLFS - ok
16:33:26.0031 0x2570 [ 4B6F8B7BFDB04916CC11F07114ABC4B0, E2D9FB4D23231943FF8B3AC8EA87B194F965197EA1C25186733AAF034F4EE33A ] ClickToRunSvc C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
16:33:26.0078 0x2570 ClickToRunSvc - ok
16:33:26.0094 0x2570 ClipSVC - ok
16:33:26.0094 0x2570 clreg - ok
16:33:26.0094 0x2570 CmBatt - ok
16:33:26.0094 0x2570 CNG - ok
16:33:26.0109 0x2570 cnghwassist - ok
16:33:26.0125 0x2570 CompositeBus - ok
16:33:26.0125 0x2570 COMSysApp - ok
16:33:26.0140 0x2570 condrv - ok
16:33:26.0140 0x2570 CoreMessagingRegistrar - ok
16:33:26.0156 0x2570 [ 0F0BB33129C878432400F003599F466E, 91821B07F2902435DA0A763E00C8C63380C79B1A48A9713B28ACA75EC888A7BF ] cphs C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHeciSvc.exe
16:33:26.0172 0x2570 cphs - ok
16:33:26.0172 0x2570 [ 53C56B7FA0426DF2DEF08B7CBFFC3ABF, 19E5A5AD69D79993F1A5BE960569AD3DA35E5FFFF6674C73BCB96CE0CCE34D47 ] cplspcon C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHDCPSvc.exe
16:33:26.0187 0x2570 cplspcon - ok
16:33:26.0203 0x2570 CryptSvc - ok
16:33:26.0203 0x2570 dam - ok
16:33:26.0203 0x2570 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
16:33:26.0219 0x2570 dbupdate - ok
16:33:26.0219 0x2570 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
16:33:26.0219 0x2570 dbupdatem - ok
16:33:26.0234 0x2570 [ A4700D1F78539C0ED32FA50E64F9C692, 5CB03B5F36307BA152245BAD29CB2AC703BBE8197ABC0338A7092ADEA1C3221A ] dc3d C:\WINDOWS\System32\drivers\dc3d.sys
16:33:26.0234 0x2570 dc3d - ok
16:33:26.0250 0x2570 DcomLaunch - ok
16:33:26.0250 0x2570 DcpSvc - ok
16:33:26.0250 0x2570 defragsvc - ok
16:33:26.0250 0x2570 DeviceAssociationService - ok
16:33:26.0250 0x2570 DeviceInstall - ok
16:33:26.0266 0x2570 DevQueryBroker - ok
16:33:26.0266 0x2570 Dfsc - ok
16:33:26.0266 0x2570 [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
16:33:26.0281 0x2570 dg_ssudbus - ok
16:33:26.0281 0x2570 Dhcp - ok
16:33:26.0281 0x2570 diagnosticshub.standardcollector.service - ok
16:33:26.0281 0x2570 DiagTrack - ok
16:33:26.0281 0x2570 disk - ok
16:33:26.0297 0x2570 DmEnrollmentSvc - ok
16:33:26.0297 0x2570 dmvsc - ok
16:33:26.0297 0x2570 dmwappushservice - ok
16:33:26.0297 0x2570 Dnscache - ok
16:33:26.0297 0x2570 dot3svc - ok
16:33:26.0312 0x2570 DPS - ok
16:33:26.0312 0x2570 [ 85680CFC129C7BD79B09404DB833DB78, 62A5AF0ACF16ACAC84F95AB9E82E43A9F1A6D4EBED3319E1C83112FB41678EAA ] dptf_acpi C:\WINDOWS\System32\drivers\dptf_acpi.sys
16:33:26.0312 0x2570 dptf_acpi - ok
16:33:26.0328 0x2570 [ 4FC126DB5602E8661E9D78818C3FCED7, DC5CE610B408C02B1B2567BF5B8BB2B52E0C6699A5987FE3FF34AECC78071E98 ] dptf_cpu C:\WINDOWS\System32\drivers\dptf_cpu.sys
16:33:26.0328 0x2570 dptf_cpu - ok
16:33:26.0328 0x2570 drmkaud - ok
16:33:26.0328 0x2570 DsmSvc - ok
16:33:26.0344 0x2570 DsSvc - ok
16:33:26.0344 0x2570 DXGKrnl - ok
16:33:26.0344 0x2570 EapHost - ok
16:33:26.0344 0x2570 ebdrv - ok
16:33:26.0344 0x2570 EFS - ok
16:33:26.0359 0x2570 EhStorClass - ok
16:33:26.0359 0x2570 EhStorTcgDrv - ok
16:33:26.0359 0x2570 embeddedmode - ok
16:33:26.0359 0x2570 EntAppSvc - ok
16:33:26.0359 0x2570 ErrDev - ok
16:33:26.0437 0x2570 [ BB6815A7650EB9CA27D6AE53D636C028, FC78D6B8F2F27E6500AF2823C6CA7072503A344201C26D34319383B32E2CA92C ] esifsvc C:\WINDOWS\SysWoW64\esif_uf.exe
16:33:26.0469 0x2570 esifsvc - ok
16:33:26.0469 0x2570 [ 438D377AF3651B762568AB6CFAE3C831, F1D28D7F4AC83076D2D7B271FE015410953B7A2F1CFFAEC456F6CF3A2909A47E ] esif_lf C:\WINDOWS\system32\DRIVERS\esif_lf.sys
16:33:26.0484 0x2570 esif_lf - ok
16:33:26.0484 0x2570 EventSystem - ok
16:33:26.0500 0x2570 [ 6DCB7233AAD29E43331B3ECFCC8FB8D1, A8E203BB774A4E055C871E9A28F958287A75E8BEA42496E6BA9983063CF6C539 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
16:33:26.0516 0x2570 EvtEng - ok
16:33:26.0516 0x2570 exfat - ok
16:33:26.0516 0x2570 fastfat - ok
16:33:26.0531 0x2570 Fax - ok
16:33:26.0531 0x2570 fdc - ok
16:33:26.0531 0x2570 fdPHost - ok
16:33:26.0531 0x2570 FDResPub - ok
16:33:26.0531 0x2570 fhsvc - ok
16:33:26.0547 0x2570 FileCrypt - ok
16:33:26.0547 0x2570 FileInfo - ok
16:33:26.0547 0x2570 Filetrace - ok
16:33:26.0547 0x2570 flpydisk - ok
16:33:26.0547 0x2570 FltMgr - ok
16:33:26.0547 0x2570 FontCache - ok
16:33:26.0562 0x2570 FontCache3.0.0.0 - ok
16:33:26.0562 0x2570 FrameServer - ok
16:33:26.0562 0x2570 FsDepends - ok
16:33:26.0562 0x2570 Fs_Rec - ok
16:33:26.0578 0x2570 fvevol - ok
16:33:26.0578 0x2570 gencounter - ok
16:33:26.0578 0x2570 genericusbfn - ok
16:33:26.0578 0x2570 GPIOClx0101 - ok
16:33:26.0578 0x2570 gpsvc - ok
16:33:26.0578 0x2570 GpuEnergyDrv - ok
16:33:26.0594 0x2570 [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:33:26.0594 0x2570 gupdate - ok
16:33:26.0609 0x2570 [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:33:26.0609 0x2570 gupdatem - ok
16:33:26.0609 0x2570 HDAudBus - ok
16:33:26.0625 0x2570 HidBatt - ok
16:33:26.0625 0x2570 HidBth - ok
16:33:26.0625 0x2570 hidi2c - ok
16:33:26.0625 0x2570 hidinterrupt - ok
16:33:26.0625 0x2570 HidIr - ok
16:33:26.0641 0x2570 hidserv - ok
16:33:26.0641 0x2570 [ 38DA94B6DD8022DA43810E4328608E54, ACE0A36143FF37BC42F136DB7317028540D1C0F21A5FD13F67E1A3DB2426A5EA ] HIDSwitch C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys
16:33:26.0641 0x2570 HIDSwitch - ok
16:33:26.0641 0x2570 HidUsb - ok
16:33:26.0656 0x2570 HomeGroupListener - ok
16:33:26.0656 0x2570 HomeGroupProvider - ok
16:33:26.0656 0x2570 HpSAMD - ok
16:33:26.0656 0x2570 HTTP - ok
16:33:26.0656 0x2570 HvHost - ok
16:33:26.0672 0x2570 hvservice - ok
16:33:26.0672 0x2570 hwpolicy - ok
16:33:26.0672 0x2570 hyperkbd - ok
16:33:26.0672 0x2570 i8042prt - ok
16:33:26.0672 0x2570 iagpio - ok
16:33:26.0687 0x2570 iai2c - ok
16:33:26.0687 0x2570 iaLPSS2i_GPIO2 - ok
16:33:26.0687 0x2570 iaLPSS2i_I2C - ok
16:33:26.0687 0x2570 [ 54829E0B5F2FF133E6AEF13104689FA1, 322B3DA3E3BACE1A8584DA5AADA527983FB40B49AFFE23AA002295146435BB12 ] iaLPSS2_I2C C:\WINDOWS\System32\drivers\iaLPSS2_I2C.sys
16:33:26.0703 0x2570 iaLPSS2_I2C - ok
16:33:26.0703 0x2570 iaLPSSi_GPIO - ok
16:33:26.0703 0x2570 iaLPSSi_I2C - ok
16:33:26.0734 0x2570 [ 5F6CA62BE8ECC4D0E1F5D4D4A02B456B, F720A1F14C9053D24C5B42827E5F9578A27F3E62A6C65A3CFA068E580F02F072 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
16:33:26.0766 0x2570 iaStorA - ok
16:33:26.0766 0x2570 iaStorAV - ok
16:33:26.0781 0x2570 iaStorV - ok
16:33:26.0781 0x2570 ibbus - ok
16:33:26.0781 0x2570 ibtsiva - ok
16:33:26.0781 0x2570 [ 606148419C4F99C3102E1EF5E3AFC72A, 63DB5D2ABFB3A0F048B87FCF4B32C4B862F396DDBD3AC5E52951648C99BEC3DD ] ibtusb C:\WINDOWS\system32\DRIVERS\ibtusb.sys
16:33:26.0797 0x2570 ibtusb - ok
16:33:26.0797 0x2570 icssvc - ok
16:33:27.0000 0x2570 [ 42A8E802D412117D6707FB5CB819CF33, 585C81320D58F731472827D9E67F5752ACB554BB5333221A3D91E6F60454E26D ] igfx C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igdkmd64.sys
16:33:27.0156 0x2570 igfx - ok
16:33:27.0188 0x2570 [ 5495E7F548D0DD4BD5A3D2C071DB1FB3, 320344AEF67751BA80E5737F90D736DEF6555D1610F27D4BE86747C1D8200E31 ] igfxCUIService2.0.0.0 C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe
16:33:27.0188 0x2570 igfxCUIService2.0.0.0 - ok
16:33:27.0203 0x2570 IKEEXT - ok
16:33:27.0203 0x2570 IndirectKmd - ok
16:33:27.0203 0x2570 [ AFA7F1696B431C07729E9BF2565D6045, 77966485A23581C079A480BEC13982AB926F5C62686F48A44F8C562B3C67745B ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
16:33:27.0219 0x2570 intaud_WaveExtensible - ok
16:33:27.0297 0x2570 [ A1F8EEE8C5DF4BC77376485F133750C7, 4AA5BBBA31302640A825DB26507B6FE494CE25966940FA770EFED8D78EAFA491 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
16:33:27.0359 0x2570 IntcAzAudAddService - ok
16:33:27.0391 0x2570 [ 739A977693ACC5D64967F3809BAB1854, 1FAE0ABB0412053D9ACE960C1233E2F556BD8F524A29AB7242847C8D6B4B87AD ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
16:33:27.0406 0x2570 IntcDAud - ok
16:33:27.0438 0x2570 [ B63CF22D1AD2ABDC39D85851B2BEAA6D, 37E9043BABB5895BFD2B59AFB60C438B992C6EAA1B5FDE5B3445314343F4C406 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
16:33:27.0453 0x2570 Intel(R) Capability Licensing Service TCP IP Interface - ok
16:33:27.0453 0x2570 [ 8213094EA736A9C575AB0E22AD09B0BA, 12670A466B5AA37283BD4CB481D000DE3AE2A8D1BD159F67A41703A6FE5675EC ] Intel(R) Security Assist C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
16:33:27.0469 0x2570 Intel(R) Security Assist - detected UnsignedFile.Multi.Generic ( 1 )
16:33:27.0469 0x2570 Detect skipped due to KSN trusted
16:33:27.0469 0x2570 Intel(R) Security Assist - ok
16:33:27.0484 0x2570 [ 97AC7006869B90F9B09445B7122BA90E, B1C8FCD6DEFA468BAE0A905999C8AA828656D6E7A6EF60F99A4FBC1A0597346E ] Intel(R) WiDi SAM C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe
16:33:27.0484 0x2570 Intel(R) WiDi SAM - ok
16:33:27.0484 0x2570 intelide - ok
16:33:27.0484 0x2570 intelpep - ok
16:33:27.0500 0x2570 intelppm - ok
16:33:27.0500 0x2570 [ ED8B27761A86EA41BDCCE7EDC44155DB, 9D8E06836C6D19079179CD4022754F533D6C5556A153E3A8A2A3AA9EF3390931 ] IntelUSBoverIP C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
16:33:27.0516 0x2570 IntelUSBoverIP - ok
16:33:27.0516 0x2570 iorate - ok
16:33:27.0531 0x2570 IpFilterDriver - ok
16:33:27.0531 0x2570 iphlpsvc - ok
16:33:27.0531 0x2570 IPMIDRV - ok
16:33:27.0531 0x2570 IPNAT - ok
16:33:27.0531 0x2570 irda - ok
16:33:27.0531 0x2570 IRENUM - ok
16:33:27.0547 0x2570 irmon - ok
16:33:27.0547 0x2570 [ 1DFC3CCA51785254C5604238BB1A5467, 31451A90A91AEE14C6B24F84CB9816E5C77179D411B8B3E8547F538235BEEFB0 ] isaHelperSvc C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
16:33:27.0547 0x2570 isaHelperSvc - detected UnsignedFile.Multi.Generic ( 1 )
16:33:27.0547 0x2570 Detect skipped due to KSN trusted
16:33:27.0547 0x2570 isaHelperSvc - ok
16:33:27.0547 0x2570 isapnp - ok
16:33:27.0563 0x2570 iScsiPrt - ok
16:33:27.0563 0x2570 [ DA0A946E6C4228B659FA798EF0B075C1, BC2F5710D6165615CD578A970BC154C8DB1ECCA5725D09A29954E9BE8FAC0ED7 ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys
16:33:27.0563 0x2570 iwdbus - ok
16:33:27.0578 0x2570 [ 1D6E77475AF059458AB7E15034EE1F9D, DEB72B8DCD2341373CBB5BD2915EE991E539864C15E30198B8B3638D42228324 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
16:33:27.0578 0x2570 jhi_service - ok
16:33:27.0594 0x2570 kbdclass - ok
16:33:27.0594 0x2570 kbdhid - ok
16:33:27.0594 0x2570 kdnic - ok
16:33:27.0594 0x2570 KeyIso - ok
16:33:27.0594 0x2570 KSecDD - ok
16:33:27.0609 0x2570 KSecPkg - ok
16:33:27.0609 0x2570 ksthunk - ok
16:33:27.0609 0x2570 KtmRm - ok
16:33:27.0609 0x2570 LanmanServer - ok
16:33:27.0609 0x2570 LanmanWorkstation - ok
16:33:27.0656 0x2570 [ 303C2F9010876D1A43616EB94E37EEF6, 224F6E085C6EB81394C05AFB5B12674A3F3790B1EBE3214748569EF288353A9C ] LCTechSSDToolAsus C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe
16:33:27.0703 0x2570 LCTechSSDToolAsus - ok
16:33:27.0719 0x2570 lfsvc - ok
16:33:27.0719 0x2570 LicenseManager - ok
16:33:27.0719 0x2570 lltdio - ok
16:33:27.0719 0x2570 lltdsvc - ok
16:33:27.0734 0x2570 lmhosts - ok
16:33:27.0734 0x2570 [ 258B7A8D42365472A184C064154F265F, 70FDBE83157C6EABF0223C54A6C57137D52E389D0118BFAD4E2BF11D15507354 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:33:27.0750 0x2570 LMS - ok
16:33:27.0750 0x2570 LSI_SAS - ok
16:33:27.0766 0x2570 LSI_SAS2i - ok
16:33:27.0766 0x2570 LSI_SAS3i - ok
16:33:27.0766 0x2570 LSI_SSS - ok
16:33:27.0766 0x2570 LSM - ok
16:33:27.0766 0x2570 luafv - ok
16:33:27.0766 0x2570 MapsBroker - ok
16:33:27.0781 0x2570 [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
16:33:27.0781 0x2570 MBAMProtector - ok
16:33:27.0813 0x2570 [ 9611577752E293259C7DCE19E9026362, 8CB5DFD63FA15603BB6FA6B501E09ED7F4DE0E8F68CB28B78CECAC3711BEFD24 ] MBAMScheduler C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
16:33:27.0844 0x2570 MBAMScheduler - ok
16:33:27.0859 0x2570 [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
16:33:27.0891 0x2570 MBAMService - ok
16:33:27.0891 0x2570 [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
16:33:27.0906 0x2570 MBAMSwissArmy - ok
16:33:27.0906 0x2570 [ 898415AC0B5F1D2A9A48ABCB68A6DC4B, E1FD9AE5E22E3E5A18288E66A6184E92A4B63A1274DCE147A7728BB09C6A225E ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
16:33:27.0906 0x2570 MBAMWebAccessControl - ok
16:33:27.0906 0x2570 megasas - ok
16:33:27.0922 0x2570 megasas2i - ok
16:33:27.0922 0x2570 megasr - ok
16:33:27.0922 0x2570 [ 6ECDA51525C123C55ABC470F2144F925, 7B2E8976F126219AF0953FD641E613A9336CCC80843AF4A37AA71067D55CCBBB ] MEIx64 C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
16:33:27.0938 0x2570 MEIx64 - ok
16:33:27.0938 0x2570 MessagingService - ok
16:33:27.0938 0x2570 mlx4_bus - ok
16:33:27.0938 0x2570 MMCSS - ok
16:33:27.0953 0x2570 Modem - ok
16:33:27.0953 0x2570 monitor - ok
16:33:27.0953 0x2570 mouclass - ok
16:33:27.0953 0x2570 mouhid - ok
16:33:27.0953 0x2570 mountmgr - ok
16:33:27.0969 0x2570 mpsdrv - ok
16:33:27.0969 0x2570 MpsSvc - ok
16:33:27.0969 0x2570 MRxDAV - ok
16:33:27.0969 0x2570 mrxsmb - ok
16:33:27.0969 0x2570 mrxsmb10 - ok
16:33:27.0969 0x2570 mrxsmb20 - ok
16:33:27.0985 0x2570 MsBridge - ok
16:33:27.0985 0x2570 MSDTC - ok
16:33:27.0985 0x2570 Msfs - ok
16:33:27.0985 0x2570 msgpiowin32 - ok
16:33:28.0000 0x2570 mshidkmdf - ok
16:33:28.0000 0x2570 mshidumdf - ok
16:33:28.0000 0x2570 msisadrv - ok
16:33:28.0000 0x2570 MSiSCSI - ok
16:33:28.0000 0x2570 msiserver - ok
16:33:28.0016 0x2570 MSKSSRV - ok
16:33:28.0016 0x2570 MsLldp - ok
16:33:28.0016 0x2570 MSPCLOCK - ok
16:33:28.0016 0x2570 MSPQM - ok
16:33:28.0016 0x2570 MsRPC - ok
16:33:28.0031 0x2570 mssmbios - ok
16:33:28.0031 0x2570 MSTEE - ok
16:33:28.0031 0x2570 MTConfig - ok
16:33:28.0031 0x2570 Mup - ok
16:33:28.0031 0x2570 mvumis - ok
16:33:28.0047 0x2570 [ F1F6EE6C068CBDB80BAC43A79591F1F2, 39387A25ECFBFDD5B6A43A9A2CA2EC5703D0CCCFFE36C989B0E461B72C242D1C ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
16:33:28.0047 0x2570 MyWiFiDHCPDNS - ok
16:33:28.0063 0x2570 NativeWifiP - ok
16:33:28.0063 0x2570 NcaSvc - ok
16:33:28.0063 0x2570 NcbService - ok
16:33:28.0063 0x2570 NcdAutoSetup - ok
16:33:28.0078 0x2570 ndfltr - ok
16:33:28.0078 0x2570 NDIS - ok
16:33:28.0078 0x2570 NdisCap - ok
16:33:28.0078 0x2570 NdisImPlatform - ok
16:33:28.0078 0x2570 NdisTapi - ok
16:33:28.0078 0x2570 Ndisuio - ok
16:33:28.0094 0x2570 NdisVirtualBus - ok
16:33:28.0094 0x2570 NdisWan - ok
16:33:28.0094 0x2570 ndiswanlegacy - ok
16:33:28.0094 0x2570 ndproxy - ok
16:33:28.0094 0x2570 Ndu - ok
16:33:28.0110 0x2570 NetAdapterCx - ok
16:33:28.0110 0x2570 NetBIOS - ok
16:33:28.0110 0x2570 NetBT - ok
16:33:28.0110 0x2570 Netlogon - ok
16:33:28.0110 0x2570 Netman - ok
16:33:28.0110 0x2570 netprofm - ok
16:33:28.0125 0x2570 NetSetupSvc - ok
16:33:28.0141 0x2570 NetTcpPortSharing - ok
16:33:28.0141 0x2570 Netwtw04 - ok
16:33:28.0141 0x2570 NgcCtnrSvc - ok
16:33:28.0141 0x2570 NgcSvc - ok
16:33:28.0156 0x2570 NlaSvc - ok
16:33:28.0156 0x2570 Npfs - ok
16:33:28.0156 0x2570 npsvctrig - ok
16:33:28.0156 0x2570 nsi - ok
16:33:28.0156 0x2570 nsiproxy - ok
16:33:28.0172 0x2570 NTFS - ok
16:33:28.0172 0x2570 Null - ok
16:33:28.0188 0x2570 [ E5FB1DED60CD5461625955E00838541A, 5F8EF2B1169E0C8F1CF3638A1C670ADAE9DC7D5EAF114D3F91C0556967311EB9 ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
16:33:28.0203 0x2570 NvContainerLocalSystem - ok
16:33:28.0203 0x2570 [ E5FB1DED60CD5461625955E00838541A, 5F8EF2B1169E0C8F1CF3638A1C670ADAE9DC7D5EAF114D3F91C0556967311EB9 ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
16:33:28.0219 0x2570 NvContainerNetworkService - ok
16:33:28.0250 0x2570 [ EDF2A6D3EC66A6175BF9C48356130F81, 3AFEFE39D911D0298F382AA98B3C7C2EE147211A09D438C25657512D5840E53E ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
16:33:28.0266 0x2570 NVIDIA Wireless Controller Service - ok
16:33:28.0516 0x2570 [ 76ECA562B95DB26C64BEC14BB188A3F6, B4DB40D391B227393EEC13659C64B03499632FD11A75E5183BE8A0C8F3C9688B ] nvlddmkm C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvlddmkm.sys
16:33:28.0735 0x2570 nvlddmkm - ok
16:33:28.0750 0x2570 nvraid - ok
16:33:28.0750 0x2570 nvstor - ok
16:33:28.0750 0x2570 [ E5340E353E5DB0350DE759C77CD4C3F5, 4D7FE3EE2101FD6208BA56D876A6622175D8B817DCCCE5D3CE8D0026AAE93174 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:33:28.0766 0x2570 NvStreamKms - ok
16:33:28.0766 0x2570 [ 1A059C00CD7D0CC0CC9FD03E77FDC646, C9E41B0C8DF5C70C410F229F95CC1EAD24BC249D1F0939AA06D9A86C60B6EF41 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
16:33:28.0766 0x2570 nvvad_WaveExtensible - ok
16:33:28.0782 0x2570 OneSyncSvc - ok
16:33:28.0782 0x2570 [ D1AF4C86F851F9A345A400FD3B9D673A, BCC7B3AF92A2AB09CC52FB10107E209C02AC078E5F0197AEC40D7AE56F3A7CA0 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:33:28.0797 0x2570 ose64 - ok
16:33:28.0797 0x2570 p2pimsvc - ok
16:33:28.0797 0x2570 p2psvc - ok
16:33:28.0797 0x2570 Parport - ok
16:33:28.0813 0x2570 partmgr - ok
16:33:28.0813 0x2570 PcaSvc - ok
16:33:28.0813 0x2570 pci - ok
16:33:28.0813 0x2570 pciide - ok
16:33:28.0813 0x2570 pcmcia - ok
16:33:28.0829 0x2570 pcw - ok
16:33:28.0829 0x2570 pdc - ok
16:33:28.0829 0x2570 PEAUTH - ok
16:33:28.0829 0x2570 percsas2i - ok
16:33:28.0829 0x2570 percsas3i - ok
16:33:28.0875 0x2570 PerfHost - ok
16:33:28.0875 0x2570 PhoneSvc - ok
16:33:28.0875 0x2570 PimIndexMaintenanceSvc - ok
16:33:28.0891 0x2570 pla - ok
16:33:28.0891 0x2570 PlugPlay - ok
16:33:28.0891 0x2570 PNRPAutoReg - ok
16:33:28.0891 0x2570 PNRPsvc - ok
16:33:28.0907 0x2570 PolicyAgent - ok
16:33:28.0907 0x2570 Power - ok
16:33:28.0907 0x2570 PptpMiniport - ok
16:33:28.0985 0x2570 [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
16:33:29.0079 0x2570 PrintNotify - ok
16:33:29.0079 0x2570 Processor - ok
16:33:29.0094 0x2570 ProfSvc - ok
16:33:29.0094 0x2570 Psched - ok
16:33:29.0094 0x2570 QWAVE - ok
16:33:29.0094 0x2570 QWAVEdrv - ok
16:33:29.0094 0x2570 RasAcd - ok
16:33:29.0094 0x2570 RasAgileVpn - ok
16:33:29.0110 0x2570 RasAuto - ok
16:33:29.0110 0x2570 Rasl2tp - ok
16:33:29.0110 0x2570 RasMan - ok
16:33:29.0110 0x2570 RasPppoe - ok
16:33:29.0110 0x2570 RasSstp - ok
16:33:29.0125 0x2570 rdbss - ok
16:33:29.0125 0x2570 rdpbus - ok
16:33:29.0125 0x2570 RDPDR - ok
16:33:29.0125 0x2570 RdpVideoMiniport - ok
16:33:29.0141 0x2570 rdyboost - ok
16:33:29.0141 0x2570 ReFSv1 - ok
16:33:29.0141 0x2570 [ B91EE7363FDC2B0CB1C5E6190B46F7DC, 650EE0262F2EE242D99A5BE013A64F76CA3537274C0B9313F9BD7741ACF38017 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
16:33:29.0157 0x2570 RegSrvc - ok
16:33:29.0157 0x2570 RemoteAccess - ok
16:33:29.0157 0x2570 RemoteRegistry - ok
16:33:29.0157 0x2570 RetailDemo - ok
16:33:29.0157 0x2570 RFCOMM - ok
16:33:29.0172 0x2570 RmSvc - ok
16:33:29.0172 0x2570 RpcEptMapper - ok
16:33:29.0172 0x2570 RpcLocator - ok
16:33:29.0172 0x2570 RpcSs - ok
16:33:29.0172 0x2570 rspndr - ok
16:33:29.0188 0x2570 [ E11A3F79475F9D019CD51ADCCC377909, CF14C494C4A969233C1D2B32A56C86C8636AC70004725B53447C42EB63C31BA9 ] rt640x64 C:\WINDOWS\System32\drivers\rt640x64.sys
16:33:29.0219 0x2570 rt640x64 - ok
16:33:29.0235 0x2570 [ F75C6FFD09A6C51E4B5166E05D97FD96, 12174DA89456347704455B1544C6E0FB54E55504E6C88F5E9962018D53D6F84D ] RTSPER C:\WINDOWS\system32\DRIVERS\RtsPer.sys
16:33:29.0250 0x2570 RTSPER - ok
16:33:29.0250 0x2570 s3cap - ok
16:33:29.0250 0x2570 SamSs - ok
16:33:29.0266 0x2570 sbp2port - ok
16:33:29.0266 0x2570 SCardSvr - ok
16:33:29.0266 0x2570 ScDeviceEnum - ok
16:33:29.0266 0x2570 scfilter - ok
16:33:29.0266 0x2570 Schedule - ok
16:33:29.0282 0x2570 scmbus - ok
16:33:29.0282 0x2570 scmdisk0101 - ok
16:33:29.0282 0x2570 SCPolicySvc - ok
16:33:29.0282 0x2570 sdbus - ok
16:33:29.0282 0x2570 SDRSVC - ok
16:33:29.0282 0x2570 sdstor - ok
16:33:29.0297 0x2570 seclogon - ok
16:33:29.0297 0x2570 SENS - ok
16:33:29.0297 0x2570 SensorDataService - ok
16:33:29.0297 0x2570 SensorService - ok
16:33:29.0297 0x2570 SensrSvc - ok
16:33:29.0313 0x2570 SerCx - ok
16:33:29.0313 0x2570 SerCx2 - ok
16:33:29.0313 0x2570 Serenum - ok
16:33:29.0313 0x2570 Serial - ok
16:33:29.0329 0x2570 sermouse - ok
16:33:29.0329 0x2570 SessionEnv - ok
16:33:29.0329 0x2570 sfloppy - ok
16:33:29.0329 0x2570 SharedAccess - ok
16:33:29.0344 0x2570 ShellHWDetection - ok
16:33:29.0344 0x2570 shpamsvc - ok
16:33:29.0344 0x2570 SiSRaid2 - ok
16:33:29.0344 0x2570 SiSRaid4 - ok
16:33:29.0344 0x2570 smphost - ok
16:33:29.0344 0x2570 SmsRouter - ok
16:33:29.0360 0x2570 SNMPTRAP - ok
16:33:29.0360 0x2570 spaceport - ok
16:33:29.0360 0x2570 SpbCx - ok
16:33:29.0375 0x2570 Spooler - ok
16:33:29.0375 0x2570 sppsvc - ok
16:33:29.0375 0x2570 srv - ok
16:33:29.0375 0x2570 srv2 - ok
16:33:29.0375 0x2570 srvnet - ok
16:33:29.0375 0x2570 SSDPSRV - ok
16:33:29.0391 0x2570 [ 3725AD72054E339CAE17A252AE0EE0FD, 7205D5558C37E6B29056B477945546887368843E195C956CB67E39F14ACD18D5 ] sshid C:\WINDOWS\System32\drivers\sshid.sys
16:33:29.0391 0x2570 sshid - ok
16:33:29.0391 0x2570 SstpSvc - ok
16:33:29.0407 0x2570 [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
16:33:29.0407 0x2570 ssudmdm - ok
16:33:29.0422 0x2570 StateRepository - ok
16:33:29.0422 0x2570 stexstor - ok
16:33:29.0422 0x2570 stisvc - ok
16:33:29.0422 0x2570 storahci - ok
16:33:29.0422 0x2570 storflt - ok
16:33:29.0438 0x2570 stornvme - ok
16:33:29.0438 0x2570 storqosflt - ok
16:33:29.0438 0x2570 StorSvc - ok
16:33:29.0438 0x2570 storufs - ok
16:33:29.0438 0x2570 storvsc - ok
16:33:29.0454 0x2570 svsvc - ok
16:33:29.0454 0x2570 swenum - ok
16:33:29.0454 0x2570 swprv - ok
16:33:29.0454 0x2570 Synth3dVsc - ok
16:33:29.0454 0x2570 SysMain - ok
16:33:29.0454 0x2570 SystemEventsBroker - ok
16:33:29.0469 0x2570 TabletInputService - ok
16:33:29.0469 0x2570 TapiSrv - ok
16:33:29.0469 0x2570 Tcpip - ok
16:33:29.0469 0x2570 Tcpip6 - ok
16:33:29.0485 0x2570 tcpipreg - ok
16:33:29.0485 0x2570 tdx - ok
16:33:29.0674 0x2570 [ AD521C349AA567683E1DA4361ECF7DFB, 5BA9DD327565EAF11481553BCBD01C1BFAA6651ABED4D3587D6F742B06294A09 ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
16:33:29.0830 0x2570 TeamViewer - ok
16:33:29.0830 0x2570 Object required for P2P: [ AD521C349AA567683E1DA4361ECF7DFB ] TeamViewer
16:33:30.0033 0x2570 Object send P2P result: true
16:33:30.0049 0x2570 terminpt - ok
16:33:30.0049 0x2570 TermService - ok
16:33:30.0064 0x2570 Themes - ok
16:33:30.0064 0x2570 TieringEngineService - ok
16:33:30.0064 0x2570 tiledatamodelsvc - ok
16:33:30.0064 0x2570 TimeBrokerSvc - ok
16:33:30.0080 0x2570 [ 3B2A2F3EE3D783A667F75B2814D223B1, C6B474C24161A00B331AD26DD4B218284CDCE1D60B594F81B3F7BACBCED50D89 ] Tipuly C:\Program Files (x86)\Drabapythebution\whtcore.dll
16:33:30.0096 0x2570 Tipuly - detected UnsignedFile.Multi.Generic ( 1 )
16:33:30.0142 0x2570 Tipuly ( UnsignedFile.Multi.Generic ) - warning
16:33:30.0142 0x2570 Force sending object to P2P due to detect: Tipuly
16:33:30.0299 0x2570 Object send P2P result: true
16:33:30.0408 0x2570 TPM - ok
16:33:30.0408 0x2570 TrkWks - ok
16:33:30.0408 0x2570 TrustedInstaller - ok
16:33:30.0486 0x2570 [ C3CC02C678D760B12F2F75BB5FD4075A, 4491EC28E5238DE9052CDB5DA31CAA87D6C287DCBAEB2F545D495F6B8D9BDB1A ] TSMaintenanceService C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe
16:33:30.0549 0x2570 TSMaintenanceService - ok
16:33:30.0549 0x2570 tsusbflt - ok
16:33:30.0565 0x2570 TsUsbGD - ok
16:33:30.0565 0x2570 tunnel - ok
16:33:30.0565 0x2570 tzautoupdate - ok
16:33:30.0565 0x2570 UASPStor - ok
16:33:30.0580 0x2570 [ EB482DBC9786F1A9E3ED5AB6864794FA, 4154B259587D743612830F67800450DD04031C215A8459CC26E11D3498640BA0 ] UCGuard C:\WINDOWS\system32\DRIVERS\ucguard.sys
16:33:30.0580 0x2570 UCGuard - ok
16:33:30.0580 0x2570 UcmCx0101 - ok
16:33:30.0596 0x2570 UcmTcpciCx0101 - ok
16:33:30.0596 0x2570 UcmUcsi - ok
16:33:30.0596 0x2570 Ucx01000 - ok
16:33:30.0596 0x2570 UdeCx - ok
16:33:30.0596 0x2570 udfs - ok
16:33:30.0596 0x2570 UEFI - ok
16:33:30.0611 0x2570 Ufx01000 - ok
16:33:30.0611 0x2570 UfxChipidea - ok
16:33:30.0611 0x2570 ufxsynopsys - ok
16:33:30.0611 0x2570 UI0Detect - ok
16:33:30.0627 0x2570 umbus - ok
16:33:30.0627 0x2570 UmPass - ok
16:33:30.0627 0x2570 UmRdpService - ok
16:33:30.0627 0x2570 UnistoreSvc - ok
16:33:30.0643 0x2570 upnphost - ok
16:33:30.0643 0x2570 UrsChipidea - ok
16:33:30.0643 0x2570 UrsCx01000 - ok
16:33:30.0643 0x2570 UrsSynopsys - ok
16:33:30.0658 0x2570 [ DB2D395585587BC4D63AB7DCC7826EF2, 1B7D39CB6E15A875061BDD1433FF6F344A4F1710BF7B9471CBFFCD722EB66B68 ] usb3Hub C:\WINDOWS\System32\drivers\usb3Hub.sys
16:33:30.0658 0x2570 usb3Hub - ok
16:33:30.0658 0x2570 usbccgp - ok
16:33:30.0658 0x2570 usbcir - ok
16:33:30.0674 0x2570 usbehci - ok
16:33:30.0674 0x2570 usbhub - ok
16:33:30.0674 0x2570 USBHUB3 - ok
16:33:30.0674 0x2570 usbohci - ok
16:33:30.0689 0x2570 usbprint - ok
16:33:30.0689 0x2570 usbser - ok
16:33:30.0689 0x2570 USBSTOR - ok
16:33:30.0689 0x2570 usbuhci - ok
16:33:30.0689 0x2570 usbvideo - ok
16:33:30.0705 0x2570 USBXHCI - ok
16:33:30.0705 0x2570 UserDataSvc - ok
16:33:30.0705 0x2570 UserManager - ok
16:33:30.0705 0x2570 UsoSvc - ok
16:33:30.0721 0x2570 VaultSvc - ok
16:33:30.0721 0x2570 [ CDA796F41C2B64CEEC143B3A86904CFB, 8D9CACB74608C145A75424F4169E447A9EFA0EC3DD1412F097B56F86C0FC8E6E ] VBoxDrv C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys
16:33:30.0736 0x2570 VBoxDrv - ok
16:33:30.0736 0x2570 [ 0E3C4F20B2CE21168F3242D9CAC6CBF2, 1BD5E1A2000EBC1C335A8960ACDCD08BDC8230F533A80D086D2EE6FE4990EA02 ] VBoxUSBMon C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
16:33:30.0752 0x2570 VBoxUSBMon - ok
16:33:30.0752 0x2570 vdrvroot - ok
16:33:30.0752 0x2570 vds - ok
16:33:30.0752 0x2570 VerifierExt - ok
16:33:30.0752 0x2570 vhdmp - ok
16:33:30.0768 0x2570 vhf - ok
16:33:30.0768 0x2570 vmbus - ok
16:33:30.0768 0x2570 VMBusHID - ok
16:33:30.0768 0x2570 vmgid - ok
16:33:30.0768 0x2570 vmicguestinterface - ok
16:33:30.0783 0x2570 vmicheartbeat - ok
16:33:30.0783 0x2570 vmickvpexchange - ok
16:33:30.0783 0x2570 vmicrdv - ok
16:33:30.0783 0x2570 vmicshutdown - ok
16:33:30.0783 0x2570 vmictimesync - ok
16:33:30.0783 0x2570 vmicvmsession - ok
16:33:30.0799 0x2570 vmicvss - ok
16:33:30.0799 0x2570 VMnetAdapter - ok
16:33:30.0799 0x2570 volmgr - ok
16:33:30.0799 0x2570 volmgrx - ok
16:33:30.0814 0x2570 volsnap - ok
16:33:30.0814 0x2570 volume - ok
16:33:30.0814 0x2570 vpci - ok
16:33:30.0814 0x2570 vsmraid - ok
16:33:30.0814 0x2570 VSS - ok
16:33:30.0830 0x2570 VSTXRAID - ok
16:33:30.0830 0x2570 vwifibus - ok
16:33:30.0830 0x2570 vwififlt - ok
16:33:30.0830 0x2570 vwifimp - ok
16:33:30.0830 0x2570 W32Time - ok
16:33:30.0846 0x2570 WacomPen - ok
16:33:30.0846 0x2570 WalletService - ok
16:33:30.0846 0x2570 wanarp - ok
16:33:30.0846 0x2570 wanarpv6 - ok
16:33:30.0846 0x2570 wbengine - ok
16:33:30.0861 0x2570 WbioSrvc - ok
16:33:30.0861 0x2570 wcifs - ok
16:33:30.0861 0x2570 Wcmsvc - ok
16:33:30.0861 0x2570 wcncsvc - ok
16:33:30.0861 0x2570 wcnfs - ok
16:33:30.0877 0x2570 WdBoot - ok
16:33:30.0877 0x2570 Wdf01000 - ok
16:33:30.0877 0x2570 WdFilter - ok
16:33:30.0877 0x2570 WdiServiceHost - ok
16:33:30.0877 0x2570 WdiSystemHost - ok
16:33:30.0893 0x2570 wdiwifi - ok
16:33:30.0893 0x2570 WdNisDrv - ok
16:33:30.0893 0x2570 WdNisSvc - ok
16:33:30.0893 0x2570 WebClient - ok
16:33:30.0893 0x2570 Wecsvc - ok
16:33:30.0893 0x2570 WEPHOSTSVC - ok
16:33:30.0908 0x2570 wercplsupport - ok
16:33:30.0908 0x2570 WerSvc - ok
16:33:30.0908 0x2570 WFPLWFS - ok
16:33:30.0908 0x2570 WiaRpc - ok
16:33:30.0924 0x2570 WIMMount - ok
16:33:30.0924 0x2570 WinDefend - ok
16:33:30.0924 0x2570 WindowsTrustedRT - ok
16:33:30.0924 0x2570 WindowsTrustedRTProxy - ok
16:33:30.0939 0x2570 WinHttpAutoProxySvc - ok
16:33:30.0939 0x2570 WinMad - ok
16:33:30.0955 0x2570 Winmgmt - ok
16:33:30.0955 0x2570 WinRM - ok
16:33:30.0955 0x2570 WINUSB - ok
16:33:30.0971 0x2570 WinVerbs - ok
16:33:30.0971 0x2570 wisvc - ok
16:33:30.0971 0x2570 WlanSvc - ok
16:33:30.0971 0x2570 wlidsvc - ok
16:33:30.0971 0x2570 WmiAcpi - ok
16:33:30.0986 0x2570 wmiApSrv - ok
16:33:30.0986 0x2570 WMPNetworkSvc - ok
16:33:30.0986 0x2570 Wof - ok
16:33:31.0002 0x2570 workfolderssvc - ok
16:33:31.0002 0x2570 WPDBusEnum - ok
16:33:31.0002 0x2570 WpdUpFltr - ok
16:33:31.0002 0x2570 WpnService - ok
16:33:31.0002 0x2570 WpnUserService - ok
16:33:31.0018 0x2570 ws2ifsl - ok
16:33:31.0018 0x2570 wscsvc - ok
16:33:31.0018 0x2570 WSDPrintDevice - ok
16:33:31.0018 0x2570 WSDScan - ok
16:33:31.0018 0x2570 WSearch - ok
16:33:31.0033 0x2570 wuauserv - ok
16:33:31.0033 0x2570 WudfPf - ok
16:33:31.0033 0x2570 WUDFRd - ok
16:33:31.0049 0x2570 wudfsvc - ok
16:33:31.0049 0x2570 WUDFWpdFs - ok
16:33:31.0049 0x2570 WUDFWpdMtp - ok
16:33:31.0049 0x2570 WwanSvc - ok
16:33:31.0049 0x2570 XblAuthManager - ok
16:33:31.0064 0x2570 XblGameSave - ok
16:33:31.0064 0x2570 xboxgip - ok
16:33:31.0064 0x2570 XboxNetApiSvc - ok
16:33:31.0064 0x2570 xinputhid - ok
16:33:31.0080 0x2570 [ D3D9CB4BA15C1854294517AA8954E201, DFBB6E1A5FF01123FEAD6EFFA67F4A0203792AFDF82EAFFC2DA981A584896542 ] XQHDrv C:\WINDOWS\system32\DRIVERS\XQHDrv.sys
16:33:31.0096 0x2570 XQHDrv - ok
16:33:31.0158 0x2570 [ 65308E8DDBCA0A3D7A72E3404E194319, 93D51235D4CB50F3C73DE006843CB98B8940F92BBB84365443C9A31DEB2426A6 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
16:33:31.0205 0x2570 ZeroConfigService - ok
16:33:31.0221 0x2570 ================ Scan global ===============================
16:33:31.0221 0x2570 [ Global ] - ok
16:33:31.0236 0x2570 ================ Scan MBR ==================================
16:33:31.0236 0x2570 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
16:33:31.0268 0x2570 \Device\Harddisk0\DR0 - ok
16:33:31.0549 0x2570 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
16:33:31.0627 0x2570 \Device\Harddisk1\DR1 - ok
16:33:31.0627 0x2570 ================ Scan VBR ==================================
16:33:31.0627 0x2570 [ 68F507BD2527788522961E365800D983 ] \Device\Harddisk0\DR0\Partition1
16:33:31.0627 0x2570 \Device\Harddisk0\DR0\Partition1 - ok
16:33:31.0627 0x2570 [ 99D9B226D8C32332D88CDBFE6DBE64BB ] \Device\Harddisk0\DR0\Partition2
16:33:31.0627 0x2570 \Device\Harddisk0\DR0\Partition2 - ok
16:33:31.0627 0x2570 [ A91CC8CE6FE74A032D6BD2321C959E54 ] \Device\Harddisk0\DR0\Partition3
16:33:31.0627 0x2570 \Device\Harddisk0\DR0\Partition3 - ok
16:33:31.0627 0x2570 [ BA9706B85B49A72CBD6A2F932C2120F5 ] \Device\Harddisk0\DR0\Partition4
16:33:31.0643 0x2570 \Device\Harddisk0\DR0\Partition4 - ok
16:33:31.0658 0x2570 [ DC14DD589E75DF8F3D7C982CA83AE39C ] \Device\Harddisk1\DR1\Partition1
16:33:31.0658 0x2570 \Device\Harddisk1\DR1\Partition1 - ok
16:33:31.0658 0x2570 ================ Scan generic autorun ======================
16:33:31.0674 0x2570 Logitech Download Assistant - ok
16:33:31.0674 0x2570 ShadowPlay - ok
16:33:31.0674 0x2570 WindowsDefender - ok
16:33:31.0674 0x2570 [ 793749330DCDE2C9850823C632AF5A89, 2EFC8DB3A0B350AAAA13FF96DAB75B2E2BBCC3FC807D9219B80CBFFFFF88544F ] C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\ASUSWSLoader.exe
16:33:31.0674 0x2570 WebStorage - ok
16:33:31.0674 0x2570 DV4TS.EXE - ok
16:33:31.0721 0x2570 OneDriveSetup - ok
16:33:31.0721 0x2570 OneDriveSetup - ok
16:33:31.0736 0x2570 [ 1D7DD340E13DF9585EABB849CFC3E11B, 31CCD9753402DC030C641214B4ECB48A757BCD9F427A143A88745C62EFF87766 ] C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
16:33:31.0752 0x2570 OneDrive - ok
16:33:31.0768 0x2570 [ F4DA83165AF5A49A967E7D37187BBD11, 4A85DE224C4AD6E1F8EE0AB472B8B0F9E8FED5E1255DF3EB1B174319E5785906 ] C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe
16:33:31.0783 0x2570 Dashlane - ok
16:33:31.0799 0x2570 [ 2E920FADD711940901519898F2D8A62E, A2781523781CD21A3FA8B08C87DCDBA9D9095A0333B8C07B5978931BD415204F ] C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe
16:33:31.0799 0x2570 DashlanePlugin - ok
16:33:31.0815 0x2570 ARLworks - ok
16:33:31.0815 0x2570 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x60100 ( disabled : updated )
16:33:31.0815 0x2570 Win FW state via NFP2: enabled ( trusted )
16:33:31.0924 0x2570 ============================================================
16:33:31.0924 0x2570 Scan finished
16:33:31.0924 0x2570 ============================================================
16:33:31.0940 0x26ec Detected object count: 1
16:33:31.0940 0x26ec Actual detected object count: 1
16:33:43.0900 0x26ec Tipuly ( UnsignedFile.Multi.Generic ) - skipped by user
16:33:43.0900 0x26ec Tipuly ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:33:45.0433 0x2528 Deinitialize success
|
|
20.11.2016, 17:20
| #4 |
| /// TB-Ausbilder /// Anleitungs-Guru  | UCGuard eingefangen, lässt sich nicht entfernen Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das... 
 Hinweis:Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden. Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert. Adware & Co. können wir sehr gut entfernen. Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean  bekommst.Los geht's: Bitte FRST-Logs in den Thread posten. Falls nötig splitten.
__________________ Gruß deeprybka  Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer |
|
20.11.2016, 18:10
| #5 |
| | UCGuard eingefangen, lässt sich nicht entfernen Hallo Jürgen, danke für Deine schnelle Antwort. Hier noch einmal der gewünschte Log: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2016 durchgeführt von Daniel (Administrator) auf DANIEL-LAPPI (20-11-2016 16:31:30) Gestartet von C:\Users\Daniel\Desktop\Malware Geladene Profile: Daniel (Verfügbare Profile: Daniel) Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Edge) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe (LC Technology International, Inc.) C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Intel Corporation) C:\Windows\System32\ibtsiva.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Tobit.Software) C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxEM.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe (ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe (ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe (Dashlane, Inc.) C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe () C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Tobit.Software) C:\Windows\SysWOW64\DV4TS.EXE (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe (Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe (ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\AsusWSPanel.exe ==================== Registry (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-11-13] (Microsoft Corporation) HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\ASUSWSLoader.exe [63968 2016-08-12] (ASUS Cloud Corporation) HKLM-x32\...\Run: [DV4TS.EXE] => c:\windows\SysWOW64\DV4TS.EXE [148248 2014-10-20] (Tobit.Software) HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1 HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [Dashlane] => C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe [478592 2016-11-10] (Dashlane, Inc.) HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [DashlanePlugin] => C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe [536960 2016-11-10] () HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [ARLworks] => C:\Windows\SysWOW64\regsvr32.exe C:\Users\Daniel\AppData\Local\YxqfPack\bsvlemwk.dll HKU\S-1-5-18\...\Run: [] => 0 ShellExecuteHooks: - {87CC2AE2-A5BD-11E6-B178-64006A5CFC23} - C:\Users\Daniel\AppData\Roaming\Chihupyberjesp\Suzaph.dll [146944 2016-11-20] () ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [KzShlobj] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} => Keine Datei ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{5efdabab-d792-46a0-b36e-5f6968815709}: [DhcpNameServer] 192.168.2.1 Internet Explorer: ================== HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Software\Microsoft\Internet Explorer\Main,Start Page = HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE SearchScopes: HKU\S-1-5-21-3857371912-3165755019-847613773-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-11-19] (Microsoft Corporation) BHO-x32: Dashlane BHO -> {42D79B50-CC4A-4A8E-860F-BE674AF053A2} -> C:\Users\Daniel\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2016-11-10] (Dashlane, Inc.) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-19] (Microsoft Corporation) Toolbar: HKLM-x32 - Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Daniel\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2016-11-10] (Dashlane, Inc.) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: daniel@99spaces.com FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-11-19] (Microsoft Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-11-19] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-11] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-11] (Google Inc.) Chrome: ======= CHR DefaultProfile: ChromeDefaultData ==================== Dienste (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated) R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe [75264 2015-12-24] (ASUS Cloud Corporation) [Datei ist nicht signiert] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3073216 2016-10-30] (Microsoft Corporation) S3 cphs; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHeciSvc.exe [301536 2016-11-01] (Intel Corporation) S3 cplspcon; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHDCPSvc.exe [480224 2016-11-01] (Intel Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-11] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-11] (Dropbox, Inc.) R2 esifsvc; C:\WINDOWS\SysWoW64\esif_uf.exe [1392792 2015-10-02] (Intel Corporation) R2 igfxCUIService2.0.0.0; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe [341984 2016-11-01] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation) S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert] S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel Corporation) R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [396992 2015-07-06] (Intel) R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-09-18] (Intel Corporation) R2 LCTechSSDToolAsus; C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe [2563648 2016-09-01] (LC Technology International, Inc.) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-08-13] () R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-25] (NVIDIA Corporation) R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-10-25] (NVIDIA Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10155792 2016-11-07] (TeamViewer GmbH) R2 Tipuly; C:\Program Files (x86)\Drabapythebution\whtcore.dll [276992 2016-11-20] () [Datei ist nicht signiert] R2 TSMaintenanceService; C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe [3584960 2016-08-31] (Tobit.Software) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-08-13] (Intel® Corporation) R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ====================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [141304 2015-12-18] (ASUS Corporation) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.) R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [57304 2015-10-02] (Intel Corporation) R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52200 2015-10-02] (Intel Corporation) R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260072 2015-10-02] (Intel Corporation) S3 iaLPSS2_I2C; C:\WINDOWS\System32\drivers\iaLPSS2_I2C.sys [185128 2015-06-16] (Intel Corporation) R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [250624 2016-10-15] (Intel Corporation) R3 igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igdkmd64.sys [11033056 2016-11-01] (Intel Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-11-20] (Malwarebytes) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7116288 2016-07-16] (Intel Corporation) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvlddmkm.sys [14159928 2016-10-26] (NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-10-25] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-10-25] (NVIDIA Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek ) R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [753368 2015-06-15] (Realsil Semiconductor Corporation) S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [52952 2016-10-03] (SteelSeries ApS) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.) R1 UCGuard; C:\WINDOWS\System32\DRIVERS\ucguard.sys [81792 2016-08-29] (Huorong Borui (Beijing) Technology Co., Ltd.) <==== ACHTUNG R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [212056 2015-07-06] (Windows (R) Win 7 DDK provider) R1 VBoxUSBMon; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [127432 2016-11-14] (BigNox Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) R1 XQHDrv; C:\WINDOWS\system32\DRIVERS\XQHDrv.sys [253384 2016-11-14] (BigNox Corporation) S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-11-20 15:53 - 2016-11-20 16:31 - 00000000 ____D C:\FRST 2016-11-20 15:52 - 2016-11-20 16:29 - 00000000 ____D C:\Users\Daniel\Desktop\Malware 2016-11-20 15:38 - 2016-11-20 15:38 - 00000000 ___HD C:\OneDriveTemp 2016-11-20 15:30 - 2016-11-20 16:24 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2016-11-20 15:29 - 2016-11-20 15:37 - 00001167 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2016-11-20 15:29 - 2016-11-20 15:29 - 22851472 _____ (Malwarebytes ) C:\Users\Daniel\Downloads\mbam-setup-2.2.1.1043.exe 2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\ProgramData\Malwarebytes 2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2016-11-20 15:29 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2016-11-20 15:29 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2016-11-20 15:29 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2016-11-20 14:48 - 2016-11-20 14:48 - 00001597 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器.lnk 2016-11-20 14:48 - 2016-11-20 14:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\UCBrowser 2016-11-20 14:48 - 2016-11-20 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器 2016-11-20 14:48 - 2016-08-29 11:46 - 00081792 _____ (Huorong Borui (Beijing) Technology Co., Ltd.) C:\WINDOWS\system32\Drivers\ucguard.sys 2016-11-20 14:46 - 2016-11-20 14:46 - 00187904 _____ C:\WINDOWS\rsrcs.dll 2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____H C:\WINDOWS\system32\BITBEB6.tmp 2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\WINDOWS\SysWOW64\sstmp 2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\WINDOWS\system32\sstmp 2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2016-11-20 14:45 - 2016-11-20 15:36 - 00000000 ____D C:\Users\Daniel\AppData\Local\Epftion 2016-11-20 14:45 - 2016-11-20 14:45 - 00000000 _____ C:\TOSTACK 2016-11-20 14:44 - 2016-11-20 15:36 - 00000000 ____D C:\Users\Daniel\AppData\Local\YxqfPack 2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\Avira 2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\Avg 2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\AVAST Software 2016-11-20 14:42 - 2016-11-20 15:34 - 00000000 ____D C:\Program Files (x86)\Drabapythebution 2016-11-20 14:42 - 2016-11-20 14:43 - 00000000 ____D C:\Users\Daniel\AppData\Local\Lewatainpawuch 2016-11-20 14:42 - 2016-11-20 14:42 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Chihupyberjesp 2016-11-20 14:41 - 2016-11-20 15:34 - 00000000 ____D C:\Program Files (x86)\KMSPico 10.0.6 2016-11-20 14:32 - 2016-11-20 14:32 - 09744538 _____ C:\Users\Daniel\Downloads\Filme_Jason Bourne 2016 German DTSHD DL 1080p BluRay AVC REMUX-MULTiPLEX.nzb 2016-11-20 14:32 - 2016-11-20 14:32 - 01106154 _____ C:\Users\Daniel\Downloads\Filme_Blackway Auf dem Pfad der Rache 2015 German 720p BluRay x264 ENCOUNTERS.nzb 2016-11-20 14:29 - 2016-11-20 14:29 - 01263892 _____ C:\Users\Daniel\Downloads\Filme_John Dies at the End 2012 German DTS DL 720p BluRay x264-LeetHD.nzb 2016-11-20 14:28 - 2016-11-20 14:28 - 00794234 _____ C:\Users\Daniel\Downloads\Filme_Mr Right 2015 German 720p BluRay x264-ENCOUNTERS.nzb 2016-11-20 14:11 - 2016-11-20 15:37 - 00000915 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk 2016-11-20 14:11 - 2016-11-20 15:36 - 00000867 _____ C:\Users\Daniel\Desktop\Start Tor Browser.lnk 2016-11-20 14:10 - 2016-11-20 14:10 - 00000000 ____D C:\Users\Daniel\Desktop\Tor Browser 2016-11-20 14:09 - 2016-11-20 14:10 - 50911952 _____ C:\Users\Daniel\Downloads\torbrowser-install-6.0.6_de.exe 2016-11-19 10:19 - 2016-11-19 10:19 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignf5c519d31dfcf267 2016-11-19 10:19 - 2016-11-19 10:19 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign2b990895b01fc659 2016-11-19 09:45 - 2016-11-19 09:45 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignaac81b9269ec4203 2016-11-19 09:45 - 2016-11-19 09:45 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign1872ce2bff0b17ce 2016-11-19 07:56 - 2016-11-19 07:56 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2016-11-19 07:53 - 2016-11-19 07:53 - 00043751 _____ C:\Users\Daniel\Downloads\581fead3a37ce.zip 2016-11-18 22:13 - 2016-11-18 23:06 - 00003502 _____ C:\Users\Daniel\Documents\Bodeni-Arbeitsbeschreibung.odt 2016-11-18 21:57 - 2016-11-18 21:57 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Foxit Software 2016-11-17 20:27 - 2016-11-17 20:27 - 00000000 ____D C:\Users\Daniel\Documents\EVE 2016-11-17 14:30 - 2016-11-20 15:36 - 00000787 _____ C:\Users\Daniel\Desktop\EVE Launcher.lnk 2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVE Launcher 2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\AppData\Local\CCP 2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\.QtWebEngineProcess 2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\.EVE 2016-11-17 14:29 - 2016-11-17 14:29 - 54881176 _____ C:\Users\Daniel\Downloads\EveLauncher-1097946.exe 2016-11-17 14:03 - 2016-11-17 14:04 - 08768160 _____ C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4 (1).rar 2016-11-17 13:48 - 2016-11-17 13:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign7d7adf8535a24a7b 2016-11-17 13:48 - 2016-11-17 13:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign1cfbc5b8419d8363 2016-11-16 22:50 - 2016-11-16 22:50 - 00000000 ____D C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4 2016-11-16 22:40 - 2016-11-16 22:42 - 08768160 _____ C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4.rar 2016-11-16 22:39 - 2016-11-16 22:41 - 09915776 _____ C:\Users\Daniel\Downloads\Download-Interspire-Email-Marketer-v6.1.4-Nulled-Scripts.zip 2016-11-16 16:24 - 2016-11-19 10:58 - 00001456 _____ C:\Users\Daniel\AppData\Local\Adobe Für Web speichern 13.0 Prefs 2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Adobe 2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignb5d67b1886cfd58b 2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign97c66928bc3ff4c7 2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign64377305ec57a3cb 2016-11-16 14:50 - 2016-11-20 16:16 - 00000000 ___RD C:\Users\Daniel\Creative Cloud Files 2016-11-16 14:50 - 2016-11-20 16:16 - 00000000 ____D C:\ProgramData\boost_interprocess 2016-11-15 17:08 - 2016-11-15 17:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsigne4cdea769c6ec550 2016-11-15 17:08 - 2016-11-15 17:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign7accc4c8229f6e07 2016-11-15 17:06 - 2016-11-20 15:37 - 00001381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Update Management Tool.lnk 2016-11-15 17:04 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignd93707d60b50a1e0 2016-11-15 17:04 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign0af6b16f1f08ea07 2016-11-15 17:03 - 2016-11-20 14:08 - 00000000 ____D C:\Users\Public\Documents\AdobeGC 2016-11-15 17:03 - 2016-11-15 17:03 - 00003626 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-DANIEL-LAPPI-Daniel 2016-11-15 17:03 - 2016-11-15 17:03 - 00000000 ____D C:\Users\Daniel\Documents\Adobe 2016-11-15 17:03 - 2016-11-15 17:03 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe 2016-11-15 17:01 - 2016-11-15 17:03 - 00000000 ____D C:\Program Files\Adobe 2016-11-15 16:59 - 2016-11-20 16:26 - 00000000 ____D C:\Program Files (x86)\Adobe 2016-11-15 16:52 - 2016-11-20 16:26 - 00000000 ____D C:\ProgramData\Adobe 2016-11-15 16:52 - 2016-11-20 16:16 - 00000000 ____D C:\Users\Daniel\AppData\Local\Adobe 2016-11-15 15:48 - 2016-11-20 15:37 - 00001042 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk 2016-11-15 15:48 - 2016-11-20 15:37 - 00001024 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk 2016-11-15 15:47 - 2016-11-15 16:22 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\TeamViewer 2016-11-15 15:42 - 2016-11-15 15:42 - 00000000 ____H C:\Users\Daniel\Documents\Default.rdp 2016-11-15 11:26 - 2016-11-15 11:25 - 30987232 _____ (AceBIT GmbH ) C:\Users\Daniel\Desktop\pdepot7 (1).exe 2016-11-14 15:57 - 2016-11-14 15:57 - 00000000 ____D C:\Users\Daniel\AppData\Local\MultiPlayerManager 2016-11-14 15:41 - 2016-11-20 15:36 - 00000875 _____ C:\Users\Daniel\Desktop\Multi-Drive.lnk 2016-11-14 15:41 - 2016-11-20 15:36 - 00000814 _____ C:\Users\Daniel\Desktop\Nox.lnk 2016-11-14 15:41 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Bignox 2016-11-14 15:41 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\vmlogs 2016-11-14 15:41 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\.BigNox 2016-11-14 15:41 - 2016-11-14 15:41 - 00253384 _____ (BigNox Corporation) C:\WINDOWS\system32\Drivers\XQHDrv.sys 2016-11-14 15:41 - 2016-11-14 15:41 - 00127432 _____ (BigNox Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys 2016-11-14 15:41 - 2016-11-14 15:41 - 00000041 _____ C:\Users\Daniel\inst.ini 2016-11-14 15:41 - 2016-11-14 15:41 - 00000000 ____D C:\Users\Daniel\Nox_share 2016-11-14 15:41 - 2016-11-14 15:41 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Nox 2016-11-14 15:40 - 2016-11-15 19:21 - 00000000 ____D C:\Users\Daniel\AppData\Local\Nox 2016-11-14 15:29 - 2016-11-20 16:23 - 00000000 ____D C:\AdwCleaner 2016-11-14 15:24 - 2016-11-14 15:40 - 308117896 _____ (Duodian Technology Co. Ltd.) C:\Users\Daniel\Downloads\nox_setup_v3.7.5.0_full_En.exe 2016-11-14 15:03 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\.android 2016-11-14 15:03 - 2016-11-14 15:27 - 00000000 ____D C:\Users\Daniel\.VirtualBox 2016-11-14 15:03 - 2016-11-14 15:10 - 00000078 _____ C:\hsrv.txt 2016-11-14 15:03 - 2016-11-14 15:03 - 00000000 ____D C:\Program Files\Oracle 2016-11-14 15:03 - 2014-05-16 14:04 - 00254240 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys 2016-11-14 14:59 - 2016-11-14 15:00 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\HaiYuInst 2016-11-14 14:58 - 2016-11-14 14:59 - 09448104 _____ C:\Users\Daniel\Downloads\Droid4XInstaller.exe 2016-11-14 13:01 - 2016-11-14 13:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Andy 2016-11-14 13:00 - 2016-09-06 19:25 - 00052288 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\vmkbd.sys 2016-11-14 12:38 - 2016-11-14 12:43 - 00000000 ____D C:\Users\Daniel\AppData\Local\VMware 2016-11-14 12:11 - 2016-11-14 12:11 - 00000000 ____D C:\Users\Daniel\licman 2016-11-14 10:25 - 2016-11-14 10:27 - 00000000 ____D C:\Users\Daniel\Desktop\Share 2016-11-14 10:18 - 2016-11-17 15:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\FileZilla 2016-11-14 10:17 - 2016-11-20 15:37 - 00001967 _____ C:\Users\Public\Desktop\FileZilla Client.lnk 2016-11-14 10:17 - 2016-11-14 10:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2016-11-14 10:17 - 2016-11-14 10:17 - 00000000 ____D C:\Program Files\FileZilla FTP Client 2016-11-13 20:06 - 2016-11-13 20:06 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\MPC-HC 2016-11-13 20:05 - 2016-11-13 20:05 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Brackets 2016-11-13 19:41 - 2016-11-20 15:37 - 00000733 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10-Upgrade-Assistent.lnk 2016-11-13 19:41 - 2016-11-13 19:41 - 00000000 ____D C:\Windows10Upgrade 2016-11-13 19:38 - 2016-11-13 19:38 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2016-11-13 19:36 - 2016-11-14 10:07 - 00000000 ____D C:\Users\Daniel\AppData\Local\ConnectedDevicesPlatform 2016-11-13 19:36 - 2016-11-13 19:36 - 00000020 ___SH C:\Users\Daniel\ntuser.ini 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Vorlagen 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Startmenü 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 ____D C:\ProgramData\USOShared 2016-11-13 19:28 - 2016-11-20 16:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-11-13 19:28 - 2016-11-20 14:01 - 00003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1 2016-11-13 19:28 - 2016-11-20 14:01 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2 2016-11-13 19:28 - 2016-11-13 19:28 - 00007623 _____ C:\WINDOWS\diagwrn.xml 2016-11-13 19:28 - 2016-11-13 19:28 - 00007623 _____ C:\WINDOWS\diagerr.xml 2016-11-13 19:28 - 2016-11-13 19:28 - 00003768 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA 2016-11-13 19:28 - 2016-11-13 19:28 - 00003654 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2016-11-13 19:28 - 2016-11-13 19:28 - 00003544 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore 2016-11-13 19:28 - 2016-11-13 19:28 - 00003430 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2016-11-13 19:28 - 2016-11-13 19:28 - 00003314 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9E9CEFD0-ADC6-483E-B86F-2719D52987D4} 2016-11-13 19:28 - 2016-11-13 19:28 - 00003140 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-11-13 19:28 - 2016-11-13 19:28 - 00003112 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-11-13 19:28 - 2016-11-13 19:28 - 00003042 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 2016-11-13 19:28 - 2016-11-13 19:28 - 00003040 _____ C:\WINDOWS\System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec 2016-11-13 19:28 - 2016-11-13 19:28 - 00002968 _____ C:\WINDOWS\System32\Tasks\Update Checker 2016-11-13 19:28 - 2016-11-13 19:28 - 00002960 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-11-13 19:28 - 2016-11-13 19:28 - 00002940 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-11-13 19:28 - 2016-11-13 19:28 - 00002924 _____ C:\WINDOWS\System32\Tasks\ATK Package 36D18D69AFC3 2016-11-13 19:28 - 2016-11-13 19:28 - 00002862 _____ C:\WINDOWS\System32\Tasks\ASUS Smart Gesture Launcher 2016-11-13 19:28 - 2016-11-13 19:28 - 00002850 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-11-13 19:28 - 2016-11-13 19:28 - 00002824 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task 2016-11-13 19:28 - 2016-11-13 19:28 - 00002808 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-11-13 19:28 - 2016-11-13 19:28 - 00002674 _____ C:\WINDOWS\System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon 2016-11-13 19:28 - 2016-11-13 19:28 - 00002346 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice 2016-11-13 19:28 - 2016-11-13 19:28 - 00002340 _____ C:\WINDOWS\System32\Tasks\ASUS USB Charger Plus 2016-11-13 19:28 - 2016-11-13 19:28 - 00002280 _____ C:\WINDOWS\System32\Tasks\RTKCPL 2016-11-13 19:28 - 2016-11-13 19:28 - 00002262 _____ C:\WINDOWS\System32\Tasks\DropboxOEM 2016-11-13 19:28 - 2016-11-13 19:28 - 00002214 _____ C:\WINDOWS\System32\Tasks\ATK Package A22126881260 2016-11-13 19:28 - 2016-11-13 19:28 - 00002214 _____ C:\WINDOWS\System32\Tasks\ASUS Splendid ACMON 2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee 2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel 2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS 2016-11-13 19:25 - 2016-11-20 15:37 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2016-11-13 19:23 - 2016-11-20 16:26 - 00000000 ____D C:\Users\Daniel 2016-11-13 19:23 - 2016-11-13 19:26 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Vorlagen 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Startmenü 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Netzwerkumgebung 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Lokale Einstellungen 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Eigene Dateien 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Druckumgebung 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Videos 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Musik 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Bilder 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Local\Verlauf 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Local\Anwendungsdaten 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Anwendungsdaten 2016-11-13 19:22 - 2016-11-13 19:22 - 00000000 ____D C:\WINDOWS\SysWOW64\sda 2016-11-13 19:21 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Intel 2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\Program Files\Intel 2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_esif_umdf2_02_00_00.Wdf 2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____H C:\ProgramData\DP45977C.lfl 2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\WINDOWS\system32\DAX2 2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\Program Files\Realtek 2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin 2016-11-13 19:21 - 2016-11-01 23:05 - 00113672 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL 2016-11-13 19:21 - 2016-11-01 23:05 - 00104464 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL 2016-11-13 19:21 - 2016-10-25 21:17 - 06386232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2016-11-13 19:21 - 2016-10-25 21:17 - 02475968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2016-11-13 19:21 - 2016-10-25 21:17 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2016-11-13 19:21 - 2016-10-25 21:17 - 00548408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2016-11-13 19:21 - 2016-10-25 21:17 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2016-11-13 19:21 - 2016-10-25 21:17 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2016-11-13 19:21 - 2016-10-25 21:17 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2016-11-13 19:21 - 2016-10-24 07:31 - 07507695 _____ C:\WINDOWS\system32\nvcoproc.bin 2016-11-13 19:21 - 2016-07-16 12:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2016-11-13 19:20 - 2016-11-20 15:46 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2016-11-13 19:20 - 2016-11-15 16:24 - 00337736 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-11-13 19:20 - 2016-11-13 19:20 - 00000000 ____D C:\WINDOWS\ServiceProfiles 2016-11-13 19:19 - 2016-11-13 19:29 - 00000000 ___DC C:\WINDOWS\Panther 2016-11-13 19:18 - 2016-11-13 19:18 - 00000000 ____D C:\Windows.old 2016-11-13 19:16 - 2016-11-13 19:16 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2016-11-13 19:16 - 2016-11-13 19:16 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2016-11-13 19:16 - 2016-11-13 19:16 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2016-11-13 19:16 - 2016-11-13 19:16 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls 2016-11-13 19:16 - 2016-11-13 19:16 - 00788624 _____ C:\WINDOWS\system32\locale.nls 2016-11-13 19:16 - 2016-11-13 19:16 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2016-11-13 19:16 - 2016-11-13 19:16 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl 2016-11-13 19:16 - 2016-11-13 19:16 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml 2016-11-13 19:16 - 2016-11-13 19:16 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 17188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL 2016-11-13 19:10 - 2016-11-13 19:10 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL 2016-11-13 19:10 - 2016-11-13 19:10 - 07792640 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 07216640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05622088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 04596224 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 04136960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 03435008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03405824 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03369984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03287552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03202048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03116544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03054080 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02947072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02914304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02827864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2016-11-13 19:10 - 2016-11-13 19:10 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2016-11-13 19:10 - 2016-11-13 19:10 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02708992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02481768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02476544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02446696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02423296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02390016 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02360832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02290176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02276736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02107392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2016-11-13 19:10 - 2016-11-13 19:10 - 02083840 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2016-11-13 19:10 - 2016-11-13 19:10 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01990648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01980416 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01913344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01853776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01851696 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01847048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01738040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01710080 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01705976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01556712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 01554944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01507840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01472536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01453992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01369088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01362504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01358336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01322848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01320448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 01292640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01267504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01266176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01181536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 01176664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01157000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01117024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01112928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01071728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01066328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01037312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01013760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01000288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2016-11-13 19:10 - 2016-11-13 19:10 - 00998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00988512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00980824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00966144 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi 2016-11-13 19:10 - 2016-11-13 19:10 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00908640 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00862064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00860512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00856872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00764936 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00755656 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00749920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00742704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00725664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_sr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00719360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00691080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00681304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkCollectionAgent.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00665768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00658272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00650240 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00649568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00646136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00634944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00595488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00595296 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00557408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00512416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll |
|
20.11.2016, 18:11
| #6 |
| | UCGuard eingefangen, lässt sich nicht entfernen Teil 2 Code:
ATTFilter 2016-11-13 19:10 - 2016-11-13 19:10 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00500064 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00498952 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00496872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetworkCollectionAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00450392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00435040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00434528 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00433832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00424640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00418304 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00408600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00402352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00372440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00341936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00292872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00283488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00280472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00265728 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2016-11-13 19:10 - 2016-11-13 19:10 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00232800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00218008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingFolder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAC3ENC.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00206096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00204288 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00178528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvenotify.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00170960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00169056 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovslegacy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-11-13 19:10 - 2016-11-13 19:10 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidclass.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoplay.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovslegacy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DscCoreConfProv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00133472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00130912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00119648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorTcgDrv.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00113504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmifw.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Printers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-11-13 19:10 - 2016-11-13 19:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00081760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmifw.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00078688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00074080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00073568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pwrshplugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Sens.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TempSignedLicenseExchangeTask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00064352 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\MegaSas2i.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00063328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.UserDeviceAssociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManagerApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057400 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AddressParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundMediaPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00044472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00041824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidparse.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidusb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmimcext.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\encapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\delegatorprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi_passthru.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_IS2022.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\c_GSM7.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccessRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-11-13 19:10 - 2016-11-13 19:10 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2016-11-13 19:10 - 2016-11-13 19:10 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneutilRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-11-13 19:05 - 2016-11-13 19:05 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-11-13 19:03 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-11-13 19:03 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-11-13 19:03 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-11-13 19:03 - 2016-11-13 19:03 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-11-13 19:03 - 2016-11-13 19:03 - 00000000 ____D C:\Program Files\MSBuild
2016-11-13 19:02 - 2016-11-13 19:02 - 03753984 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2016-11-13 19:02 - 2016-11-13 19:02 - 00199008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-11-13 19:02 - 2016-05-25 14:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 14:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 14:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-11-13 19:02 - 2016-05-25 11:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 11:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 11:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-11-13 18:51 - 2016-11-20 15:37 - 00000720 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brackets.lnk
2016-11-13 18:51 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Brackets
2016-11-13 18:35 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack 64bit
2016-11-13 18:35 - 2016-11-13 18:35 - 00000000 ____D C:\Program Files\Combined Community Codec Pack 64bit
2016-11-13 10:20 - 2016-11-13 10:20 - 00000000 ____D C:\Users\Daniel\Documents\CPY_SAVES
2016-11-13 04:23 - 2016-11-13 05:14 - 00000000 ____D C:\Users\Daniel\AppData\Local\QuantumBreak
2016-11-13 04:23 - 2016-11-13 04:23 - 00000000 ____D C:\Users\Daniel\Documents\SkidRow
2016-11-12 17:07 - 2016-11-12 17:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-11-12 14:30 - 2016-11-20 15:37 - 00000595 _____ C:\Users\Public\Desktop\Fraps.lnk
2016-11-12 14:30 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2016-11-12 14:29 - 2016-11-12 14:30 - 00000000 ____D C:\Fraps
2016-11-12 13:47 - 2016-11-20 15:37 - 00001481 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-11-12 13:47 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-11-12 13:47 - 2016-11-12 13:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\CEF
2016-11-12 13:47 - 2016-10-25 21:22 - 01852352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01452480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00104384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00094144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-11-12 13:40 - 2016-11-20 15:37 - 00001292 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intel WiDi Toast.lnk
2016-11-12 13:33 - 2016-11-12 14:39 - 00000000 ____D C:\Users\Daniel\Documents\The Witcher 3
2016-11-12 12:45 - 2016-11-20 16:23 - 00000000 ____D C:\Users\Daniel\AppData\Local\CrashDumps
2016-11-12 12:45 - 2016-11-12 12:45 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Steam
2016-11-12 12:07 - 2016-11-12 12:07 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tobit
2016-11-12 12:06 - 2016-11-20 15:37 - 00002258 _____ C:\ProgramData\Microsoft\Windows\Start Menu\david®.LNK
2016-11-12 12:06 - 2016-11-19 07:54 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Tobit
2016-11-12 12:06 - 2016-11-17 09:57 - 05985728 _____ (Tobit.Software) C:\WINDOWS\uninstic.exe
2016-11-12 12:06 - 2016-11-13 19:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tobit.Software
2016-11-12 12:06 - 2014-10-20 10:43 - 00148248 _____ (Tobit.Software) C:\WINDOWS\SysWOW64\DV4TS.EXE
2016-11-12 12:06 - 2009-01-06 10:56 - 00000023 _____ C:\WINDOWS\AVFD.INI
2016-11-12 12:06 - 2006-07-19 11:01 - 00099840 _____ C:\WINDOWS\IMGMSGMO.dll
2016-11-12 12:06 - 2006-07-19 09:31 - 00185344 _____ C:\WINDOWS\DVGRF.DLL
2016-11-12 12:05 - 2016-11-20 15:05 - 00000000 ____D C:\Program Files (x86)\Tobit InfoCenter
2016-11-12 12:05 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\gs
2016-11-12 12:05 - 2016-11-19 07:58 - 00000538 _____ C:\WINDOWS\Tobit.ini
2016-11-12 12:05 - 2016-11-17 13:31 - 11679232 _____ C:\WINDOWS\TOBITCLT.DLL
2016-11-12 12:05 - 2016-11-17 13:31 - 05310976 _____ (Tobit.Software) C:\WINDOWS\DVAPI32.DLL
2016-11-12 12:05 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
2016-11-12 12:05 - 2016-11-12 12:05 - 00000000 ____D C:\ProgramData\Tobit
2016-11-12 12:05 - 2016-10-25 13:50 - 00234496 _____ (Tobit Software) C:\WINDOWS\dvepostm.dll
2016-11-12 12:05 - 2010-11-18 14:39 - 00115712 _____ (Tobit Software) C:\WINDOWS\faxwarmo.dll
2016-11-12 09:30 - 2016-11-12 09:30 - 00000000 ____D C:\ProgramData\Steam
2016-11-11 20:33 - 2016-11-11 20:33 - 00000000 ____D C:\Users\Daniel\Documents\My Games
2016-11-11 19:58 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-11 19:58 - 2016-09-09 19:25 - 00269600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-11-11 19:58 - 2016-09-09 19:25 - 00261920 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-11-11 19:58 - 2016-09-09 19:25 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-11-11 19:58 - 2016-09-09 19:24 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-11-11 19:57 - 2016-10-25 20:12 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2016-11-11 19:56 - 2016-10-25 22:40 - 40123840 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 35224632 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 34711096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 28202040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10912232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10782952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10332664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 09120512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 08913512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 08723968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 03927288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 03468736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 02940352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 02574784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01953336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437570.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01586744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437570.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01037248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00975296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00943552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00897080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00802768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00683640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00644112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00572888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00438208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00394704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00390200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00327224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00042296 _____ C:\WINDOWS\system32\nvinfo.pb
2016-11-11 19:56 - 2016-10-25 22:40 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-11-11 19:56 - 2016-10-25 22:40 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2016-11-11 19:51 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2016-11-11 19:51 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2016-11-11 19:51 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2016-11-11 19:51 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2016-11-11 19:51 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2016-11-11 19:51 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2016-11-11 19:51 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2016-11-11 19:51 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2016-11-11 19:51 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2016-11-11 19:51 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2016-11-11 19:51 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2016-11-11 19:51 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2016-11-11 19:51 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2016-11-11 19:51 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2016-11-11 19:51 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2016-11-11 19:51 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2016-11-11 19:51 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2016-11-11 19:51 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2016-11-11 19:51 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2016-11-11 19:51 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2016-11-11 19:51 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2016-11-11 19:51 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2016-11-11 19:51 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2016-11-11 19:51 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2016-11-11 19:51 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2016-11-11 19:51 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2016-11-11 19:51 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2016-11-11 19:51 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2016-11-11 19:51 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2016-11-11 19:51 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2016-11-11 19:51 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2016-11-11 19:51 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2016-11-11 19:51 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2016-11-11 19:51 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2016-11-11 19:51 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2016-11-11 19:51 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2016-11-11 19:51 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2016-11-11 19:51 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2016-11-11 19:51 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2016-11-11 19:51 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2016-11-11 19:51 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2016-11-11 19:51 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2016-11-11 19:51 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2016-11-11 19:51 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2016-11-11 19:51 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2016-11-11 19:51 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2016-11-11 19:51 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2016-11-11 19:51 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2016-11-11 19:51 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2016-11-11 19:51 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2016-11-11 19:51 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2016-11-11 19:51 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2016-11-11 19:51 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2016-11-11 19:51 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2016-11-11 19:51 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2016-11-11 19:51 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2016-11-11 19:51 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2016-11-11 19:51 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2016-11-11 19:51 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2016-11-11 19:41 - 2016-11-11 19:41 - 00692072 _____ (Disc Soft Ltd.) C:\Users\Daniel\Downloads\DTLiteInstaller.exe
2016-11-11 19:38 - 2016-11-11 19:38 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WinRAR
2016-11-11 19:37 - 2016-11-20 15:36 - 00000707 _____ C:\Users\Daniel\Desktop\QuickPar.lnk
2016-11-11 19:37 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar
2016-11-11 19:36 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-11 19:36 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-11 18:55 - 2016-11-20 15:37 - 00000705 _____ C:\Users\Public\Desktop\Alt.Binz.lnk
2016-11-11 18:55 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alt.Binz
2016-11-11 18:55 - 2016-11-11 18:56 - 00000000 ____D C:\Users\Daniel\AppData\Local\Alt.Binz
2016-11-11 18:47 - 2016-11-11 18:54 - 02201253 _____ C:\Users\Daniel\Downloads\altbinz_0.39.4.exe
2016-11-11 17:31 - 2016-11-20 15:37 - 00001291 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eye Care Switcher.lnk
2016-11-11 17:23 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\NVIDIA
2016-11-11 17:23 - 2016-11-14 13:10 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\VMware
2016-11-11 17:22 - 2016-11-14 13:00 - 01551250 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-11-11 17:21 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-11-11 17:21 - 2016-11-11 17:21 - 00000000 ____D C:\ProgramData\Apple
2016-11-11 17:21 - 2016-11-11 17:21 - 00000000 ____D C:\Program Files\Bonjour
2016-11-11 17:19 - 2016-11-14 13:10 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Andy
2016-11-11 17:19 - 2016-11-11 17:23 - 00000000 ____D C:\Users\Daniel\Andy
2016-11-11 17:15 - 2016-10-28 02:22 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-11-11 14:59 - 2016-11-11 14:59 - 00000000 __SHD C:\aws
2016-11-11 14:57 - 2016-11-20 15:37 - 00001369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-11 14:57 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-11 14:57 - 2016-11-13 18:02 - 00001142 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-11 14:57 - 2016-11-13 15:02 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-11 14:57 - 2016-11-11 15:06 - 00000000 ____D C:\Users\Daniel\AppData\Local\Google
2016-11-11 14:56 - 2016-11-11 14:56 - 00000000 ____D C:\Users\Daniel\AppData\Local\MicrosoftEdge
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WildTangent
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\kingsoft
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Local\kingsoft
2016-11-11 14:42 - 2016-11-11 14:42 - 00000000 ____D C:\Users\Daniel\AppData\Local\NetworkTiles
2016-11-11 14:34 - 2016-11-20 14:44 - 00000000 _____ C:\Users\Daniel\AppData\LocalLow\rightsCheck_1.txt
2016-11-11 14:32 - 2016-11-11 14:32 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Dashlane
2016-11-11 14:29 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2016-11-11 14:29 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-11-11 14:22 - 2016-11-14 22:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\Comms
2016-11-11 14:22 - 2016-11-11 14:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-11 14:22 - 2016-11-11 14:22 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-11 14:12 - 2016-11-20 15:37 - 00002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 25 GB.lnk
2016-11-11 14:10 - 2016-11-11 14:59 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\awsRun
2016-11-11 14:09 - 2016-11-20 15:37 - 00001302 _____ C:\Users\Public\Desktop\Solid State Doctor - Asus Edition.lnk
2016-11-11 14:09 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Solid State Doctor - Asus Edition
2016-11-11 14:09 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Notepad++
2016-11-11 14:09 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solid State Doctor - Asus Edition
2016-11-11 14:09 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-11-11 14:09 - 2016-11-11 14:09 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Notepad++
2016-11-11 14:09 - 2016-11-11 14:09 - 00000000 ____D C:\Users\Daniel\AppData\Local\LC Technology Inc
2016-11-11 14:08 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Dashlane
2016-11-11 14:08 - 2016-11-16 12:32 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Dashlane
2016-11-11 14:08 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2016-11-11 14:07 - 2016-11-20 15:37 - 00002367 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMDb.lnk
2016-11-11 14:07 - 2016-11-20 15:37 - 00002367 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CloudConvert.lnk
2016-11-11 14:07 - 2016-11-20 15:36 - 00002337 _____ C:\Users\Daniel\Desktop\IMDb.lnk
2016-11-11 14:07 - 2016-11-20 15:36 - 00002337 _____ C:\Users\Daniel\Desktop\CloudConvert.lnk
2016-11-11 14:06 - 2016-11-11 14:06 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Macromedia
2016-11-11 14:05 - 2016-11-20 16:24 - 00000000 ___RD C:\Users\Daniel\OneDrive
2016-11-11 14:05 - 2016-11-20 15:37 - 00002388 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-11-11 14:05 - 2016-11-11 14:05 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Skype
2016-11-11 14:05 - 2016-11-11 14:05 - 00000000 ____D C:\Users\Daniel\AppData\Local\ActiveSync
2016-11-11 14:04 - 2016-11-11 14:04 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\DropboxOEM
2016-11-11 14:04 - 2016-11-11 14:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\DropboxOEM
2016-11-11 14:03 - 2016-11-20 16:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Adobe
2016-11-11 14:03 - 2016-11-20 16:24 - 00000206 _____ C:\Users\Daniel\AppData\Roaming\sp_data.sys
2016-11-11 14:03 - 2016-11-20 16:24 - 00000000 __SHD C:\Users\Daniel\IntelGraphicsProfiles
2016-11-11 14:03 - 2016-11-20 16:24 - 00000000 ____D C:\Users\Daniel\AppData\Local\ASUS GIFTBOX
2016-11-11 14:03 - 2016-11-14 22:46 - 00000000 ____D C:\Users\Daniel\AppData\Local\Packages
2016-11-11 14:03 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2016-11-11 14:03 - 2016-11-12 16:30 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA Corporation
2016-11-11 14:03 - 2016-11-12 13:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA
2016-11-11 14:03 - 2016-11-12 12:06 - 00000000 ____D C:\Users\Daniel\AppData\Local\VirtualStore
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WebStorage
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Intel
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\TileDataLayer
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\Publishers
2016-11-11 14:00 - 2016-11-11 14:03 - 00000000 ____D C:\ProgramData\USBChargerPlus
2016-11-11 14:00 - 2016-11-11 14:00 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-11-01 23:05 - 2016-11-01 23:05 - 00271368 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-11-01 23:05 - 2016-11-01 23:05 - 00141320 _____ C:\WINDOWS\SysWOW64\libEGL.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00113672 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00112136 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00104464 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00101384 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll
2016-10-30 09:28 - 2016-10-30 09:28 - 00085744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00394496 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00271104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vccorlib140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00089328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00639728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00334616 _____ (Microsoft Corporation) C:\WINDOWS\system32\concrt140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00244504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\concrt140.dll
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-11-20 16:31 - 2016-07-16 23:51 - 00707276 _____ C:\WINDOWS\system32\perfh007.dat
2016-11-20 16:31 - 2016-07-16 23:51 - 00147640 _____ C:\WINDOWS\system32\perfc007.dat
2016-11-20 16:31 - 2016-03-24 12:50 - 01866666 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-20 16:24 - 2016-10-17 08:29 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-20 16:23 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-11-20 15:37 - 2016-07-17 19:58 - 00002118 _____ C:\Users\Public\Desktop\Dropbox 25 GB.lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001355 _____ C:\Users\Public\Desktop\WebStorage.lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001148 _____ C:\Users\Public\Desktop\Eye Care Switcher.Lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001011 _____ C:\Users\Public\Desktop\Foxit PhantomPDF.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002543 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002539 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-11-20 15:37 - 2016-03-24 13:04 - 00002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS GIFTBOX.lnk
2016-11-20 15:34 - 2016-07-17 19:39 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-11-20 14:43 - 2016-07-17 19:45 - 00000000 ____D C:\Program Files (x86)\ICEpower
2016-11-20 14:43 - 2016-07-17 19:41 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-11-20 14:43 - 2016-07-17 19:41 - 00000000 ____D C:\Program Files (x86)\Intel Corporation
2016-11-20 14:43 - 2016-07-17 19:40 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-11-20 14:43 - 2016-07-17 19:40 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-11-20 14:43 - 2016-07-17 19:36 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-11-20 14:43 - 2016-03-24 13:04 - 00000000 ____D C:\Program Files (x86)\Foxit PhantomPDF
2016-11-20 14:43 - 2016-03-24 13:04 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-11-20 14:02 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-20 14:02 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-19 07:57 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-19 07:56 - 2016-07-17 19:48 - 00000000 ____D C:\Program Files\Microsoft Office
2016-11-19 07:56 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-16 21:14 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-15 17:00 - 2016-03-24 13:04 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-15 15:41 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-14 15:41 - 2016-07-17 19:44 - 00000000 ____D C:\Program Files\DIFX
2016-11-14 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Registration
2016-11-14 12:37 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-14 10:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-11-14 10:08 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-11-13 19:36 - 2016-07-17 19:31 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-13 19:29 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-11-13 19:29 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows NT
2016-11-13 19:29 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-11-13 19:28 - 2016-10-17 09:23 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-11-13 19:28 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\Media
2016-11-13 19:28 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-11-13 19:27 - 2016-10-17 08:42 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-11-13 19:27 - 2016-07-16 12:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-11-13 19:26 - 2016-07-17 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2016-11-13 19:26 - 2016-03-24 13:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2016-11-13 19:26 - 2016-03-24 13:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-11-13 19:25 - 2016-10-17 09:18 - 00000000 ____D C:\Users\Default.migrated
2016-11-13 19:24 - 2016-07-17 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICEpower
2016-11-13 19:24 - 2016-07-17 19:41 - 00000000 ____D C:\Program Files\Intel Corporation
2016-11-13 19:24 - 2016-07-17 19:39 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2016-11-13 19:24 - 2016-07-16 23:52 - 00000000 ____D C:\WINDOWS\OCR
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\IME
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Help
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\System
2016-11-13 19:24 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-11-13 19:24 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-11-13 19:24 - 2016-03-24 13:05 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-13 19:22 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-11-13 19:21 - 2016-10-17 08:30 - 00000000 ___HD C:\Intel
2016-11-13 19:19 - 2016-07-16 12:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-13 19:11 - 2016-07-16 12:47 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ___RD C:\Program Files\Windows Defender
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\setup
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-11-13 18:55 - 2016-07-17 00:55 - 00000000 ___HD C:\$WINDOWS.~BT
2016-11-13 18:12 - 2016-03-24 13:06 - 00001254 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-11-13 14:12 - 2016-03-24 13:06 - 00001250 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-11-11 14:52 - 2016-07-17 19:45 - 00000000 ____D C:\ProgramData\McAfee
2016-11-11 14:49 - 2016-03-24 13:05 - 00000000 ____D C:\ProgramData\WildTangent
2016-11-11 14:16 - 2015-10-30 08:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-11-11 14:16 - 2015-10-30 08:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-11-11 14:08 - 2016-07-17 19:38 - 00000000 ____D C:\ProgramData\Intel
2016-11-11 14:03 - 2016-03-24 19:38 - 00000000 ____D C:\WINDOWS\Log
2016-10-29 00:56 - 2016-07-16 12:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-29 00:56 - 2016-07-16 12:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-11-14 14:59 - 2016-11-14 15:03 - 0003235 _____ () C:\Users\Daniel\AppData\Roaming\droid4xinstaller.log
2016-11-11 14:03 - 2016-11-20 16:24 - 0000206 _____ () C:\Users\Daniel\AppData\Roaming\sp_data.sys
2016-11-16 16:24 - 2016-11-19 10:58 - 0001456 _____ () C:\Users\Daniel\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-13 19:21 - 2016-11-13 19:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\libeay32.dll
C:\Users\Daniel\AppData\Local\Temp\msvcr120.dll
C:\Users\Daniel\AppData\Local\Temp\RemoveTemp.exe
C:\Users\Daniel\AppData\Local\Temp\sqlite3.dll
C:\Users\Daniel\AppData\Local\Temp\Uninstall.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-11-13 19:20
==================== Ende von FRST.txt ============================
|
|
20.11.2016, 19:44
| #7 | |
| /// TB-Ausbilder /// Anleitungs-Guru | UCGuard eingefangen, lässt sich nicht entfernen Hi, Schritt 1 Bitte lasse die Datei aus der Code-Box bei  überprüfen.
__________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer |
|
20.11.2016, 19:58
| #8 |
| | UCGuard eingefangen, lässt sich nicht entfernen Die Datei wurde bereits von Malwarebytes in Quarantäne verschoben, ich habe sie wieder hergestellt, gescannt und wieder in Quarantäne verschoben: https://www.virustotal.com/de/file/23e06ee6dcadc232b0e183c13cf3febcae41a8f3ec8eb293773ccdec43eb8bc0/analysis/1479668126/ Geändert von gate0keeper (20.11.2016 um 20:07 Uhr) |
|
20.11.2016, 20:16
| #9 |
| /// TB-Ausbilder /// Anleitungs-Guru | UCGuard eingefangen, lässt sich nicht entfernenCode:
ATTFilter 2016-11-20 14:41 - 2016-11-20 15:34 - 00000000 ____D C:\Program Files (x86)\KMSPico 10.0.6
Microsoft-Produkte kann man auch kaufen. Wenn man keine Kohle hat, dann gibts auch Malstifte bei ALDI. Kein Wunder dass man sich die Kiste versaut wenn man jeden Dreck runterlädt... Schritt 1   Drücke bitte die  + R Taste und schreibe notepad in das Ausführen Fenster.Klicke auf OK und kopiere nun den Text aus der Codebox in das leere Textdokument: Code:
ATTFilter CloseProcesses:
R2 Tipuly; C:\Program Files (x86)\Drabapythebution\whtcore.dll [276992 2016-11-20] () [Datei ist nicht signiert]
R1 UCGuard; C:\WINDOWS\System32\DRIVERS\ucguard.sys
C:\WINDOWS\System32\DRIVERS\ucguard.sys
C:\Program Files (x86)\Drabapythebution
C:\Users\Daniel\AppData\Local\YxqfPack
C:\Users\Daniel\AppData\Roaming\Chihupyberjesp
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [ARLworks] => C:\Windows\SysWOW64\regsvr32.exe C:\Users\Daniel\AppData\Local\YxqfPack\bsvlemwk.dll
HKU\S-1-5-18\...\Run: [] => 0
ShellExecuteHooks: - {87CC2AE2-A5BD-11E6-B178-64006A5CFC23} - C:\Users\Daniel\AppData\Roaming\Chihupyberjesp\Suzaph.dll [146944 2016-11-20] ()
ShellIconOverlayIdentifiers: [KzShlobj] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} => Keine Datei
EmptyTemp:
Schritt 2  Bitte starte FRST erneut, und drücke auf Untersuchen. Bitte poste mir den Inhalt des Logs.
__________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer |
|
20.11.2016, 20:27
| #10 |
| | UCGuard eingefangen, lässt sich nicht entfernen Ja, das denke ich auch, mein Sohn hat das irgendwie anders gesehen als er den Computer mit diesem Müll vollgestopft hat. Ich musste noch mehr solcher Software entfernen. Dr Bengel hat auf jeden Fall erstmal Rechnerverbot. Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-11-2016 01
durchgeführt von Daniel (20-11-2016 20:22:26) Run:1
Gestartet von C:\Users\Daniel\Desktop\Malware
Geladene Profile: Daniel (Verfügbare Profile: Daniel)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
CloseProcesses:
R2 Tipuly; C:\Program Files (x86)\Drabapythebution\whtcore.dll [276992 2016-11-20] () [Datei ist nicht signiert]
R1 UCGuard; C:\WINDOWS\System32\DRIVERS\ucguard.sys
C:\WINDOWS\System32\DRIVERS\ucguard.sys
C:\Program Files (x86)\Drabapythebution
C:\Users\Daniel\AppData\Local\YxqfPack
C:\Users\Daniel\AppData\Roaming\Chihupyberjesp
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [ARLworks] => C:\Windows\SysWOW64\regsvr32.exe C:\Users\Daniel\AppData\Local\YxqfPack\bsvlemwk.dll
HKU\S-1-5-18\...\Run: [] => 0
ShellExecuteHooks: - {87CC2AE2-A5BD-11E6-B178-64006A5CFC23} - C:\Users\Daniel\AppData\Roaming\Chihupyberjesp\Suzaph.dll [146944 2016-11-20] ()
ShellIconOverlayIdentifiers: [KzShlobj] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} => Keine Datei
EmptyTemp:
*****************
Prozess erfolgreich geschlossen.
Tipuly => Dienst erfolgreich gestoppt.
Tipuly => Dienst erfolgreich entfernt
UCGuard => Dienst konnte nicht gestoppt werden.
UCGuard => Dienst erfolgreich entfernt
C:\WINDOWS\System32\DRIVERS\ucguard.sys => erfolgreich verschoben
C:\Program Files (x86)\Drabapythebution => erfolgreich verschoben
C:\Users\Daniel\AppData\Local\YxqfPack => erfolgreich verschoben
C:\Users\Daniel\AppData\Roaming\Chihupyberjesp => erfolgreich verschoben
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\EnableShellExecuteHooks => Wert erfolgreich entfernt
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Software\Microsoft\Windows\CurrentVersion\Run\\ARLworks => Wert erfolgreich entfernt
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\ => Wert erfolgreich entfernt
HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{87CC2AE2-A5BD-11E6-B178-64006A5CFC23} => Wert erfolgreich entfernt
"HKCR\CLSID\{87CC2AE2-A5BD-11E6-B178-64006A5CFC23}" => Schlüssel erfolgreich entfernt
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\KzShlobj" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} => Schlüssel nicht gefunden.
=========== EmptyTemp: ==========
BITS transfer queue => 40320 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10922863 B
Java, Flash, Steam htmlcache => 610 B
Windows/system/drivers => 25771584 B
Edge => 29333588 B
Chrome => 2929036 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 12148 B
NetworkService => 28206 B
Daniel => 724846801 B
RecycleBin => 0 B
EmptyTemp: => 757.1 MB temporäre Dateien entfernt.
================================
Das System musste neu gestartet werden.
==== Ende von Fixlog 20:22:49 ====
|
|
20.11.2016, 20:34
| #11 |
| /// TB-Ausbilder /// Anleitungs-Guru | UCGuard eingefangen, lässt sich nicht entfernen Schritt 2 bitte noch...
__________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer |
|
20.11.2016, 20:37
| #12 |
| | UCGuard eingefangen, lässt sich nicht entfernen Sorry, übersehen. Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2016 01 durchgeführt von Daniel (Administrator) auf DANIEL-LAPPI (20-11-2016 20:35:01) Gestartet von C:\Users\Daniel\Desktop\Malware Geladene Profile: Daniel (Verfügbare Profile: Daniel) Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Edge) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Intel Corporation) C:\Windows\System32\ibtsiva.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (LC Technology International, Inc.) C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe (Tobit.Software) C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxEM.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe (ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe (ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe () C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Tobit.Software) C:\Windows\SysWOW64\DV4TS.EXE (Dashlane, Inc.) C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe (ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\AsusWSPanel.exe () C:\Users\Daniel\Desktop\Malware\adwcleaner_6.030.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe ==================== Registry (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-11-13] (Microsoft Corporation) HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\ASUSWSLoader.exe [63968 2016-08-12] (ASUS Cloud Corporation) HKLM-x32\...\Run: [DV4TS.EXE] => c:\windows\SysWOW64\DV4TS.EXE [148248 2014-10-20] (Tobit.Software) HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [Dashlane] => C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe [478592 2016-11-10] (Dashlane, Inc.) HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [DashlanePlugin] => C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe [536960 2016-11-10] () ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{5efdabab-d792-46a0-b36e-5f6968815709}: [DhcpNameServer] 192.168.2.1 Internet Explorer: ================== HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Software\Microsoft\Internet Explorer\Main,Start Page = HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE SearchScopes: HKU\S-1-5-21-3857371912-3165755019-847613773-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-11-19] (Microsoft Corporation) BHO-x32: Dashlane BHO -> {42D79B50-CC4A-4A8E-860F-BE674AF053A2} -> C:\Users\Daniel\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2016-11-10] (Dashlane, Inc.) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-19] (Microsoft Corporation) Toolbar: HKLM-x32 - Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Daniel\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2016-11-10] (Dashlane, Inc.) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: daniel@99spaces.com FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-11-19] (Microsoft Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-11-19] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-11] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-11] (Google Inc.) Chrome: ======= CHR DefaultProfile: ChromeDefaultData CHR Profile: C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2016-11-20] <==== ACHTUNG CHR Extension: (Google Präsentationen) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-20] CHR Extension: (Google Docs) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-20] CHR Extension: (Google Drive) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-20] CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-20] CHR Extension: (Google Tabellen) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-20] CHR Extension: (Google Docs Offline) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-20] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-20] CHR Extension: (Google Mail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-20] CHR Extension: (Chrome Media Router) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-20] ==================== Dienste (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated) R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe [75264 2015-12-24] (ASUS Cloud Corporation) [Datei ist nicht signiert] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3073216 2016-10-30] (Microsoft Corporation) S3 cphs; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHeciSvc.exe [301536 2016-11-01] (Intel Corporation) S3 cplspcon; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHDCPSvc.exe [480224 2016-11-01] (Intel Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-11] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-11] (Dropbox, Inc.) R2 esifsvc; C:\WINDOWS\SysWoW64\esif_uf.exe [1392792 2015-10-02] (Intel Corporation) R2 igfxCUIService2.0.0.0; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe [341984 2016-11-01] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation) S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert] S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel Corporation) R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [396992 2015-07-06] (Intel) R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-09-18] (Intel Corporation) R2 LCTechSSDToolAsus; C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe [2563648 2016-09-01] (LC Technology International, Inc.) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-08-13] () R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-25] (NVIDIA Corporation) R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-10-25] (NVIDIA Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10155792 2016-11-07] (TeamViewer GmbH) R2 TSMaintenanceService; C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe [3584960 2016-08-31] (Tobit.Software) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-08-13] (Intel® Corporation) R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ====================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [141304 2015-12-18] (ASUS Corporation) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.) R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [57304 2015-10-02] (Intel Corporation) R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52200 2015-10-02] (Intel Corporation) R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260072 2015-10-02] (Intel Corporation) S3 iaLPSS2_I2C; C:\WINDOWS\System32\drivers\iaLPSS2_I2C.sys [185128 2015-06-16] (Intel Corporation) R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [250624 2016-10-15] (Intel Corporation) R3 igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igdkmd64.sys [11033056 2016-11-01] (Intel Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-11-20] (Malwarebytes) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7116288 2016-07-16] (Intel Corporation) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvlddmkm.sys [14159928 2016-10-26] (NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-10-25] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-10-25] (NVIDIA Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek ) R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [753368 2015-06-15] (Realsil Semiconductor Corporation) S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [52952 2016-10-03] (SteelSeries ApS) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.) R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [212056 2015-07-06] (Windows (R) Win 7 DDK provider) R1 VBoxUSBMon; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [127432 2016-11-14] (BigNox Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) R1 XQHDrv; C:\WINDOWS\system32\DRIVERS\XQHDrv.sys [253384 2016-11-14] (BigNox Corporation) S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-11-20 19:48 - 2016-11-20 19:48 - 00000000 ___HD C:\OneDriveTemp 2016-11-20 19:11 - 2016-11-20 19:11 - 00620763 _____ C:\Users\Daniel\Downloads\Filme_Jeder gegen jeden 2016 German 720p BluRay x264 SPiCY.nzb 2016-11-20 16:45 - 2016-11-20 16:45 - 00028127 _____ C:\Users\Daniel\Downloads\FRST.rar 2016-11-20 16:32 - 2016-11-20 16:33 - 00169948 _____ C:\TDSSKiller.3.1.0.12_20.11.2016_16.32.59_log.txt 2016-11-20 15:53 - 2016-11-20 20:35 - 00000000 ____D C:\FRST 2016-11-20 15:52 - 2016-11-20 20:22 - 00000000 ____D C:\Users\Daniel\Desktop\Malware 2016-11-20 15:30 - 2016-11-20 20:23 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2016-11-20 15:29 - 2016-11-20 15:37 - 00001167 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2016-11-20 15:29 - 2016-11-20 15:29 - 22851472 _____ (Malwarebytes ) C:\Users\Daniel\Downloads\mbam-setup-2.2.1.1043.exe 2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\ProgramData\Malwarebytes 2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2016-11-20 15:29 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2016-11-20 15:29 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2016-11-20 15:29 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2016-11-20 14:48 - 2016-11-20 14:48 - 00001597 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器.lnk 2016-11-20 14:48 - 2016-11-20 14:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\UCBrowser 2016-11-20 14:48 - 2016-11-20 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器 2016-11-20 14:46 - 2016-11-20 14:46 - 00187904 _____ C:\WINDOWS\rsrcs.dll 2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____H C:\WINDOWS\system32\BITBEB6.tmp 2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\WINDOWS\SysWOW64\sstmp 2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\WINDOWS\system32\sstmp 2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2016-11-20 14:45 - 2016-11-20 15:36 - 00000000 ____D C:\Users\Daniel\AppData\Local\Epftion 2016-11-20 14:45 - 2016-11-20 14:45 - 00000000 _____ C:\TOSTACK 2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\Avira 2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\Avg 2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\AVAST Software 2016-11-20 14:42 - 2016-11-20 14:43 - 00000000 ____D C:\Users\Daniel\AppData\Local\Lewatainpawuch 2016-11-20 14:41 - 2016-11-20 15:34 - 00000000 ____D C:\Program Files (x86)\KMSPico 10.0.6 2016-11-20 14:32 - 2016-11-20 14:32 - 09744538 _____ C:\Users\Daniel\Downloads\Filme_Jason Bourne 2016 German DTSHD DL 1080p BluRay AVC REMUX-MULTiPLEX.nzb 2016-11-20 14:32 - 2016-11-20 14:32 - 01106154 _____ C:\Users\Daniel\Downloads\Filme_Blackway Auf dem Pfad der Rache 2015 German 720p BluRay x264 ENCOUNTERS.nzb 2016-11-20 14:29 - 2016-11-20 14:29 - 01263892 _____ C:\Users\Daniel\Downloads\Filme_John Dies at the End 2012 German DTS DL 720p BluRay x264-LeetHD.nzb 2016-11-20 14:28 - 2016-11-20 14:28 - 00794234 _____ C:\Users\Daniel\Downloads\Filme_Mr Right 2015 German 720p BluRay x264-ENCOUNTERS.nzb 2016-11-20 14:11 - 2016-11-20 15:37 - 00000915 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk 2016-11-20 14:11 - 2016-11-20 15:36 - 00000867 _____ C:\Users\Daniel\Desktop\Start Tor Browser.lnk 2016-11-20 14:10 - 2016-11-20 14:10 - 00000000 ____D C:\Users\Daniel\Desktop\Tor Browser 2016-11-20 14:09 - 2016-11-20 14:10 - 50911952 _____ C:\Users\Daniel\Downloads\torbrowser-install-6.0.6_de.exe 2016-11-19 10:19 - 2016-11-19 10:19 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignf5c519d31dfcf267 2016-11-19 10:19 - 2016-11-19 10:19 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign2b990895b01fc659 2016-11-19 09:45 - 2016-11-19 09:45 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignaac81b9269ec4203 2016-11-19 09:45 - 2016-11-19 09:45 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign1872ce2bff0b17ce 2016-11-19 07:56 - 2016-11-19 07:56 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2016-11-19 07:53 - 2016-11-19 07:53 - 00043751 _____ C:\Users\Daniel\Downloads\581fead3a37ce.zip 2016-11-18 22:13 - 2016-11-18 23:06 - 00003502 _____ C:\Users\Daniel\Documents\Bodeni-Arbeitsbeschreibung.odt 2016-11-18 21:57 - 2016-11-18 21:57 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Foxit Software 2016-11-17 20:27 - 2016-11-17 20:27 - 00000000 ____D C:\Users\Daniel\Documents\EVE 2016-11-17 14:30 - 2016-11-20 15:36 - 00000787 _____ C:\Users\Daniel\Desktop\EVE Launcher.lnk 2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVE Launcher 2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\AppData\Local\CCP 2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\.QtWebEngineProcess 2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\.EVE 2016-11-17 14:29 - 2016-11-17 14:29 - 54881176 _____ C:\Users\Daniel\Downloads\EveLauncher-1097946.exe 2016-11-17 14:03 - 2016-11-17 14:04 - 08768160 _____ C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4 (1).rar 2016-11-17 13:48 - 2016-11-17 13:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign7d7adf8535a24a7b 2016-11-17 13:48 - 2016-11-17 13:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign1cfbc5b8419d8363 2016-11-16 22:50 - 2016-11-16 22:50 - 00000000 ____D C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4 2016-11-16 22:40 - 2016-11-16 22:42 - 08768160 _____ C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4.rar 2016-11-16 22:39 - 2016-11-16 22:41 - 09915776 _____ C:\Users\Daniel\Downloads\Download-Interspire-Email-Marketer-v6.1.4-Nulled-Scripts.zip 2016-11-16 16:24 - 2016-11-19 10:58 - 00001456 _____ C:\Users\Daniel\AppData\Local\Adobe Für Web speichern 13.0 Prefs 2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Adobe 2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignb5d67b1886cfd58b 2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign97c66928bc3ff4c7 2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign64377305ec57a3cb 2016-11-16 14:50 - 2016-11-20 16:16 - 00000000 ___RD C:\Users\Daniel\Creative Cloud Files 2016-11-16 14:50 - 2016-11-20 16:16 - 00000000 ____D C:\ProgramData\boost_interprocess 2016-11-15 17:08 - 2016-11-15 17:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsigne4cdea769c6ec550 2016-11-15 17:08 - 2016-11-15 17:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign7accc4c8229f6e07 2016-11-15 17:06 - 2016-11-20 15:37 - 00001381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Update Management Tool.lnk 2016-11-15 17:04 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignd93707d60b50a1e0 2016-11-15 17:04 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign0af6b16f1f08ea07 2016-11-15 17:03 - 2016-11-20 14:08 - 00000000 ____D C:\Users\Public\Documents\AdobeGC 2016-11-15 17:03 - 2016-11-15 17:03 - 00003626 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-DANIEL-LAPPI-Daniel 2016-11-15 17:03 - 2016-11-15 17:03 - 00000000 ____D C:\Users\Daniel\Documents\Adobe 2016-11-15 17:03 - 2016-11-15 17:03 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe 2016-11-15 17:01 - 2016-11-15 17:03 - 00000000 ____D C:\Program Files\Adobe 2016-11-15 16:59 - 2016-11-20 16:26 - 00000000 ____D C:\Program Files (x86)\Adobe 2016-11-15 16:52 - 2016-11-20 16:26 - 00000000 ____D C:\ProgramData\Adobe 2016-11-15 16:52 - 2016-11-20 16:16 - 00000000 ____D C:\Users\Daniel\AppData\Local\Adobe 2016-11-15 15:48 - 2016-11-20 15:37 - 00001042 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk 2016-11-15 15:48 - 2016-11-20 15:37 - 00001024 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk 2016-11-15 15:47 - 2016-11-15 16:22 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\TeamViewer 2016-11-15 15:42 - 2016-11-15 15:42 - 00000000 ____H C:\Users\Daniel\Documents\Default.rdp 2016-11-15 11:26 - 2016-11-15 11:25 - 30987232 _____ (AceBIT GmbH ) C:\Users\Daniel\Desktop\pdepot7 (1).exe 2016-11-14 15:57 - 2016-11-14 15:57 - 00000000 ____D C:\Users\Daniel\AppData\Local\MultiPlayerManager 2016-11-14 15:41 - 2016-11-20 15:36 - 00000875 _____ C:\Users\Daniel\Desktop\Multi-Drive.lnk 2016-11-14 15:41 - 2016-11-20 15:36 - 00000814 _____ C:\Users\Daniel\Desktop\Nox.lnk 2016-11-14 15:41 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Bignox 2016-11-14 15:41 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\vmlogs 2016-11-14 15:41 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\.BigNox 2016-11-14 15:41 - 2016-11-14 15:41 - 00253384 _____ (BigNox Corporation) C:\WINDOWS\system32\Drivers\XQHDrv.sys 2016-11-14 15:41 - 2016-11-14 15:41 - 00127432 _____ (BigNox Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys 2016-11-14 15:41 - 2016-11-14 15:41 - 00000041 _____ C:\Users\Daniel\inst.ini 2016-11-14 15:41 - 2016-11-14 15:41 - 00000000 ____D C:\Users\Daniel\Nox_share 2016-11-14 15:41 - 2016-11-14 15:41 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Nox 2016-11-14 15:40 - 2016-11-15 19:21 - 00000000 ____D C:\Users\Daniel\AppData\Local\Nox 2016-11-14 15:29 - 2016-11-20 20:31 - 00000000 ____D C:\AdwCleaner 2016-11-14 15:24 - 2016-11-14 15:40 - 308117896 _____ (Duodian Technology Co. Ltd.) C:\Users\Daniel\Downloads\nox_setup_v3.7.5.0_full_En.exe 2016-11-14 15:03 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\.android 2016-11-14 15:03 - 2016-11-14 15:27 - 00000000 ____D C:\Users\Daniel\.VirtualBox 2016-11-14 15:03 - 2016-11-14 15:10 - 00000078 _____ C:\hsrv.txt 2016-11-14 15:03 - 2016-11-14 15:03 - 00000000 ____D C:\Program Files\Oracle 2016-11-14 15:03 - 2014-05-16 14:04 - 00254240 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys 2016-11-14 14:59 - 2016-11-14 15:00 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\HaiYuInst 2016-11-14 14:58 - 2016-11-14 14:59 - 09448104 _____ C:\Users\Daniel\Downloads\Droid4XInstaller.exe 2016-11-14 13:01 - 2016-11-14 13:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Andy 2016-11-14 13:00 - 2016-09-06 19:25 - 00052288 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\vmkbd.sys 2016-11-14 12:38 - 2016-11-14 12:43 - 00000000 ____D C:\Users\Daniel\AppData\Local\VMware 2016-11-14 12:11 - 2016-11-14 12:11 - 00000000 ____D C:\Users\Daniel\licman 2016-11-14 10:25 - 2016-11-14 10:27 - 00000000 ____D C:\Users\Daniel\Desktop\Share 2016-11-14 10:18 - 2016-11-17 15:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\FileZilla 2016-11-14 10:17 - 2016-11-20 15:37 - 00001967 _____ C:\Users\Public\Desktop\FileZilla Client.lnk 2016-11-14 10:17 - 2016-11-14 10:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2016-11-14 10:17 - 2016-11-14 10:17 - 00000000 ____D C:\Program Files\FileZilla FTP Client 2016-11-13 20:06 - 2016-11-13 20:06 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\MPC-HC 2016-11-13 20:05 - 2016-11-13 20:05 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Brackets 2016-11-13 19:41 - 2016-11-20 15:37 - 00000733 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10-Upgrade-Assistent.lnk 2016-11-13 19:41 - 2016-11-13 19:41 - 00000000 ____D C:\Windows10Upgrade 2016-11-13 19:38 - 2016-11-13 19:38 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2016-11-13 19:36 - 2016-11-14 10:07 - 00000000 ____D C:\Users\Daniel\AppData\Local\ConnectedDevicesPlatform 2016-11-13 19:36 - 2016-11-13 19:36 - 00000020 ___SH C:\Users\Daniel\ntuser.ini 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Vorlagen 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Startmenü 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 ____D C:\ProgramData\USOShared 2016-11-13 19:28 - 2016-11-20 20:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-11-13 19:28 - 2016-11-20 14:01 - 00003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1 2016-11-13 19:28 - 2016-11-20 14:01 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2 2016-11-13 19:28 - 2016-11-13 19:28 - 00007623 _____ C:\WINDOWS\diagwrn.xml 2016-11-13 19:28 - 2016-11-13 19:28 - 00007623 _____ C:\WINDOWS\diagerr.xml 2016-11-13 19:28 - 2016-11-13 19:28 - 00003768 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA 2016-11-13 19:28 - 2016-11-13 19:28 - 00003654 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2016-11-13 19:28 - 2016-11-13 19:28 - 00003544 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore 2016-11-13 19:28 - 2016-11-13 19:28 - 00003430 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2016-11-13 19:28 - 2016-11-13 19:28 - 00003314 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9E9CEFD0-ADC6-483E-B86F-2719D52987D4} 2016-11-13 19:28 - 2016-11-13 19:28 - 00003140 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-11-13 19:28 - 2016-11-13 19:28 - 00003112 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-11-13 19:28 - 2016-11-13 19:28 - 00003042 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 2016-11-13 19:28 - 2016-11-13 19:28 - 00003040 _____ C:\WINDOWS\System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec 2016-11-13 19:28 - 2016-11-13 19:28 - 00002968 _____ C:\WINDOWS\System32\Tasks\Update Checker 2016-11-13 19:28 - 2016-11-13 19:28 - 00002960 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-11-13 19:28 - 2016-11-13 19:28 - 00002940 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-11-13 19:28 - 2016-11-13 19:28 - 00002924 _____ C:\WINDOWS\System32\Tasks\ATK Package 36D18D69AFC3 2016-11-13 19:28 - 2016-11-13 19:28 - 00002862 _____ C:\WINDOWS\System32\Tasks\ASUS Smart Gesture Launcher 2016-11-13 19:28 - 2016-11-13 19:28 - 00002850 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-11-13 19:28 - 2016-11-13 19:28 - 00002824 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task 2016-11-13 19:28 - 2016-11-13 19:28 - 00002808 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-11-13 19:28 - 2016-11-13 19:28 - 00002674 _____ C:\WINDOWS\System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon 2016-11-13 19:28 - 2016-11-13 19:28 - 00002346 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice 2016-11-13 19:28 - 2016-11-13 19:28 - 00002340 _____ C:\WINDOWS\System32\Tasks\ASUS USB Charger Plus 2016-11-13 19:28 - 2016-11-13 19:28 - 00002280 _____ C:\WINDOWS\System32\Tasks\RTKCPL 2016-11-13 19:28 - 2016-11-13 19:28 - 00002262 _____ C:\WINDOWS\System32\Tasks\DropboxOEM 2016-11-13 19:28 - 2016-11-13 19:28 - 00002214 _____ C:\WINDOWS\System32\Tasks\ATK Package A22126881260 2016-11-13 19:28 - 2016-11-13 19:28 - 00002214 _____ C:\WINDOWS\System32\Tasks\ASUS Splendid ACMON 2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee 2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel 2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS 2016-11-13 19:25 - 2016-11-20 15:37 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2016-11-13 19:23 - 2016-11-20 19:32 - 00000000 ____D C:\Users\Daniel 2016-11-13 19:23 - 2016-11-13 19:26 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Vorlagen 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Startmenü 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Netzwerkumgebung 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Lokale Einstellungen 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Eigene Dateien 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Druckumgebung 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Videos 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Musik 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Bilder 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Local\Verlauf 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Local\Anwendungsdaten 2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Anwendungsdaten 2016-11-13 19:22 - 2016-11-13 19:22 - 00000000 ____D C:\WINDOWS\SysWOW64\sda 2016-11-13 19:21 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Intel 2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\Program Files\Intel 2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_esif_umdf2_02_00_00.Wdf 2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____H C:\ProgramData\DP45977C.lfl 2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\WINDOWS\system32\DAX2 2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\Program Files\Realtek 2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin 2016-11-13 19:21 - 2016-11-01 23:05 - 00113672 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL 2016-11-13 19:21 - 2016-11-01 23:05 - 00104464 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL 2016-11-13 19:21 - 2016-10-25 21:17 - 06386232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2016-11-13 19:21 - 2016-10-25 21:17 - 02475968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2016-11-13 19:21 - 2016-10-25 21:17 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2016-11-13 19:21 - 2016-10-25 21:17 - 00548408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2016-11-13 19:21 - 2016-10-25 21:17 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2016-11-13 19:21 - 2016-10-25 21:17 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2016-11-13 19:21 - 2016-10-25 21:17 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2016-11-13 19:21 - 2016-10-24 07:31 - 07507695 _____ C:\WINDOWS\system32\nvcoproc.bin 2016-11-13 19:21 - 2016-07-16 12:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2016-11-13 19:20 - 2016-11-20 18:50 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2016-11-13 19:20 - 2016-11-15 16:24 - 00337736 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-11-13 19:20 - 2016-11-13 19:20 - 00000000 ____D C:\WINDOWS\ServiceProfiles 2016-11-13 19:19 - 2016-11-13 19:29 - 00000000 ___DC C:\WINDOWS\Panther 2016-11-13 19:18 - 2016-11-13 19:18 - 00000000 ____D C:\Windows.old 2016-11-13 19:16 - 2016-11-13 19:16 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2016-11-13 19:16 - 2016-11-13 19:16 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2016-11-13 19:16 - 2016-11-13 19:16 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2016-11-13 19:16 - 2016-11-13 19:16 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls 2016-11-13 19:16 - 2016-11-13 19:16 - 00788624 _____ C:\WINDOWS\system32\locale.nls 2016-11-13 19:16 - 2016-11-13 19:16 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2016-11-13 19:16 - 2016-11-13 19:16 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl 2016-11-13 19:16 - 2016-11-13 19:16 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml 2016-11-13 19:16 - 2016-11-13 19:16 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys 2016-11-13 19:16 - 2016-11-13 19:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2016-11-13 19:16 - 2016-11-13 19:16 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2016-11-13 19:16 - 2016-11-13 19:16 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 17188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL 2016-11-13 19:10 - 2016-11-13 19:10 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL 2016-11-13 19:10 - 2016-11-13 19:10 - 07792640 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 07216640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05622088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 04596224 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 04136960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 03435008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03405824 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03369984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03287552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03202048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03116544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 03054080 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02947072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02914304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02827864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2016-11-13 19:10 - 2016-11-13 19:10 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2016-11-13 19:10 - 2016-11-13 19:10 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02708992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02481768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02476544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02446696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02423296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02390016 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02360832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02290176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02276736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02107392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2016-11-13 19:10 - 2016-11-13 19:10 - 02083840 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2016-11-13 19:10 - 2016-11-13 19:10 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01990648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01980416 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01913344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01853776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01851696 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01847048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01738040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01710080 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01705976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01556712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 01554944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01507840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01472536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01453992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01369088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01362504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01358336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01322848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01320448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 01292640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01267504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01266176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01181536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 01176664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01157000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01117024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01112928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01071728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01066328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01037312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01013760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 01000288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2016-11-13 19:10 - 2016-11-13 19:10 - 00998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00988512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00980824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00966144 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi 2016-11-13 19:10 - 2016-11-13 19:10 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00908640 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00862064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00860512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00856872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00764936 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00755656 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00749920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00742704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00725664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_sr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00719360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00691080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00681304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkCollectionAgent.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00665768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe 2016-11-13 19:10 - 2016-11-13 19:10 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00658272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00650240 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00649568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00646136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00634944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2016-11-13 19:10 - 2016-11-13 19:10 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00595488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00595296 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2016-11-13 19:10 - 2016-11-13 19:10 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe |
|
20.11.2016, 20:39
| #13 |
| | UCGuard eingefangen, lässt sich nicht entfernenCode:
ATTFilter 2016-11-13 19:10 - 2016-11-13 19:10 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00557408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00512416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00500064 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00498952 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00496872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetworkCollectionAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00450392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00435040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00434528 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00433832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00424640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00418304 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00408600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00402352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00372440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00341936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00292872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00283488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00280472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00265728 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2016-11-13 19:10 - 2016-11-13 19:10 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00232800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00218008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingFolder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAC3ENC.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00206096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00204288 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00178528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvenotify.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00170960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00169056 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovslegacy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-11-13 19:10 - 2016-11-13 19:10 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidclass.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoplay.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovslegacy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DscCoreConfProv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00133472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00130912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00119648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorTcgDrv.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00113504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmifw.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Printers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-11-13 19:10 - 2016-11-13 19:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00081760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmifw.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00078688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00074080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00073568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pwrshplugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Sens.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TempSignedLicenseExchangeTask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00064352 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\MegaSas2i.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00063328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.UserDeviceAssociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManagerApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057400 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AddressParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundMediaPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00044472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00041824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidparse.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidusb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmimcext.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\encapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\delegatorprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi_passthru.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_IS2022.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\c_GSM7.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccessRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-11-13 19:10 - 2016-11-13 19:10 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2016-11-13 19:10 - 2016-11-13 19:10 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneutilRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-11-13 19:05 - 2016-11-13 19:05 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-11-13 19:03 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-11-13 19:03 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-11-13 19:03 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-11-13 19:03 - 2016-11-13 19:03 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-11-13 19:03 - 2016-11-13 19:03 - 00000000 ____D C:\Program Files\MSBuild
2016-11-13 19:02 - 2016-11-13 19:02 - 03753984 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2016-11-13 19:02 - 2016-11-13 19:02 - 00199008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-11-13 19:02 - 2016-05-25 14:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 14:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 14:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-11-13 19:02 - 2016-05-25 11:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 11:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 11:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-11-13 18:51 - 2016-11-20 15:37 - 00000720 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brackets.lnk
2016-11-13 18:51 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Brackets
2016-11-13 18:35 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack 64bit
2016-11-13 18:35 - 2016-11-13 18:35 - 00000000 ____D C:\Program Files\Combined Community Codec Pack 64bit
2016-11-13 10:20 - 2016-11-13 10:20 - 00000000 ____D C:\Users\Daniel\Documents\CPY_SAVES
2016-11-13 04:23 - 2016-11-13 05:14 - 00000000 ____D C:\Users\Daniel\AppData\Local\QuantumBreak
2016-11-13 04:23 - 2016-11-13 04:23 - 00000000 ____D C:\Users\Daniel\Documents\SkidRow
2016-11-12 17:07 - 2016-11-12 17:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-11-12 14:30 - 2016-11-20 15:37 - 00000595 _____ C:\Users\Public\Desktop\Fraps.lnk
2016-11-12 14:30 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2016-11-12 14:29 - 2016-11-12 14:30 - 00000000 ____D C:\Fraps
2016-11-12 13:47 - 2016-11-20 15:37 - 00001481 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-11-12 13:47 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-11-12 13:47 - 2016-11-12 13:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\CEF
2016-11-12 13:47 - 2016-10-25 21:22 - 01852352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01452480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00104384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00094144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-11-12 13:40 - 2016-11-20 15:37 - 00001292 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intel WiDi Toast.lnk
2016-11-12 13:33 - 2016-11-12 14:39 - 00000000 ____D C:\Users\Daniel\Documents\The Witcher 3
2016-11-12 12:45 - 2016-11-20 16:23 - 00000000 ____D C:\Users\Daniel\AppData\Local\CrashDumps
2016-11-12 12:45 - 2016-11-12 12:45 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Steam
2016-11-12 12:07 - 2016-11-12 12:07 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tobit
2016-11-12 12:06 - 2016-11-20 15:37 - 00002258 _____ C:\ProgramData\Microsoft\Windows\Start Menu\david®.LNK
2016-11-12 12:06 - 2016-11-19 07:54 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Tobit
2016-11-12 12:06 - 2016-11-17 09:57 - 05985728 _____ (Tobit.Software) C:\WINDOWS\uninstic.exe
2016-11-12 12:06 - 2016-11-13 19:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tobit.Software
2016-11-12 12:06 - 2014-10-20 10:43 - 00148248 _____ (Tobit.Software) C:\WINDOWS\SysWOW64\DV4TS.EXE
2016-11-12 12:06 - 2009-01-06 10:56 - 00000023 _____ C:\WINDOWS\AVFD.INI
2016-11-12 12:06 - 2006-07-19 11:01 - 00099840 _____ C:\WINDOWS\IMGMSGMO.dll
2016-11-12 12:06 - 2006-07-19 09:31 - 00185344 _____ C:\WINDOWS\DVGRF.DLL
2016-11-12 12:05 - 2016-11-20 15:05 - 00000000 ____D C:\Program Files (x86)\Tobit InfoCenter
2016-11-12 12:05 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\gs
2016-11-12 12:05 - 2016-11-19 07:58 - 00000538 _____ C:\WINDOWS\Tobit.ini
2016-11-12 12:05 - 2016-11-17 13:31 - 11679232 _____ C:\WINDOWS\TOBITCLT.DLL
2016-11-12 12:05 - 2016-11-17 13:31 - 05310976 _____ (Tobit.Software) C:\WINDOWS\DVAPI32.DLL
2016-11-12 12:05 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
2016-11-12 12:05 - 2016-11-12 12:05 - 00000000 ____D C:\ProgramData\Tobit
2016-11-12 12:05 - 2016-10-25 13:50 - 00234496 _____ (Tobit Software) C:\WINDOWS\dvepostm.dll
2016-11-12 12:05 - 2010-11-18 14:39 - 00115712 _____ (Tobit Software) C:\WINDOWS\faxwarmo.dll
2016-11-12 09:30 - 2016-11-12 09:30 - 00000000 ____D C:\ProgramData\Steam
2016-11-11 20:33 - 2016-11-11 20:33 - 00000000 ____D C:\Users\Daniel\Documents\My Games
2016-11-11 19:58 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-11 19:58 - 2016-09-09 19:25 - 00269600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-11-11 19:58 - 2016-09-09 19:25 - 00261920 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-11-11 19:58 - 2016-09-09 19:25 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-11-11 19:58 - 2016-09-09 19:24 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-11-11 19:57 - 2016-10-25 20:12 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2016-11-11 19:56 - 2016-10-25 22:40 - 40123840 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 35224632 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 34711096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 28202040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10912232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10782952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10332664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 09120512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 08913512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 08723968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 03927288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 03468736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 02940352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 02574784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01953336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437570.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01586744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437570.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01037248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00975296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00943552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00897080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00802768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00683640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00644112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00572888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00438208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00394704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00390200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00327224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00042296 _____ C:\WINDOWS\system32\nvinfo.pb
2016-11-11 19:56 - 2016-10-25 22:40 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-11-11 19:56 - 2016-10-25 22:40 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2016-11-11 19:51 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2016-11-11 19:51 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2016-11-11 19:51 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2016-11-11 19:51 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2016-11-11 19:51 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2016-11-11 19:51 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2016-11-11 19:51 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2016-11-11 19:51 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2016-11-11 19:51 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2016-11-11 19:51 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2016-11-11 19:51 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2016-11-11 19:51 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2016-11-11 19:51 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2016-11-11 19:51 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2016-11-11 19:51 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2016-11-11 19:51 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2016-11-11 19:51 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2016-11-11 19:51 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2016-11-11 19:51 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2016-11-11 19:51 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2016-11-11 19:51 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2016-11-11 19:51 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2016-11-11 19:51 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2016-11-11 19:51 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2016-11-11 19:51 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2016-11-11 19:51 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2016-11-11 19:51 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2016-11-11 19:51 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2016-11-11 19:51 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2016-11-11 19:51 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2016-11-11 19:51 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2016-11-11 19:51 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2016-11-11 19:51 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2016-11-11 19:51 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2016-11-11 19:51 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2016-11-11 19:51 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2016-11-11 19:51 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2016-11-11 19:51 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2016-11-11 19:51 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2016-11-11 19:51 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2016-11-11 19:51 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2016-11-11 19:51 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2016-11-11 19:51 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2016-11-11 19:51 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2016-11-11 19:51 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2016-11-11 19:51 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2016-11-11 19:51 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2016-11-11 19:51 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2016-11-11 19:51 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2016-11-11 19:51 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2016-11-11 19:51 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2016-11-11 19:51 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2016-11-11 19:51 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2016-11-11 19:51 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2016-11-11 19:51 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2016-11-11 19:51 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2016-11-11 19:51 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2016-11-11 19:51 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2016-11-11 19:51 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2016-11-11 19:41 - 2016-11-11 19:41 - 00692072 _____ (Disc Soft Ltd.) C:\Users\Daniel\Downloads\DTLiteInstaller.exe
2016-11-11 19:38 - 2016-11-11 19:38 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WinRAR
2016-11-11 19:37 - 2016-11-20 15:36 - 00000707 _____ C:\Users\Daniel\Desktop\QuickPar.lnk
2016-11-11 19:37 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar
2016-11-11 19:36 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-11 19:36 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-11 18:55 - 2016-11-20 15:37 - 00000705 _____ C:\Users\Public\Desktop\Alt.Binz.lnk
2016-11-11 18:55 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alt.Binz
2016-11-11 18:55 - 2016-11-11 18:56 - 00000000 ____D C:\Users\Daniel\AppData\Local\Alt.Binz
2016-11-11 18:47 - 2016-11-11 18:54 - 02201253 _____ C:\Users\Daniel\Downloads\altbinz_0.39.4.exe
2016-11-11 17:31 - 2016-11-20 15:37 - 00001291 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eye Care Switcher.lnk
2016-11-11 17:23 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\NVIDIA
2016-11-11 17:23 - 2016-11-14 13:10 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\VMware
2016-11-11 17:22 - 2016-11-14 13:00 - 01551250 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-11-11 17:21 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-11-11 17:21 - 2016-11-11 17:21 - 00000000 ____D C:\ProgramData\Apple
2016-11-11 17:21 - 2016-11-11 17:21 - 00000000 ____D C:\Program Files\Bonjour
2016-11-11 17:19 - 2016-11-14 13:10 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Andy
2016-11-11 17:19 - 2016-11-11 17:23 - 00000000 ____D C:\Users\Daniel\Andy
2016-11-11 17:15 - 2016-10-28 02:22 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-11-11 14:59 - 2016-11-11 14:59 - 00000000 __SHD C:\aws
2016-11-11 14:57 - 2016-11-20 15:37 - 00001369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-11 14:57 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-11 14:57 - 2016-11-13 18:02 - 00001142 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-11 14:57 - 2016-11-13 15:02 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-11 14:57 - 2016-11-11 15:06 - 00000000 ____D C:\Users\Daniel\AppData\Local\Google
2016-11-11 14:56 - 2016-11-11 14:56 - 00000000 ____D C:\Users\Daniel\AppData\Local\MicrosoftEdge
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WildTangent
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\kingsoft
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Local\kingsoft
2016-11-11 14:42 - 2016-11-11 14:42 - 00000000 ____D C:\Users\Daniel\AppData\Local\NetworkTiles
2016-11-11 14:34 - 2016-11-20 14:44 - 00000000 _____ C:\Users\Daniel\AppData\LocalLow\rightsCheck_1.txt
2016-11-11 14:32 - 2016-11-11 14:32 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Dashlane
2016-11-11 14:29 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2016-11-11 14:29 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-11-11 14:22 - 2016-11-14 22:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\Comms
2016-11-11 14:22 - 2016-11-11 14:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-11 14:22 - 2016-11-11 14:22 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-11 14:12 - 2016-11-20 15:37 - 00002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 25 GB.lnk
2016-11-11 14:10 - 2016-11-11 14:59 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\awsRun
2016-11-11 14:09 - 2016-11-20 15:37 - 00001302 _____ C:\Users\Public\Desktop\Solid State Doctor - Asus Edition.lnk
2016-11-11 14:09 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Solid State Doctor - Asus Edition
2016-11-11 14:09 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Notepad++
2016-11-11 14:09 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solid State Doctor - Asus Edition
2016-11-11 14:09 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-11-11 14:09 - 2016-11-11 14:09 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Notepad++
2016-11-11 14:09 - 2016-11-11 14:09 - 00000000 ____D C:\Users\Daniel\AppData\Local\LC Technology Inc
2016-11-11 14:08 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Dashlane
2016-11-11 14:08 - 2016-11-16 12:32 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Dashlane
2016-11-11 14:08 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2016-11-11 14:07 - 2016-11-20 15:37 - 00002367 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMDb.lnk
2016-11-11 14:07 - 2016-11-20 15:37 - 00002367 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CloudConvert.lnk
2016-11-11 14:07 - 2016-11-20 15:36 - 00002337 _____ C:\Users\Daniel\Desktop\IMDb.lnk
2016-11-11 14:07 - 2016-11-20 15:36 - 00002337 _____ C:\Users\Daniel\Desktop\CloudConvert.lnk
2016-11-11 14:06 - 2016-11-11 14:06 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Macromedia
2016-11-11 14:05 - 2016-11-20 20:24 - 00000000 ___RD C:\Users\Daniel\OneDrive
2016-11-11 14:05 - 2016-11-20 15:37 - 00002388 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-11-11 14:05 - 2016-11-11 14:05 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Skype
2016-11-11 14:05 - 2016-11-11 14:05 - 00000000 ____D C:\Users\Daniel\AppData\Local\ActiveSync
2016-11-11 14:04 - 2016-11-11 14:04 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\DropboxOEM
2016-11-11 14:04 - 2016-11-11 14:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\DropboxOEM
2016-11-11 14:03 - 2016-11-20 20:23 - 00000206 _____ C:\Users\Daniel\AppData\Roaming\sp_data.sys
2016-11-11 14:03 - 2016-11-20 20:23 - 00000000 __SHD C:\Users\Daniel\IntelGraphicsProfiles
2016-11-11 14:03 - 2016-11-20 20:23 - 00000000 ____D C:\Users\Daniel\AppData\Local\ASUS GIFTBOX
2016-11-11 14:03 - 2016-11-20 16:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Adobe
2016-11-11 14:03 - 2016-11-14 22:46 - 00000000 ____D C:\Users\Daniel\AppData\Local\Packages
2016-11-11 14:03 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2016-11-11 14:03 - 2016-11-12 16:30 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA Corporation
2016-11-11 14:03 - 2016-11-12 13:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA
2016-11-11 14:03 - 2016-11-12 12:06 - 00000000 ____D C:\Users\Daniel\AppData\Local\VirtualStore
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WebStorage
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Intel
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\TileDataLayer
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\Publishers
2016-11-11 14:00 - 2016-11-11 14:03 - 00000000 ____D C:\ProgramData\USBChargerPlus
2016-11-11 14:00 - 2016-11-11 14:00 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-11-01 23:05 - 2016-11-01 23:05 - 00271368 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-11-01 23:05 - 2016-11-01 23:05 - 00141320 _____ C:\WINDOWS\SysWOW64\libEGL.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00113672 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00112136 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00104464 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00101384 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll
2016-10-30 09:28 - 2016-10-30 09:28 - 00085744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00394496 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00271104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vccorlib140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00089328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00639728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00334616 _____ (Microsoft Corporation) C:\WINDOWS\system32\concrt140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00244504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\concrt140.dll
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-11-20 20:30 - 2016-07-16 23:51 - 00725690 _____ C:\WINDOWS\system32\perfh007.dat
2016-11-20 20:30 - 2016-07-16 23:51 - 00152832 _____ C:\WINDOWS\system32\perfc007.dat
2016-11-20 20:30 - 2016-03-24 12:50 - 01901796 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-20 20:23 - 2016-10-17 08:29 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-20 20:23 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-11-20 19:29 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-20 15:37 - 2016-07-17 19:58 - 00002118 _____ C:\Users\Public\Desktop\Dropbox 25 GB.lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001355 _____ C:\Users\Public\Desktop\WebStorage.lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001148 _____ C:\Users\Public\Desktop\Eye Care Switcher.Lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001011 _____ C:\Users\Public\Desktop\Foxit PhantomPDF.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002543 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002539 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-11-20 15:37 - 2016-03-24 13:04 - 00002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS GIFTBOX.lnk
2016-11-20 15:34 - 2016-07-17 19:39 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-11-20 14:43 - 2016-07-17 19:45 - 00000000 ____D C:\Program Files (x86)\ICEpower
2016-11-20 14:43 - 2016-07-17 19:41 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-11-20 14:43 - 2016-07-17 19:41 - 00000000 ____D C:\Program Files (x86)\Intel Corporation
2016-11-20 14:43 - 2016-07-17 19:40 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-11-20 14:43 - 2016-07-17 19:40 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-11-20 14:43 - 2016-07-17 19:36 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-11-20 14:43 - 2016-03-24 13:04 - 00000000 ____D C:\Program Files (x86)\Foxit PhantomPDF
2016-11-20 14:43 - 2016-03-24 13:04 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-11-20 14:02 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-20 14:02 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-19 07:57 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-19 07:56 - 2016-07-17 19:48 - 00000000 ____D C:\Program Files\Microsoft Office
2016-11-19 07:56 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-16 21:14 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-15 17:00 - 2016-03-24 13:04 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-15 15:41 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-14 15:41 - 2016-07-17 19:44 - 00000000 ____D C:\Program Files\DIFX
2016-11-14 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Registration
2016-11-14 10:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-11-14 10:08 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-11-13 19:36 - 2016-07-17 19:31 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-13 19:29 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-11-13 19:29 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows NT
2016-11-13 19:29 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-11-13 19:28 - 2016-10-17 09:23 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-11-13 19:28 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\Media
2016-11-13 19:28 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-11-13 19:27 - 2016-10-17 08:42 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-11-13 19:27 - 2016-07-16 12:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-11-13 19:26 - 2016-07-17 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2016-11-13 19:26 - 2016-03-24 13:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2016-11-13 19:26 - 2016-03-24 13:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-11-13 19:25 - 2016-10-17 09:18 - 00000000 ____D C:\Users\Default.migrated
2016-11-13 19:24 - 2016-07-17 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICEpower
2016-11-13 19:24 - 2016-07-17 19:41 - 00000000 ____D C:\Program Files\Intel Corporation
2016-11-13 19:24 - 2016-07-17 19:39 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2016-11-13 19:24 - 2016-07-16 23:52 - 00000000 ____D C:\WINDOWS\OCR
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\IME
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Help
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\System
2016-11-13 19:24 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-11-13 19:24 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-11-13 19:24 - 2016-03-24 13:05 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-13 19:22 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-11-13 19:21 - 2016-10-17 08:30 - 00000000 ___HD C:\Intel
2016-11-13 19:19 - 2016-07-16 12:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-13 19:11 - 2016-07-16 12:47 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ___RD C:\Program Files\Windows Defender
|
|
20.11.2016, 20:40
| #14 |
| | UCGuard eingefangen, lässt sich nicht entfernenCode:
ATTFilter 2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\setup
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-11-13 18:55 - 2016-07-17 00:55 - 00000000 ___HD C:\$WINDOWS.~BT
2016-11-13 18:12 - 2016-03-24 13:06 - 00001254 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-11-13 14:12 - 2016-03-24 13:06 - 00001250 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-11-11 14:52 - 2016-07-17 19:45 - 00000000 ____D C:\ProgramData\McAfee
2016-11-11 14:49 - 2016-03-24 13:05 - 00000000 ____D C:\ProgramData\WildTangent
2016-11-11 14:16 - 2015-10-30 08:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-11-11 14:16 - 2015-10-30 08:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-11-11 14:08 - 2016-07-17 19:38 - 00000000 ____D C:\ProgramData\Intel
2016-11-11 14:03 - 2016-03-24 19:38 - 00000000 ____D C:\WINDOWS\Log
2016-10-29 00:56 - 2016-07-16 12:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-29 00:56 - 2016-07-16 12:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-11-14 14:59 - 2016-11-14 15:03 - 0003235 _____ () C:\Users\Daniel\AppData\Roaming\droid4xinstaller.log
2016-11-11 14:03 - 2016-11-20 20:23 - 0000206 _____ () C:\Users\Daniel\AppData\Roaming\sp_data.sys
2016-11-16 16:24 - 2016-11-19 10:58 - 0001456 _____ () C:\Users\Daniel\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-13 19:21 - 2016-11-13 19:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\libeay32.dll
C:\Users\Daniel\AppData\Local\Temp\msvcr120.dll
C:\Users\Daniel\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-11-13 19:20
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-11-2016 01
durchgeführt von Daniel (20-11-2016 20:35:28)
Gestartet von C:\Users\Daniel\Desktop\Malware
Windows 10 Home Version 1607 (X64) (2016-11-13 18:29:26)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3857371912-3165755019-847613773-500 - Administrator - Disabled)
Daniel (S-1-5-21-3857371912-3165755019-847613773-1001 - Administrator - Enabled) => C:\Users\Daniel
DefaultAccount (S-1-5-21-3857371912-3165755019-847613773-503 - Limited - Disabled)
Gast (S-1-5-21-3857371912-3165755019-847613773-501 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 8.0 - PainteR)
Alt.Binz 0.39.4 (HKLM-x32\...\Alt.Binz) (Version: 0.39.4 - Rdl)
Ansel (Version: 375.70 - NVIDIA Corporation) Hidden
ASUS GIFTBOX (HKLM-x32\...\ASUS GIFTBOX) (Version: 7.1.13 - ASUSTek Computer Inc)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.15.0003 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.112 - ICEpower a/s)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brackets (HKLM-x32\...\{0ED76FF2-9370-4437-8C51-39F27DD0361B}) (Version: 1.8 - brackets.io)
CloudConvert (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\CloudConvert) (Version: - Lunaweb Ltd.)
Combined Community Codec Pack 64bit 2015-10-18 (HKLM\...\Combined Community Codec Pack 64bit_is1) (Version: 2015.10.19.0 - CCCP Project)
Dashlane (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Dashlane) (Version: 4.6.3.20593 - Dashlane SAS)
david® Client (HKLM-x32\...\david® Client) (Version: 12.00a - Tobit.Software)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.3 - ASUSTek Computer Inc.)
Dropbox 25 GB (HKLM-x32\...\{736A97C6-8766-3699-84A9-71736C5E0CE3}) (Version: 3.1.11.0 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.57.1 - Dropbox, Inc.) Hidden
eBay (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\eBay) (Version: - eBay Inc.)
EVE Online (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\{975d25d5-e53d-4afa-9ec8-db6e8b9cfe94}) (Version: 1.0.0 - CCP)
FileZilla Client 3.22.2.2 (HKLM-x32\...\FileZilla Client) (Version: 3.22.2.2 - Tim Kosse)
Foxit PhantomPDF (HKLM-x32\...\{39263796-F296-43AF-909C-FCF99592BAC4}) (Version: 7.2.52.1209 - Foxit Software Inc.)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.14) (Version: 9.14 - Artifex Software Inc.)
IMDb (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\IMDb) (Version: - IMDb.com, Inc.)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.11 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10604.207 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1169 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4364 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{C7CD6D54-26AF-4D93-B06F-D81ACE8624CB}) (Version: 6.0.40.0 - Intel Corporation)
Intel(R) WiDi Software Asset Manager (x32 Version: 1.1.347 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{64FD4757-7186-4F12-9AA8-5EE809CAB282}) (Version: 17.1.1532.1814 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{4c8b7360-62a2-4339-b745-41323055d0bb}) (Version: 18.20.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.7466.2038 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 7 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 3.7.5.0 - Duodian Technology Co. Ltd.)
NVIDIA GeForce Experience 3.1.0.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.0.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.70 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Oracle VM VirtualBox 4.3.12_ZZZZ (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation)
QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10143.21278 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7647 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0330 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
Solid State Doctor - Asus Edition 3.1.3.9 (HKLM-x32\...\{63327DD6-398B-480F-838D-B7C55E82B1D4}_is1) (Version: 3.1.3.9 - LC Technology International, Inc.)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.70155 Beta - TeamViewer)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.11.570 - ASUS Cloud Corporation)
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation)
Windows Driver Package - ASUS (AsusSGDrv) Mouse (11/11/2015 8.0.0.23) (HKLM\...\FF0137EA2940E916D51DA702B6425126CC7C89BF) (Version: 11/11/2015 8.0.0.23 - ASUS)
Windows Driver Package - BigNox Corporation VBoxUSBMon System (09/16/2015 4.3.12) (HKLM\...\39F54A37125643D2E1E90FA7D81F36ACC9441510) (Version: 09/16/2015 4.3.12 - BigNox Corporation)
Windows Driver Package - BigNox Corporation XQHDrv System (09/16/2015 4.3.12) (HKLM\...\0147813640F7AF69F569581EE672B6BE1E71798E) (Version: 09/16/2015 4.3.12 - BigNox Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.1.0 - ASUS)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0100E7FD-5EB7-492E-B167-91E916F30B1F} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {0E1523E6-CAB2-485B-8AC9-AEFC1EB450E4} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {157421A9-FB3C-4AFA-9FFF-512C01F8711F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
Task: {17781704-2916-4310-864A-245F0C8CEAB8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-11] (Google Inc.)
Task: {37D5E902-2B4C-4199-9978-152D48BB5FB3} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-16] (Intel Corporation)
Task: {3984F180-3CD4-4C54-B4D0-E2BB4D30188E} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-16] (Intel Corporation)
Task: {39CD21EB-35CB-4512-AA79-269F27FC6E2F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-11] (Dropbox, Inc.)
Task: {40C16C89-5B22-4B8C-9C81-473B802B8152} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-11] (Dropbox, Inc.)
Task: {4946EDF4-0687-4D4B-B641-4317E441D4EC} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {4B461FB9-85A6-46DA-84CC-4629C116A3F6} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-18] (AsusTek)
Task: {4D0CA996-758A-498D-A879-F2E2DD79379F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {55B98368-E604-4474-AEB8-DBBC8D7AF48F} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2015-06-05] (Intel Corporation)
Task: {5EFE99ED-0609-4B85-8F0C-B0FB931A558A} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {60BE0F07-FFC3-41B5-882F-2E324A7B65D6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {61EC3082-1113-4C52-84F7-06C10BD03CDE} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {6430CC72-EBF8-4F8C-AF87-2CCE1878ED23} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2016-01-19] (ASUSTek Computer Inc.)
Task: {719AF2B3-0F3C-442A-AD40-47FF278E6E21} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-11-02] (Realtek Semiconductor)
Task: {76889A72-0460-4039-BE04-868F62E0B8AD} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {89E300DF-43FF-4939-91CB-45285F8EE911} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {9631D532-5E87-47F4-82F5-55C22C4F6F19} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-02] (Realtek Semiconductor)
Task: {9AEAF006-2239-41F4-B7D2-B90EF1E161F2} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {A2AB61D5-D872-47C1-967A-EAD1E3C91A7B} - System32\Tasks\ASUS\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [2016-09-14] (ASUSTek Computer Inc)
Task: {AA1FEAD2-6BB6-4C28-9138-869379C33D41} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {B424492A-A56B-4EFB-857A-175905372003} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {B76BD0CD-871B-4C3B-B89C-51B60F6C0651} - System32\Tasks\AdobeAAMUpdater-1.0-DANIEL-LAPPI-Daniel => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {C1914B36-E14E-4413-889B-0CF9D246EC90} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-10-25] (NVIDIA Corporation)
Task: {D6B9EC85-29B4-43F8-9C7E-02C645225585} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2016-04-04] ()
Task: {D9180713-B6C3-4854-9560-B3F647A70393} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-11] (Google Inc.)
Task: {DEAB7728-9873-4322-B061-7A6EB4875CC6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-10-25] (NVIDIA Corporation)
Task: {E8F5CCD2-280E-42AB-A0FA-514491C2BB9E} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2016-02-23] (ASUS)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Daniel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-12 12:06 - 2006-07-19 11:01 - 00099840 _____ () C:\WINDOWS\IMGMSGMO.dll
2015-05-19 09:11 - 2015-05-19 09:11 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2016-11-12 13:47 - 2016-10-25 21:22 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-11-13 19:38 - 2016-11-13 19:38 - 01864384 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll
2016-09-21 21:16 - 2016-09-21 21:16 - 00230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-11 14:09 - 2016-11-10 14:52 - 00536960 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe
2016-11-11 14:57 - 2016-11-08 22:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-11 14:57 - 2016-11-08 22:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-11-17 13:45 - 2016-11-17 13:45 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-11-17 13:45 - 2016-11-17 13:45 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-17 13:45 - 2016-11-17 13:45 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-11-14 15:29 - 2016-11-14 15:29 - 03910208 _____ () C:\Users\Daniel\Desktop\Malware\adwcleaner_6.030.exe
2016-11-12 13:47 - 2016-10-25 21:21 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00029184 _____ () C:\Program Files (x86)\ASUS\Splendid\VideoEnhance.dll
2016-11-12 13:47 - 2016-10-25 20:57 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-12 13:47 - 2016-10-25 20:57 - 02808256 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-12 13:47 - 2016-10-25 21:21 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-12 13:47 - 2016-10-25 21:21 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-12 13:47 - 2016-10-25 20:57 - 00246840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-09-14 16:06 - 2016-09-14 16:06 - 01481728 _____ () C:\Program Files (x86)\ASUS\Giftbox\libglesv2.dll
2016-09-14 16:06 - 2016-09-14 16:06 - 00073728 _____ () C:\Program Files (x86)\ASUS\Giftbox\libegl.dll
2016-09-14 16:06 - 2016-09-14 16:06 - 00239616 _____ () C:\Program Files (x86)\ASUS\Giftbox\node_modules\appcloud-native-utils\anu.node
2016-11-13 19:38 - 2016-11-13 19:38 - 01383616 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll
2016-11-13 19:38 - 2016-11-13 19:38 - 00118976 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 06322048 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWData.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00471424 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWUtils.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 63181696 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWExternLib.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00441216 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebug.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00346496 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebugDll_win32.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 13827456 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00292736 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib_win.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 02285440 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLibData.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00334208 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\Kwift_DP.4.6.3.20593.dll
2016-11-12 13:47 - 2016-10-25 21:21 - 60817344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 07602560 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWApplication.4.6.3.20593.dll
2015-09-18 23:34 - 2015-09-18 23:34 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\localhost -> localhost
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-10-30 08:24 - 2016-11-20 16:31 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\asus\wallpapers\asus.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{503EB958-CC8A-41C0-8A3E-CD9F338E4E67}D:\spiele\doom 2016\doomx64vk.exe] => (Allow) D:\spiele\doom 2016\doomx64vk.exe
FirewallRules: [TCP Query User{D809933E-A172-49FB-995F-F883B52972CF}D:\spiele\doom 2016\doomx64vk.exe] => (Allow) D:\spiele\doom 2016\doomx64vk.exe
FirewallRules: [UDP Query User{2A25E36B-69B2-4D01-AB8B-C830637529EC}D:\spiele\quantum break\dx11\quantumbreak.exe] => (Allow) D:\spiele\quantum break\dx11\quantumbreak.exe
FirewallRules: [TCP Query User{25F46325-0B53-4F7F-80F7-4BD4D062C4B3}D:\spiele\quantum break\dx11\quantumbreak.exe] => (Allow) D:\spiele\quantum break\dx11\quantumbreak.exe
FirewallRules: [{F5133C28-3CB8-4EE4-A07E-C34DD8E95323}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{453BA9F9-C703-4CF5-8737-5A793CFED059}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{25F5B39B-92A2-4375-BFC0-89C1EA40780D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{743CD073-70F0-4A5D-913A-F0CA3164A708}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{AD2CBCD9-C4DD-4A90-AC0E-6F4DBDC646E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [UDP Query User{BCB25C4D-2B2A-41F9-9979-EE76CF72078F}D:\spiele\quantum break\game\dx11\quantumbreak.exe] => (Block) D:\spiele\quantum break\game\dx11\quantumbreak.exe
FirewallRules: [TCP Query User{A57BA6F8-8831-4A8E-867A-BC74B259C417}D:\spiele\quantum break\game\dx11\quantumbreak.exe] => (Block) D:\spiele\quantum break\game\dx11\quantumbreak.exe
FirewallRules: [UDP Query User{A31DFB79-2FE4-4E3E-9650-F1A34C62505E}D:\spiele\call of duty infinite warfare\iw7_ship.exe] => (Allow) D:\spiele\call of duty infinite warfare\iw7_ship.exe
FirewallRules: [TCP Query User{F63227DB-3CB4-46DD-A82B-3F40B2D7800F}D:\spiele\call of duty infinite warfare\iw7_ship.exe] => (Allow) D:\spiele\call of duty infinite warfare\iw7_ship.exe
FirewallRules: [{DDA3959D-70CC-4EAC-A008-C55E954F3137}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{97471493-F33B-4D83-9779-7816B3A596CB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A6D932F2-78BF-45F3-A0C2-1DD9C5341971}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B51601E2-B10D-4327-AE6C-4F475F92CAD4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{758D054B-9FA2-42FE-B36D-18B365AD32D0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{6EE4C259-DFB6-426B-AFC2-9FF91C894185}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{F26F6E94-0E76-4927-8B21-82EBF142722D}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{B8E0DF08-7602-4E3C-9AE1-71CA7284E838}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiAppOld.exe
FirewallRules: [{A3D1C3B4-C2E7-42E5-8AC6-BE34B232690C}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\Next\WirelessDisplay.exe
FirewallRules: [{1795864C-4439-43F8-B2C4-C9E0A204FAF9}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\SmartAgentTest.exe
FirewallRules: [{A32D5548-A2CB-434C-8105-0A59A2F9F3A9}] => (Allow) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
FirewallRules: [TCP Query User{FBBAF9E3-A66A-4E20-9949-DAF8D946BCB7}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [UDP Query User{DA40D239-21AF-4415-A204-2A7AB1901575}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [{1DB6D851-B186-4757-8300-7EBB30165DEC}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{3396AE47-66E6-4A83-9F42-FD66694449D9}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{3C29DC8E-3A5F-4A55-A25E-4A4A9D3ED040}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{3A6534AB-FB52-46CF-A381-AE00ECFE9E37}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{98F68D9E-F81A-4A6C-BB89-92AE473DA9C1}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{0270A14B-40C4-4A03-AF3C-7E25241FCBA2}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{E218D7BE-DAB5-4910-80AA-C9BD5CCE3CB4}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{813BB494-B83B-4E3C-80BC-01822CB188A5}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{676D32BF-7EAD-4A31-AAAF-50015C05FD8C}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{3EC93D62-3AB7-4113-BFFF-2FCDBA9809CA}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{0080A997-9B04-4755-958B-D6E113E452DB}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{B91952FD-910F-4325-81F2-2128A33C3C08}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{291BE070-7EBE-4402-BC36-488ADF0A4C89}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{30BDA45C-947B-4821-9AE9-51E3CDD35FFD}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{E46AEE8E-83C2-4434-94C2-EDE4ECF6D688}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{900B3700-3C7B-46FC-B8D7-A421D0BFF6FB}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [TCP Query User{82418E8B-5667-415F-9271-82B0DF667A58}C:\users\daniel\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\daniel\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe
FirewallRules: [{864147E3-FE8A-4C75-81A2-AA00EE21E4D9}] => (Allow) D:\Programme\Doid4X\Droid4X\Droid4X.exe
FirewallRules: [{9D103E7C-9743-47A2-BE44-D86F335AEE40}] => (Allow) D:\Programme\Doid4X\Droid4X\download\MiniThunderPlatform.exe
FirewallRules: [{875F23DD-6C4F-4191-901B-0ED554957E6A}] => (Allow) D:\Programme\Doid4X\Droid4X\download\MiniThunderPlatform.exe
FirewallRules: [{D3424DE1-2F8B-4E59-8B8F-B67F7D73BF5A}] => (Allow) C:\Program Files\Oracle\VirtualBox\vboxheadless.exe
FirewallRules: [{435EE6E6-A54F-40A8-B040-EAF8179D637B}] => (Allow) D:\Programme\NoxAppPlayer\Nox\bin\Nox.exe
FirewallRules: [{5B52BD14-569E-4A90-A29A-014CCB2518E7}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{99E1310E-7B55-427D-8794-2C56B6A9EBEE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{E0B1D176-4A9F-46E2-AED4-B7C4AC3F14FC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{24C9F2A4-581E-4CE5-834B-A4B33105C0DB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A0771446-3AC9-4A1C-AF81-E3513657FA9D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{5694C93F-D6E2-4851-BFE4-AE28FDCD58C2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{A11C1B93-6702-47EA-A65F-2E0218427CCA}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [UDP Query User{D82E0C3E-D29A-4EAE-B18A-8653D6499E56}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [TCP Query User{B5A66176-D38C-4320-ABB3-81FD30997C37}D:\spiele\eve\sharedcache\tq\bin\exefile.exe] => (Allow) D:\spiele\eve\sharedcache\tq\bin\exefile.exe
FirewallRules: [UDP Query User{4103919F-0A86-4708-99B5-5985A41CF5E2}D:\spiele\eve\sharedcache\tq\bin\exefile.exe] => (Allow) D:\spiele\eve\sharedcache\tq\bin\exefile.exe
FirewallRules: [{8B281CD7-4698-407C-991D-7EBBF07F04C4}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\is-I4F9A.tmp\download\MiniThunderPlatform.exe
FirewallRules: [{D7393346-0F2D-481C-AAF9-B550BDBBE685}] => (Allow) C:\Program Files (x86)\GreatMaker\MaohaWiFi\MaohaWifiSvr.exe
FirewallRules: [{40FA591D-8DB7-4D1B-9A39-F75E1A0746A2}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
FirewallRules: [{BE526E6B-A01A-4671-8A3D-F44277DEE4F8}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/20/2016 04:26:20 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\daniel\appdata\local\temp\creative cloud uninstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Error: (11/20/2016 04:23:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Adobe CEF Helper.exe, Version: 3.9.1.335, Zeitstempel: 0x580f9487
Name des fehlerhaften Moduls: libcef.dll, Version: 3.2171.2069.0, Zeitstempel: 0x551bdc44
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00444106
ID des fehlerhaften Prozesses: 0x1ed0
Startzeit der fehlerhaften Anwendung: 0x01d2434115fe8ae9
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
Berichtskennung: 38bdbf64-d8e8-421b-a56f-948ffc989879
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (11/20/2016 04:16:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\daniel\appdata\local\temp\creative cloud uninstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Error: (11/20/2016 04:16:16 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\Creative Cloud Uninstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 22 2.8.D.D.9.5.6.0.A.2.1.6.4.F.9.A.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Daniel-Lappi-2.local.
Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.2.105:5353 20 2.8.D.D.9.5.6.0.A.2.1.6.4.F.9.A.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Daniel-Lappi.local.
Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 22 105.2.168.192.in-addr.arpa. PTR Daniel-Lappi-2.local.
Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.2.105:5353 20 105.2.168.192.in-addr.arpa. PTR Daniel-Lappi.local.
Error: (11/20/2016 03:46:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname Daniel-Lappi.local already in use; will try Daniel-Lappi-2.local instead
Error: (11/20/2016 03:46:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 Daniel-Lappi.local. Addr 192.168.2.105
Systemfehler:
=============
Error: (11/20/2016 08:23:38 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (11/20/2016 08:23:38 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (11/20/2016 08:23:38 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (11/20/2016 08:23:38 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (11/20/2016 08:23:38 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (11/20/2016 08:23:11 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll
Error: (11/20/2016 08:23:11 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll
Error: (11/20/2016 08:23:10 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll
Error: (11/20/2016 08:22:59 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
Es wird bereits eine Instanz des Dienstes ausgeführt.
Error: (11/20/2016 08:22:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2016-11-20 14:40:39.731
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-20 14:40:39.729
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-17 14:05:01.079
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-17 14:05:01.078
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-16 22:43:40.743
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-16 22:43:40.742
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-16 22:42:28.866
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-16 22:42:28.865
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-15 19:30:19.816
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-14 20:04:00.813
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Prozentuale Nutzung des RAM: 32%
Installierter physikalischer RAM: 7991.77 MB
Verfügbarer physikalischer RAM: 5399.7 MB
Summe virtueller Speicher: 16695.77 MB
Verfügbarer virtueller Speicher: 13966.91 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:118.48 GB) (Free:52 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:576.34 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 05CE14A8)
Partition: GPT.
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: B9613EEF)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
20.11.2016, 20:45
| #15 |
| /// TB-Ausbilder /// Anleitungs-Guru | UCGuard eingefangen, lässt sich nicht entfernen Bitte Tools genau nach Anleitung ausführen: Schritt 1 Downloade Dir bitte  AdwCleaner auf Deinen Desktop.
Schritt 2 Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Schritt 3 Downloade Dir HitmanPro  auf Deinen Desktop:HitmanPro-32 Bit Version HitmanPro-64 Bit Version
Schritt 4 ESET Online Scanner
__________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer |
|
| Themen zu UCGuard eingefangen, lässt sich nicht entfernen |
| anleitung, beitrag, daniel, eingefangen, entferne, entfernen, folge, gefangen, gen, leitung, logfiles, lässt sich nicht entfernen, neuer, neuer rechner, nicht, nicht mehr, rechner |
und 
und speichere die Logdatei auf Deinem Desktop.
Linear-Darstellung
