Antivirensoftware hat sich installiert und blockiert über 40% des Arbeitsspeichers

Awadu03 · 14.09.2017, 08:51

Hallo,

auf dem Laptop der Tochter eines Arbeitskollegen hat sich eine Antivirensoftware installiert und belegt jetzt über 40% des Arbeitsspeichers. Zudem war eine Deinstallation bisher nicht möglich und der Bildspirm wird zeitweise blockiert.

Gruß Awadu03

cosinus · 14.09.2017, 12:48

Das Teil hat keinen Namen?
Der Rechner hat kein OS und auch keine Hardware?

Awadu03 · 14.09.2017, 13:01

Doch, doch, sorry...

Das Programm heißt: ByteFenceAnti-Malware.

Bei dem Rechner handelt es sich um einen Lenovo mit Windows 10 Home, 4GB RAM, 64 Bit

Awadu03

cosinus · 14.09.2017, 13:36

Gab es bisher schon irgendwelche Schädlingsfunde?

Bitte keine neuen Scans machen, nur die Frage beantorten und falls es welche gab die Logs dazu posten.

Awadu03 · 14.09.2017, 13:49

Mir sind keine bekannt, habe auch keinen Scan durchgeführt, somit keine Logs vorhanden.

cosinus · 14.09.2017, 13:56

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Awadu03 · 14.09.2017, 14:22

Hier die Logs:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 13-09-2017 02
durchgefÃ¼hrt von Caroline (Administrator) auf LAPTOP-6DVRLBBN (14-09-2017 15:16:37)
Gestartet von C:\Users\Caroline\Desktop
Geladene Profile: Caroline (VerfÃ¼gbare Profile: Caroline)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung fÃ¼r Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\VSCore_15_5\mcapexe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Lenovo) C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\2.2.351.0\McCSPServiceHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.1040_none_366d2a34ce5cd854\TiWorker.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Lenovo) C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Lenovo(beijing) Limited) C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe
(Lenovo) C:\Program Files\Lenovo\QuickOptimizer\QuickOptimizerIcon.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe
(The Chromium Authors) C:\Users\Caroline\AppData\Local\chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Caroline\AppData\Local\chromium\Application\chrome.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(The Chromium Authors) C:\Users\Caroline\AppData\Local\chromium\Application\chrome.exe
(Apple Computer, Inc.) C:\Program Files (x86)\QuickTime\qttask.exe
(The Chromium Authors) C:\Users\Caroline\AppData\Local\chromium\Application\chrome.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Byte Technologies LLC) C:\Program Files\ByteFence\ByteFence.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\MSGSDK\msgrunner.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\9FD20106.MediaPlayerQueen_1.2.5.0_x64__nwhm06f2kfry2\MediaPlayer.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.16102.10341.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Hipster Whale22222) C:\Program Files\WindowsApps\Yodo1Ltd.CrossyRoad_1.3.4.0_x86__s3s3f300emkze\Crossy Road.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1609.2561.0_x64__8wekyb3d8bbwe\CompanionApp.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McAMTaskAgent.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(McAfee, Inc.) C:\Program Files\mcafee\virusscan\McVsShld.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\Core\mchost.exe
(Reason Software Company Inc.) C:\Program Files\ByteFence\rsEngineHelper.exe
(Reason Software Company Inc.) C:\Program Files\ByteFence\rsEngineHelper.exe
(Reason Software Company Inc.) C:\Program Files\ByteFence\rsEngineHelper.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurÃ¼ckgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13877464 2015-05-15] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [230104 2015-07-10] (Realtek Semiconductor Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3937448 2015-08-11] (Synaptics Incorporated)
HKLM\...\Run: [LenovoUtility] => C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [911272 2017-07-27] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\qttask.exe [98304 2015-12-24] (Apple Computer, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM-x32\...\RunOnce: [Nepomeho] => C:\WINDOWS\SysWOW64\wscript.exe /E:vbscript /B "C:\PROGRA~2\COMMON~1\UPDATE~1\Raparufuceh.dat"
HKLM-x32\...\RunOnce: [Carikotu] => C:\WINDOWS\SysWOW64\wscript.exe /E:vbscript /B "C:\Users\Caroline\AppData\Roaming\Sotalasetu"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\Run: [PowerDVD12] => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVDLaunchPolicy.exe [343480 2015-05-28] (CyberLink Corp.)
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\Run: [Chromium] => c:\users\caroline\appdata\local\chromium\application\chrome.exe [1068544 2016-03-18] (The Chromium Authors)
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\Run: [PhotoMasterImportAgent] => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [675608 2016-09-22] (CyberLink Corp.)
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\Run: [GoogleChromeAutoLaunch_F6409A96EF08163104C18CA4D1671239] => C:\Users\Caroline\AppData\Local\chromium\Application\chrome.exe [1068544 2016-03-18] (The Chromium Authors)
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\RunOnce: [Uninstall C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\RunOnce: [Uninstall C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\RunOnce: [Uninstall C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\RunOnce: [Uninstall C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\RunOnce: [Uninstall C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
GroupPolicy: BeschrÃ¤nkung <==== ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurÃ¼ckgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 172.17.2.1 172.17.2.1
Tcpip\..\Interfaces\{1682bb96-3e87-4afc-9144-8b7a333acf16}: [DhcpNameServer] 172.17.2.1 172.17.2.1
Tcpip\..\Interfaces\{aaed46eb-9f69-46d2-9312-f9b95e71c4a6}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{bec6402c-61c3-4222-818a-bf92edfde88d}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://de.search.yahoo.com/yhs/web?hspart=arh&hsimp=yhs-001&type=zxy_2a9bf677f9976a22e9&param1=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%3D&param2=NatbLGJ5MaR5
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://de.search.yahoo.com/yhs/web?hspart=arh&hsimp=yhs-001&type=zxy_2a9bf677f9976a22e9&param1=ArFaIWVoNqArQGMVHFFoNqAqBbFaITIoQGR7xTVoN9I4y7IsQGR7B7JoN9JbDSk8vFE9GqQANFdcFCk8NVQ9JqYWwVI3vCIVwVJdIWYUvFFdJ6IWwVU9JmIXwVI9GqYVNUI3wGYGwVQ9ISoUvmo9GqUNNos3wCIYwVA9Jmk4wVA4ICITvFI9J6ILNFdcJ6k8NoFcFGUMwVU9JmITwVU9ImoVwV5cGWUSNFRcEqULNopcGWUIvmFbF6oVNVQ3vCoXNVM4IWYXNVI9I6oWNVQ3vqYTwVxdICIWNVE9JmISwVQ9JGYWvmo9I6oWwVQ4JaYVwVJdISIWNVBdJCoUwVQ4JaQIwV5cGGUTNFRbDqUDNF5bDGUNNEU3wGQGvmk4ICoXvFQ9JqYXvFE4JmISwVU4IGYXvFM9I6oUNVQ9IWYUwVw3vCoVwVM4ISISNVQ4J6k4wVVdIGYYNVQ9Jmk4vFNdImoVNoU9GqYYNVc3wCoUQGR7B6RoN9J7LWJ6NqV9LWpoNqAsQGMVvDIlC6MuNGwuNaQuw7QnC6MoB6EbADIpy6wfyT0sAU1cM81dMU0ax7xdNHFbMn0aC6AoxrFaIWVdOqZoNqAexbFaIUwkynIew6NoNpRcNXFbJpseyDF%3D&param2=NatbLGJ5MaR5
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKLM -> DefaultScope {809A1B80-5261-4A75-87EE-9081FA65B490} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_17_26_wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StBtDtDtAtN1L2XzutAtFtAtBtFtCtFyDtDtN1L1Czu1M1Q1CtAtBtFtAtFtCtFtCtN1L1G1B1V1N2Y1L1Qzu2StDyEtByDyE0CzztBtGtDyEtCtCtGtC0FtDzytGtDtA0EyCtG0EzytAtBtDtCyDyEzyyB0F0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN0D0T0S1P1RzutCyEzyzzyEzztDyByBzy%26cr%3D1088848945%26a%3Dhdr_s_17_26_wbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM -> {809A1B80-5261-4A75-87EE-9081FA65B490} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_17_26_wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StBtDtDtAtN1L2XzutAtFtAtBtFtCtFyDtDtN1L1Czu1M1Q1CtAtBtFtAtFtCtFtCtN1L1G1B1V1N2Y1L1Qzu2StDyEtByDyE0CzztBtGtDyEtCtCtGtC0FtDzytGtDtA0EyCtG0EzytAtBtDtCyDyEzyyB0F0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN0D0T0S1P1RzutCyEzyzzyEzztDyByBzy%26cr%3D1088848945%26a%3Dhdr_s_17_26_wbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM -> {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StCzzyDyDtN1L2XzutAtFtByDtFtCtFtCtCzztN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StDzzyC0CtAyB0AtAtGyC0D0C0CtG0F0DtBtDtGyE0F0EyCtG0E0A0FtBtCyEyEyEtByE0CtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtCzztAyE%26cr%3D811579374%26a%3Dwbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {809A1B80-5261-4A75-87EE-9081FA65B490} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_17_26_wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StBtDtDtAtN1L2XzutAtFtAtBtFtCtFyDtDtN1L1Czu1M1Q1CtAtBtFtAtFtCtFtCtN1L1G1B1V1N2Y1L1Qzu2StDyEtByDyE0CzztBtGtDyEtCtCtGtC0FtDzytGtDtA0EyCtG0EzytAtBtDtCyDyEzyyB0F0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN0D0T0S1P1RzutCyEzyzzyEzztDyByBzy%26cr%3D1088848945%26a%3Dhdr_s_17_26_wbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> {809A1B80-5261-4A75-87EE-9081FA65B490} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_17_26_wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StBtDtDtAtN1L2XzutAtFtAtBtFtCtFyDtDtN1L1Czu1M1Q1CtAtBtFtAtFtCtFtCtN1L1G1B1V1N2Y1L1Qzu2StDyEtByDyE0CzztBtGtDyEtCtCtGtC0FtDzytGtDtA0EyCtG0EzytAtBtDtCyDyEzyyB0F0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN0D0T0S1P1RzutCyEzyzzyEzztDyByBzy%26cr%3D1088848945%26a%3Dhdr_s_17_26_wbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StCzzyDyDtN1L2XzutAtFtByDtFtCtFtCtCzztN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StDzzyC0CtAyB0AtAtGyC0D0C0CtG0F0DtBtDtGyE0F0EyCtG0E0A0FtBtCyEyEyEtByE0CtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtCzztAyE%26cr%3D811579374%26a%3Dwbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3052078447-1551124749-911916405-1001 -> DefaultScope {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_17_26_wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StBtDtDtAtN1L2XzutAtFtAtBtFtCtFyDtDtN1L1Czu1M1Q1CtAtBtFtAtFtCtFtCtN1L1G1B1V1N2Y1L1Qzu2StDyEtByDyE0CzztBtGtDyEtCtCtGtC0FtDzytGtDtA0EyCtG0EzytAtBtDtCyDyEzyyB0F0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN0D0T0S1P1RzutCyEzyzzyEzztDyByBzy%26cr%3D1088848945%26a%3Dhdr_s_17_26_wbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3052078447-1551124749-911916405-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StCzzyDyDtN1L2XzutAtFtByDtFtCtFtCtCzztN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StDzzyC0CtAyB0AtAtGyC0D0C0CtG0F0DtBtDtGyE0F0EyCtG0E0A0FtBtCyEyEyEtByE0CtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtCzztAyE%26cr%3D811579374%26a%3Dwbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3052078447-1551124749-911916405-1001 -> {809A1B80-5261-4A75-87EE-9081FA65B490} URL = 
SearchScopes: HKU\S-1-5-21-3052078447-1551124749-911916405-1001 -> {D18D72F5-08F0-466B-9F23-DF2FBCDBEA4E} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-3052078447-1551124749-911916405-1001 -> {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_17_26_wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StBtDtDtAtN1L2XzutAtFtAtBtFtCtFyDtDtN1L1Czu1M1Q1CtAtBtFtAtFtCtFtCtN1L1G1B1V1N2Y1L1Qzu2StDyEtByDyE0CzztBtGtDyEtCtCtGtC0FtDzytGtDtA0EyCtG0EzytAtBtDtCyDyEzyyB0F0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN0D0T0S1P1RzutCyEzyzzyEzztDyByBzy%26cr%3D1088848945%26a%3Dhdr_s_17_26_wbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-09-06] (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-29] (Oracle Corporation)
BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-09-06] (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-29] (Oracle Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-09-06] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-09-06] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2016-11-18] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2016-11-18] (McAfee, Inc.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2017-07-20]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2017-02-18] [ist nicht signiert]
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-11-18] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-29] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-11-18] ()

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 0021491486310230mcinstcleanup; C:\WINDOWS\TEMP\002149~1.EXE [1008304 2016-10-11] (McAfee, Inc.)
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [41176 2015-03-02] (Realtek Semiconductor Corporation)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [121560 2015-07-20] ()
S2 ByteFenceService; C:\Program Files\ByteFence\ByteFenceService.exe [146400 2016-12-18] (Byte Technologies LLC)
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [650680 2015-07-29] (Lenovo)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1385640 2015-05-26] (Intel Corporation)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-29] (Lenovo)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [603752 2016-10-14] (McAfee, Inc.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337912 2017-08-07] (Intel Corporation)
R2 ImControllerService; c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [57160 2017-06-05] (Lenovo Group Limited)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [887232 2013-12-24] (Intel(R) Corporation)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [271296 2015-08-07] (Lenovo)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [590880 2017-09-06] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_5\McAPExe.exe [963176 2016-10-07] (McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [338208 2015-03-19] (McAfee, Inc.)
R2 mcbootdelaystartsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [603752 2016-10-14] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.2.351.0\\McCSPServiceHost.exe [1934968 2016-10-17] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [603752 2016-10-14] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [603752 2016-10-14] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [1307752 2016-10-20] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [603752 2016-10-14] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [603752 2016-10-14] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [603752 2016-10-14] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [242704 2016-09-08] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [384016 2016-09-08] (McAfee, Inc.)
R3 mfevtp; C:\Windows\system32\mfevtps.exe [331280 2016-09-08] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1473128 2016-10-07] (McAfee, Inc.)
S3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [603752 2016-10-14] (McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1041512 2016-09-08] (Intel Security, Inc.)
R2 rtop; C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe [302920 2017-09-09] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2017-07-29] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [88120 2016-09-09] (McAfee, Inc.)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [47096 2015-05-26] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [251384 2015-05-26] (Intel Corporation)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [216704 2016-08-02] (McAfee, Inc.)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [41464 2015-06-09] (Intel(R) Corporation)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [477752 2016-09-09] (McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [364088 2016-09-09] (McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85656 2016-09-09] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [512056 2016-09-09] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [884792 2016-09-09] (McAfee, Inc.)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [527496 2016-09-09] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109336 2016-09-09] (McAfee, Inc.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [110136 2016-09-09] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252984 2016-09-09] (McAfee, Inc.)
R1 MpKsl5a73c6e5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EFBF26E2-E5B1-4A5A-9790-C70B32E82327}\MpKsl5a73c6e5.sys [44928 2017-09-13] (Microsoft Corporation)
R1 MpKslae7f3ac7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EFBF26E2-E5B1-4A5A-9790-C70B32E82327}\MpKslae7f3ac7.sys [44928 2017-09-13] (Microsoft Corporation)
S3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-05-21] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-12-25] (Realtek )
S3 RtkA2dp; C:\WINDOWS\system32\drivers\RtkA2dp.sys [182288 2015-05-21] (Realtek Semiconductor Corporation)
S3 RtkAvrcp; C:\WINDOWS\System32\drivers\RtkAvrcp.sys [67840 2015-09-09] (Realtek Semiconductor Corporation)
S3 RtkAvrcpCtrlr; C:\WINDOWS\System32\drivers\RtkAvrcpCtrlr.sys [70672 2015-05-12] (Realtek Semiconductor Corporation)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [593624 2015-12-25] (Realtek Semiconductor Corporation)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [3764736 2015-10-30] (Realtek Semiconductor Corporation )
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3059416 2015-06-11] (Realtek Semiconductor Corp.)
R3 RTWlanE; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [5491456 2016-05-25] (Realtek Semiconductor Corporation )
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-08-11] (Synaptics Incorporated)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [88592 2014-01-16] (Intel Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Apple, Inc.) [Datei ist nicht signiert]
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-09-14 15:16 - 2017-09-14 15:18 - 000030632 _____ C:\Users\Caroline\Desktop\FRST.txt
2017-09-14 15:16 - 2017-09-14 15:16 - 000000000 ____D C:\FRST
2017-09-14 15:01 - 2017-09-14 15:01 - 002398208 _____ (Farbar) C:\Users\Caroline\Desktop\FRST64.exe
2017-09-14 14:12 - 2017-09-14 14:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2017-09-12 18:19 - 2017-09-14 07:11 - 000000000 ____D C:\Users\Caroline\Documents\Caroline
2017-09-12 16:57 - 2017-09-12 18:22 - 000017667 _____ C:\Users\Caroline\Desktop\Ostfriesische Inseln.odt
2017-09-11 19:08 - 2017-09-11 19:08 - 000000351 _____ C:\Users\Caroline\Desktop\Nordsee- Welche der Ostfriesischen Inseln zu wem passt - WELT.url
2017-09-10 19:52 - 2017-09-10 19:52 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2017-09-10 19:52 - 2017-09-10 19:52 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2017-09-10 14:53 - 2017-09-10 14:54 - 000000000 ____D C:\Users\Caroline\Documents\klett
2017-09-10 14:51 - 2017-09-10 14:54 - 000000000 ___HD C:\$WINDOWS.~BT
2017-09-10 14:40 - 2017-09-10 14:49 - 000000036 _____ C:\WINDOWS\progress.ini
2017-09-10 14:35 - 2017-09-10 14:36 - 000000000 ____D C:\Users\Caroline\Desktop\Mathematik Klasse 6
2017-09-10 14:26 - 2017-09-10 14:26 - 000001417 _____ C:\Users\Caroline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update- und Datenschutzeinstellungen.lnk
2017-09-10 14:26 - 2017-09-10 14:26 - 000000000 ____D C:\Users\Caroline\AppData\Local\UNP
2017-09-09 20:11 - 2017-09-09 20:12 - 000000000 ____D C:\Program Files\UNP
2017-09-09 20:11 - 2017-09-09 20:11 - 000000000 ____D C:\WINDOWS\system32\UNP
2017-09-09 19:48 - 2017-09-09 19:48 - 000000000 ____D C:\Users\Caroline\AppData\Local\ElevatedDiagnostics
2017-09-09 19:35 - 2017-09-09 19:35 - 000042693 ____T C:\Users\Caroline\Desktop\Einladung2.pdf
2017-09-09 19:35 - 2017-09-09 19:35 - 000042298 ____T C:\Users\Caroline\Desktop\Einladung1.pdf
2017-09-09 19:23 - 2017-09-09 19:23 - 000012973 _____ C:\Users\Caroline\Desktop\super hÃ¤ftiges ding was du nicht lÃ¶schen darfst 2.odt
2017-09-09 19:17 - 2017-09-09 19:17 - 000013125 _____ C:\Users\Caroline\Desktop\super hÃ¤ftiges ding was du nicht lÃ¶schen darfst.odt
2017-09-09 19:08 - 2017-07-30 01:59 - 000302704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2017-09-09 19:08 - 2017-07-29 18:51 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-09-09 19:08 - 2017-07-29 18:20 - 000384512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2017-09-09 19:08 - 2017-07-29 18:02 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2017-09-09 19:08 - 2017-07-29 05:22 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-09-09 19:08 - 2017-06-17 09:11 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-09-09 19:08 - 2017-06-17 08:54 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-09-09 19:08 - 2017-06-17 08:19 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2017-09-09 19:08 - 2017-03-28 10:52 - 000168360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2017-09-09 19:08 - 2017-03-04 07:06 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallButtons.dll
2017-09-09 19:08 - 2017-03-04 07:00 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-09-09 19:08 - 2017-03-04 06:49 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-09-09 19:08 - 2017-03-04 06:46 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2017-09-09 19:08 - 2017-03-04 06:42 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2017-09-09 19:08 - 2017-03-04 06:33 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2017-09-09 19:08 - 2017-03-04 06:29 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2017-09-09 19:08 - 2017-03-04 06:29 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2017-09-09 19:08 - 2017-03-04 06:28 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2017-09-09 19:08 - 2016-11-22 11:17 - 000106896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2017-09-09 19:08 - 2016-11-22 09:54 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2017-09-09 19:08 - 2016-10-25 09:45 - 000032096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2017-09-09 19:08 - 2016-10-25 08:56 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-09-09 19:08 - 2016-10-25 07:51 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2017-09-09 19:08 - 2016-10-25 07:37 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2017-09-09 19:08 - 2016-10-25 07:30 - 000434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-09-09 19:08 - 2016-10-25 06:21 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2017-09-09 19:08 - 2016-10-05 05:15 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2017-09-09 19:08 - 2016-09-07 07:39 - 000620176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-09-09 19:08 - 2016-09-07 07:24 - 000355672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2017-09-09 19:08 - 2016-09-07 07:08 - 000116216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2017-09-09 19:08 - 2016-09-07 06:52 - 001035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-09-09 19:08 - 2016-09-07 06:43 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MTConfig.sys
2017-09-09 19:08 - 2016-09-07 06:39 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2017-09-09 19:08 - 2016-09-07 06:36 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2017-09-09 19:08 - 2016-09-07 06:36 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2017-09-09 19:08 - 2016-09-07 06:35 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usbceip.dll
2017-09-09 19:08 - 2016-09-07 06:35 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2017-09-09 19:08 - 2016-09-07 06:32 - 000581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2017-09-09 19:08 - 2016-09-07 06:29 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2017-09-09 19:08 - 2016-09-07 06:29 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2017-09-09 19:08 - 2016-09-07 06:25 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-09-09 19:08 - 2016-09-07 06:15 - 000416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hnetcfg.dll
2017-09-09 19:08 - 2016-09-07 06:10 - 000438784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DbgModel.dll
2017-09-09 19:08 - 2016-08-03 07:33 - 000051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2017-09-09 19:08 - 2016-08-03 06:37 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-09-09 19:07 - 2017-07-30 02:24 - 001862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-09-09 19:07 - 2017-07-29 23:47 - 002945648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-09-09 19:07 - 2017-07-29 23:47 - 000703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-09-09 19:07 - 2017-07-29 23:26 - 000064584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-09-09 19:07 - 2017-07-29 22:26 - 000262496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-09-09 19:07 - 2017-07-29 22:26 - 000118368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2017-09-09 19:07 - 2017-07-29 22:19 - 000540280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-09-09 19:07 - 2017-07-29 22:19 - 000335248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-09-09 19:07 - 2017-07-29 22:18 - 000141664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-09-09 19:07 - 2017-07-29 19:21 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2017-09-09 19:07 - 2017-07-29 19:00 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2017-09-09 19:07 - 2017-07-29 18:55 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2017-09-09 19:07 - 2017-07-29 18:39 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2017-09-09 19:07 - 2017-07-29 18:34 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-09-09 19:07 - 2017-07-29 18:32 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-09-09 19:07 - 2017-07-29 18:29 - 000190976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-09-09 19:07 - 2017-07-29 18:27 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2017-09-09 19:07 - 2017-07-29 18:24 - 000541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-09-09 19:07 - 2017-07-29 18:19 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-09-09 19:07 - 2017-07-29 18:17 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-09-09 19:07 - 2017-07-29 18:00 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2017-09-09 19:07 - 2017-07-29 17:51 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-09-09 19:07 - 2017-07-29 17:34 - 001501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-09-09 19:07 - 2017-07-29 17:32 - 002881536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-09-09 19:07 - 2017-07-29 16:59 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-09-09 19:07 - 2017-07-29 16:15 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-09-09 19:07 - 2017-07-29 05:22 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2017-09-09 19:07 - 2017-07-29 05:22 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-09-09 19:07 - 2017-07-29 05:22 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2017-09-09 19:07 - 2017-07-29 05:22 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2017-09-09 19:07 - 2017-07-29 05:22 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2017-09-09 19:07 - 2017-07-07 10:57 - 000295776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-09-09 19:07 - 2017-07-07 10:35 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2017-09-09 19:07 - 2017-07-07 09:33 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2017-09-09 19:07 - 2017-07-07 09:21 - 000320000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2017-09-09 19:07 - 2017-07-07 09:08 - 000788992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-09-09 19:07 - 2017-07-07 09:07 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-09-09 19:07 - 2017-07-07 09:03 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-09-09 19:07 - 2017-07-07 08:59 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2017-09-09 19:07 - 2017-06-17 09:19 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-09-09 19:07 - 2017-06-17 08:53 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2017-09-09 19:07 - 2017-06-17 08:30 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2017-09-09 19:07 - 2017-06-03 13:44 - 021123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-09-09 19:07 - 2017-06-03 13:39 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-09-09 19:07 - 2017-06-03 13:14 - 000316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-09-09 19:07 - 2017-06-03 13:13 - 000546968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-09-09 19:07 - 2017-06-03 13:11 - 001368176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-09-09 19:07 - 2017-06-03 12:34 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-09-09 19:07 - 2017-06-03 12:32 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-09-09 19:07 - 2017-06-03 12:31 - 000037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-09-09 19:07 - 2017-06-03 12:20 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certenc.dll
2017-09-09 19:07 - 2017-06-03 11:49 - 001151488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2017-09-09 19:07 - 2017-06-03 11:34 - 001984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-09-09 19:07 - 2017-04-28 05:59 - 000602256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-09-09 19:07 - 2017-04-28 04:45 - 001536600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-09-09 19:07 - 2017-03-28 08:17 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-09-09 19:07 - 2017-03-28 08:12 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-09-09 19:07 - 2017-03-04 09:29 - 000535088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-09-09 19:07 - 2017-03-04 08:43 - 000306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2017-09-09 19:07 - 2017-03-04 08:29 - 000569752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-09-09 19:07 - 2017-03-04 08:25 - 000268040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2017-09-09 19:07 - 2017-03-04 07:57 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-09-09 19:07 - 2017-03-04 07:19 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2017-09-09 19:07 - 2017-03-04 07:15 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb
2017-09-09 19:07 - 2017-03-04 07:06 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2017-09-09 19:07 - 2017-03-04 07:06 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2017-09-09 19:07 - 2017-03-04 06:57 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\feclient.dll
2017-09-09 19:07 - 2017-03-04 06:55 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2017-09-09 19:07 - 2017-03-04 06:49 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2017-09-09 19:07 - 2017-03-04 06:48 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apds.dll
2017-09-09 19:07 - 2017-03-04 06:45 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2017-09-09 19:07 - 2017-03-04 06:45 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2017-09-09 19:07 - 2017-03-04 06:37 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-09-09 19:07 - 2017-03-04 06:33 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-09-09 19:07 - 2017-03-04 06:33 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2017-09-09 19:07 - 2017-03-04 06:32 - 000502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2017-09-09 19:07 - 2017-03-04 06:31 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2017-09-09 19:07 - 2017-03-04 06:26 - 001497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2017-09-09 19:07 - 2017-03-04 06:26 - 001467904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-09-09 19:07 - 2017-03-04 06:25 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-09-09 19:07 - 2017-03-04 06:24 - 000885248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-09-09 19:07 - 2017-03-04 06:22 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2017-09-09 19:07 - 2017-03-04 06:18 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2017-09-09 19:07 - 2017-03-04 06:14 - 000581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2017-09-09 19:07 - 2017-03-04 06:13 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qwave.dll
2017-09-09 19:07 - 2017-03-04 06:05 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Proximity.dll
2017-09-09 19:07 - 2017-03-04 06:03 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rshx32.dll
2017-09-09 19:07 - 2017-03-04 05:59 - 001626112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-09-09 19:07 - 2017-03-04 05:58 - 000871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2017-09-09 19:07 - 2017-03-04 05:57 - 001708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-09-09 19:07 - 2016-10-25 10:32 - 000845568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2017-09-09 19:07 - 2016-10-25 10:32 - 000034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2017-09-09 19:07 - 2016-10-25 10:28 - 001083648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2017-09-09 19:07 - 2016-10-25 09:27 - 000256704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2017-09-09 19:07 - 2016-10-25 09:26 - 001355344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2017-09-09 19:07 - 2016-10-25 09:22 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2017-09-09 19:07 - 2016-10-25 09:12 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2017-09-09 19:07 - 2016-10-25 08:54 - 000273760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2017-09-09 19:07 - 2016-10-25 08:09 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2017-09-09 19:07 - 2016-10-25 08:03 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SCardDlg.dll
2017-09-09 19:07 - 2016-10-25 08:01 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSMDesktopProvider.dll
2017-09-09 19:07 - 2016-10-25 07:50 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2017-09-09 19:07 - 2016-10-25 07:50 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2017-09-09 19:07 - 2016-10-25 07:50 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-09-09 19:07 - 2016-10-25 07:48 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2017-09-09 19:07 - 2016-10-25 07:45 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneOm.dll
2017-09-09 19:07 - 2016-10-25 07:44 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2017-09-09 19:07 - 2016-10-25 07:43 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\filemgmt.dll
2017-09-09 19:07 - 2016-10-25 07:42 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2017-09-09 19:07 - 2016-10-25 07:41 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2017-09-09 19:07 - 2016-10-25 07:39 - 000400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-09-09 19:07 - 2016-10-25 07:39 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certreq.exe
2017-09-09 19:07 - 2016-10-25 07:36 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll
2017-09-09 19:07 - 2016-10-25 07:33 - 000517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-09-09 19:07 - 2016-10-25 07:32 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2017-09-09 19:07 - 2016-10-25 07:32 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2017-09-09 19:07 - 2016-10-25 07:29 - 000673280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2017-09-09 19:07 - 2016-10-25 07:27 - 000799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2017-09-09 19:07 - 2016-10-25 07:25 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2017-09-09 19:07 - 2016-10-25 07:09 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2017-09-09 19:07 - 2016-10-25 06:59 - 002680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-09-09 19:07 - 2016-10-25 06:55 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnfldr.dll
2017-09-09 19:07 - 2016-10-25 06:34 - 001228800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2017-09-09 19:07 - 2016-10-25 06:23 - 000712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2017-09-09 19:07 - 2016-10-05 06:19 - 000717152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2017-09-09 19:07 - 2016-10-05 05:40 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2017-09-09 19:07 - 2016-10-05 05:37 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2017-09-09 19:07 - 2016-10-05 05:37 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-09-09 19:07 - 2016-10-05 05:24 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2017-09-09 19:07 - 2016-10-05 05:23 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2017-09-09 19:07 - 2016-09-07 07:39 - 000328520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2017-09-09 19:07 - 2016-09-07 07:39 - 000277848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-09-09 19:07 - 2016-09-07 07:33 - 002026736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2017-09-09 19:07 - 2016-09-07 07:24 - 000451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2017-09-09 19:07 - 2016-09-07 07:22 - 001085728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2017-09-09 19:07 - 2016-09-07 06:45 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-09-09 19:07 - 2016-09-07 06:39 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoipRT.dll
2017-09-09 19:07 - 2016-09-07 06:38 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2017-09-09 19:07 - 2016-09-07 06:38 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2017-09-09 19:07 - 2016-09-07 06:37 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2017-09-09 19:07 - 2016-09-07 06:37 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2017-09-09 19:07 - 2016-09-07 06:37 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2017-09-09 19:07 - 2016-09-07 06:37 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2017-09-09 19:07 - 2016-09-07 06:37 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2017-09-09 19:07 - 2016-09-07 06:36 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwcfg.dll
2017-09-09 19:07 - 2016-09-07 06:35 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2017-09-09 19:07 - 2016-09-07 06:35 - 000393216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wbemcomn.dll
2017-09-09 19:07 - 2016-09-07 06:35 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.ps.dll
2017-09-09 19:07 - 2016-09-07 06:35 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcshext.dll
2017-09-09 19:07 - 2016-09-07 06:35 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CheckNetIsolation.exe
2017-09-09 19:07 - 2016-09-07 06:34 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2017-09-09 19:07 - 2016-09-07 06:34 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcbase.dll
2017-09-09 19:07 - 2016-09-07 06:34 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cic.dll
2017-09-09 19:07 - 2016-09-07 06:33 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WmpDui.dll
2017-09-09 19:07 - 2016-09-07 06:33 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2017-09-09 19:07 - 2016-09-07 06:33 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2017-09-09 19:07 - 2016-09-07 06:31 - 001985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certmgr.dll
2017-09-09 19:07 - 2016-09-07 06:31 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-09-09 19:07 - 2016-09-07 06:31 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authfwcfg.dll
2017-09-09 19:07 - 2016-09-07 06:30 - 000576000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-09-09 19:07 - 2016-09-07 06:30 - 000436224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2017-09-09 19:07 - 2016-09-07 06:29 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2017-09-09 19:07 - 2016-09-07 06:28 - 000780800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2017-09-09 19:07 - 2016-09-07 06:28 - 000638976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000708608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comuid.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2017-09-09 19:07 - 2016-09-07 06:26 - 001537536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2017-09-09 19:07 - 2016-09-07 06:26 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2017-09-09 19:07 - 2016-09-07 06:26 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2017-09-09 19:07 - 2016-09-07 06:26 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncutil.dll
2017-09-09 19:07 - 2016-09-07 06:25 - 001166848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Pimstore.dll
2017-09-09 19:07 - 2016-09-07 06:25 - 001139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2017-09-09 19:07 - 2016-09-07 06:25 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-09-09 19:07 - 2016-09-07 06:24 - 001276928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2017-09-09 19:07 - 2016-09-07 06:22 - 002106368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2017-09-09 19:07 - 2016-09-07 06:21 - 002527232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2017-09-09 19:07 - 2016-09-07 06:21 - 001063936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2017-09-09 19:07 - 2016-09-07 06:18 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2017-09-09 19:07 - 2016-09-07 06:16 - 001194496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-09-09 19:07 - 2016-09-07 06:16 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2017-09-09 19:07 - 2016-09-07 06:14 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2017-09-09 19:07 - 2016-09-07 06:10 - 000627200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2017-09-09 19:07 - 2016-09-07 06:09 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2017-09-09 19:07 - 2016-09-07 06:09 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msobjs.dll
2017-09-09 19:07 - 2016-08-03 12:22 - 000331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2017-09-09 19:07 - 2016-08-03 11:41 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2017-09-09 19:07 - 2016-08-03 11:40 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2017-09-09 19:07 - 2016-08-03 11:29 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2017-09-09 19:07 - 2016-08-03 07:34 - 000084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2017-09-09 19:07 - 2016-08-03 06:57 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2017-09-09 19:07 - 2016-08-03 06:48 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2017-09-09 19:07 - 2016-08-03 06:44 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2017-09-09 19:07 - 2016-08-03 06:44 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2017-09-09 19:07 - 2016-08-03 06:42 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2017-09-09 19:07 - 2016-08-03 06:35 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2017-09-09 19:07 - 2016-06-18 06:49 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2017-09-09 19:06 - 2017-07-30 01:59 - 000922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-09-09 19:06 - 2017-07-29 23:35 - 000465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-09-09 19:06 - 2017-07-29 18:47 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2017-09-09 19:06 - 2017-07-29 18:14 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-09-09 19:06 - 2017-07-29 18:09 - 000400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-09-09 19:06 - 2017-07-29 18:01 - 000760320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-09-09 19:06 - 2017-07-29 17:56 - 000667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-09-09 19:06 - 2017-07-29 17:39 - 004078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-09-09 19:06 - 2017-07-29 17:30 - 001984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-09-09 19:06 - 2017-07-29 17:06 - 006743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-09-09 19:06 - 2017-07-29 17:06 - 005327360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-09-09 19:06 - 2017-07-29 17:00 - 002604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-09-09 19:06 - 2017-07-29 16:50 - 002770432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-09-09 19:06 - 2017-07-29 12:28 - 003574272 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2017-09-09 19:06 - 2017-07-07 11:16 - 000700880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-09-09 19:06 - 2017-07-07 08:34 - 004412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-09-09 19:06 - 2017-07-07 08:31 - 001557504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-09-09 19:06 - 2017-06-17 08:20 - 003695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-09-09 19:06 - 2017-06-17 08:15 - 002597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-09-09 19:06 - 2017-06-17 07:53 - 006296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-09-09 19:06 - 2017-06-17 07:35 - 004404736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-09-09 19:06 - 2017-06-03 12:40 - 000938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-09-09 19:06 - 2017-04-28 05:04 - 000881664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-09-09 19:06 - 2017-04-28 04:57 - 001813408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-09-09 19:06 - 2017-04-28 04:57 - 000959144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-09-09 19:06 - 2017-04-28 04:52 - 005240448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-09-09 19:06 - 2017-04-28 02:21 - 013018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-09-09 19:06 - 2017-03-28 09:53 - 006958304 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-09 19:06 - 2017-03-28 09:06 - 001522664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-09-09 19:06 - 2017-03-28 07:18 - 001542656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-09-09 19:06 - 2017-03-18 18:41 - 001799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-09-09 19:06 - 2017-03-04 09:12 - 000987488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-09-09 19:06 - 2017-03-04 08:41 - 002180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-09-09 19:06 - 2017-03-04 08:41 - 001118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-09-09 19:06 - 2017-03-04 08:41 - 000980352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-09-09 19:06 - 2017-03-04 08:41 - 000895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-09-09 19:06 - 2017-03-04 08:40 - 001349640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-09-09 19:06 - 2017-03-04 08:40 - 000925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-09-09 19:06 - 2017-03-04 08:40 - 000713824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-09-09 19:06 - 2017-03-04 08:29 - 004075184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-09-09 19:06 - 2017-03-04 08:29 - 000836752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-09-09 19:06 - 2017-03-04 07:58 - 002186864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2017-09-09 19:06 - 2017-03-04 07:41 - 002448752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-09-09 19:06 - 2017-03-04 07:41 - 000882208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2017-09-09 19:06 - 2017-03-04 07:40 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-09-09 19:06 - 2017-03-04 07:40 - 000467440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2017-09-09 19:06 - 2017-03-04 07:06 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2017-09-09 19:06 - 2017-03-04 07:04 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2017-09-09 19:06 - 2017-03-04 06:33 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2017-09-09 19:06 - 2017-03-04 06:33 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2017-09-09 19:06 - 2017-03-04 06:27 - 000854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-09-09 19:06 - 2017-03-04 06:25 - 001117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-09-09 19:06 - 2017-03-04 06:24 - 002578432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2017-09-09 19:06 - 2017-03-04 06:23 - 001944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-09-09 19:06 - 2017-03-04 06:08 - 001185280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll
2017-09-09 19:06 - 2017-03-04 06:07 - 000503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2017-09-09 19:06 - 2017-03-04 06:01 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanpref.dll
2017-09-09 19:06 - 2017-03-04 05:55 - 001860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2017-09-09 19:06 - 2017-03-04 05:52 - 002000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-09-09 19:06 - 2017-03-04 05:52 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-09-09 19:06 - 2017-03-04 05:51 - 009921024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-09-09 19:06 - 2017-03-04 05:44 - 005205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-09-09 19:06 - 2017-03-04 05:38 - 002519552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2017-09-09 19:06 - 2017-03-04 05:36 - 001582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-09-09 19:06 - 2017-03-04 05:35 - 002798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-09-09 19:06 - 2017-03-04 05:31 - 002155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2017-09-09 19:06 - 2017-03-04 05:31 - 002062336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-09-09 19:06 - 2017-03-04 05:30 - 001249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2017-09-09 19:06 - 2017-03-04 05:29 - 000573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2017-09-09 19:06 - 2016-11-22 10:49 - 002195640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-09-09 19:06 - 2016-11-22 10:47 - 001337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-09-09 19:06 - 2016-11-22 08:59 - 003671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2017-09-09 19:06 - 2016-10-25 11:34 - 000454496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2017-09-09 19:06 - 2016-10-25 10:32 - 001542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-09-09 19:06 - 2016-10-25 10:05 - 000712032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-09-09 19:06 - 2016-10-25 09:37 - 000709176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-09-09 19:06 - 2016-10-25 08:53 - 001174008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-09-09 19:06 - 2016-10-25 08:00 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2017-09-09 19:06 - 2016-10-25 07:49 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3ui.dll
2017-09-09 19:06 - 2016-10-25 07:45 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2017-09-09 19:06 - 2016-10-25 07:41 - 000589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2017-09-09 19:06 - 2016-10-25 07:40 - 001336832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2017-09-09 19:06 - 2016-10-25 07:37 - 004143104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2017-09-09 19:06 - 2016-10-25 07:37 - 001226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2017-09-09 19:06 - 2016-10-25 07:37 - 000846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-09-09 19:06 - 2016-10-25 07:36 - 000413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2017-09-09 19:06 - 2016-10-25 07:35 - 000585216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2017-09-09 19:06 - 2016-10-25 07:35 - 000552960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2017-09-09 19:06 - 2016-10-25 07:33 - 001063936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2017-09-09 19:06 - 2016-10-25 07:32 - 000738816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2017-09-09 19:06 - 2016-10-25 07:28 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2017-09-09 19:06 - 2016-10-25 07:27 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2017-09-09 19:06 - 2016-10-25 07:25 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2017-09-09 19:06 - 2016-10-25 07:23 - 002362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2017-09-09 19:06 - 2016-10-25 07:23 - 000964096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-09-09 19:06 - 2016-10-25 07:22 - 001562624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2017-09-09 19:06 - 2016-10-25 07:14 - 000683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-09-09 19:06 - 2016-10-25 07:11 - 006471168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-09-09 19:06 - 2016-10-25 07:11 - 000592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2017-09-09 19:06 - 2016-10-25 07:04 - 000835072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2017-09-09 19:06 - 2016-10-25 07:01 - 002361856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2017-09-09 19:06 - 2016-10-25 06:54 - 004759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-09-09 19:06 - 2016-10-25 06:45 - 002679808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2017-09-09 19:06 - 2016-10-25 06:44 - 000802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2017-09-09 19:06 - 2016-10-25 06:35 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2017-09-09 19:06 - 2016-10-25 06:33 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2017-09-09 19:06 - 2016-10-25 06:27 - 003065344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2017-09-09 19:06 - 2016-09-07 07:37 - 000572272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2017-09-09 19:06 - 2016-09-07 07:24 - 000652312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2017-09-09 19:06 - 2016-09-07 07:24 - 000511312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2017-09-09 19:06 - 2016-09-07 07:24 - 000501600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2017-09-09 19:06 - 2016-09-07 07:13 - 001865584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2017-09-09 19:06 - 2016-09-07 07:07 - 001951848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2017-09-09 19:06 - 2016-09-07 06:39 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Cortana.ProxyStub.dll
2017-09-09 19:06 - 2016-09-07 06:33 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2017-09-09 19:06 - 2016-09-07 06:33 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2017-09-09 19:06 - 2016-09-07 06:32 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2017-09-09 19:06 - 2016-09-07 06:32 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-09-09 19:06 - 2016-09-07 06:31 - 001094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-09-09 19:06 - 2016-09-07 06:31 - 000753664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2017-09-09 19:06 - 2016-09-07 06:30 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2017-09-09 19:06 - 2016-09-07 06:29 - 000785408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroles.dll
2017-09-09 19:06 - 2016-09-07 06:29 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2017-09-09 19:06 - 2016-09-07 06:29 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-09-09 19:06 - 2016-09-07 06:28 - 000674816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2017-09-09 19:06 - 2016-09-07 06:28 - 000654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc_ssp.dll
2017-09-09 19:06 - 2016-09-07 06:28 - 000296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysdm.cpl
2017-09-09 19:06 - 2016-09-07 06:28 - 000284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2017-09-09 19:06 - 2016-09-07 06:27 - 001139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2017-09-09 19:06 - 2016-09-07 06:27 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2017-09-09 19:06 - 2016-09-07 06:26 - 001915392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2017-09-09 19:06 - 2016-09-07 06:26 - 001508352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmsipc.dll
2017-09-09 19:06 - 2016-09-07 06:26 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2017-09-09 19:06 - 2016-09-07 06:25 - 001328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2017-09-09 19:06 - 2016-09-07 06:25 - 001105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2017-09-09 19:06 - 2016-09-07 06:24 - 000785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2017-09-09 19:06 - 2016-09-07 06:23 - 000980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc.dll
2017-09-09 19:06 - 2016-09-07 06:19 - 002102272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2017-09-09 19:06 - 2016-09-07 06:19 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2017-09-09 19:06 - 2016-09-07 06:16 - 001123328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-09-09 19:06 - 2016-09-07 06:16 - 000314880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-09-09 19:06 - 2016-09-07 06:13 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2017-09-09 19:06 - 2016-09-07 06:12 - 002632192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-09-09 19:06 - 2016-09-07 06:12 - 002180096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-09-09 19:06 - 2016-08-03 11:29 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-09-09 19:05 - 2017-07-29 18:42 - 000118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-09-09 19:05 - 2017-03-04 07:19 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2017-09-09 19:05 - 2016-10-25 08:50 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2017-09-09 19:05 - 2016-09-07 06:43 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2017-09-09 19:05 - 2016-09-07 06:42 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2017-09-09 19:05 - 2016-09-07 06:42 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2017-09-09 19:05 - 2016-09-07 06:41 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2017-09-09 19:05 - 2016-08-03 11:51 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2017-09-09 19:04 - 2017-07-29 17:33 - 000808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-09-09 19:04 - 2017-07-29 13:06 - 002573824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-09-09 19:04 - 2017-07-07 09:49 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-09-09 19:04 - 2017-07-07 09:48 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-09-09 19:04 - 2017-06-17 11:09 - 006536256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-09-09 19:04 - 2017-06-03 15:31 - 000989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-09-09 19:04 - 2017-06-03 13:42 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-09-09 19:04 - 2017-04-28 03:35 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-09-09 19:04 - 2017-04-28 03:35 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-09-09 19:04 - 2017-04-28 01:58 - 000821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2017-09-09 19:04 - 2017-04-28 01:53 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprtPS.dll
2017-09-09 19:04 - 2017-03-28 10:59 - 000262400 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2017-09-09 19:04 - 2017-03-04 07:59 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-09-09 19:04 - 2017-03-04 07:37 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-09-09 19:04 - 2017-03-04 07:11 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2017-09-09 19:04 - 2017-03-04 07:04 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-09-09 19:04 - 2017-03-04 05:20 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2017-09-09 19:04 - 2016-10-25 11:18 - 000026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-09-09 19:04 - 2016-10-25 09:26 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-09-09 19:04 - 2016-10-25 09:14 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-09-09 19:04 - 2016-10-25 09:12 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\racpldlg.dll
2017-09-09 19:04 - 2016-10-25 09:10 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceClassExtension.dll
2017-09-09 19:04 - 2016-10-25 09:06 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceConnectApi.dll
2017-09-09 19:04 - 2016-10-25 08:59 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-09-09 19:04 - 2016-10-25 08:48 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceApi.dll
2017-09-09 19:04 - 2016-10-25 08:37 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2017-09-09 19:04 - 2016-10-25 08:00 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceClassExtension.dll
2017-09-09 19:04 - 2016-10-25 07:56 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceConnectApi.dll
2017-09-09 19:04 - 2016-10-25 07:43 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceApi.dll
2017-09-09 19:04 - 2016-10-25 06:51 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2017-09-09 19:04 - 2016-10-05 06:50 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2017-09-09 19:04 - 2016-10-05 06:29 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2017-09-09 19:04 - 2016-10-05 06:00 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2017-09-09 19:04 - 2016-09-07 06:53 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2017-09-09 19:04 - 2016-09-07 06:49 - 000649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-09-09 19:04 - 2016-09-07 06:41 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwcfg.dll
2017-09-09 19:04 - 2016-09-07 06:40 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbemcomn.dll
2017-09-09 19:04 - 2016-09-07 06:40 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CheckNetIsolation.exe
2017-09-09 19:04 - 2016-09-07 06:38 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2017-09-09 19:04 - 2016-09-07 06:37 - 000373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2017-09-09 19:04 - 2016-09-07 06:36 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\authfwcfg.dll
2017-09-09 19:04 - 2016-09-07 06:34 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-09-09 19:04 - 2016-09-07 06:34 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\filemgmt.dll
2017-09-09 19:04 - 2016-09-07 06:34 - 000507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2017-09-09 19:04 - 2016-09-07 06:32 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2017-09-09 19:04 - 2016-09-07 06:31 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-09-09 19:04 - 2016-09-07 06:21 - 000620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2017-09-09 19:04 - 2016-09-07 06:10 - 001035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-09-09 19:04 - 2016-08-03 12:22 - 000058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2017-09-09 19:04 - 2016-08-03 11:40 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2017-09-09 19:04 - 2016-08-03 11:33 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2017-09-09 19:04 - 2016-08-03 11:28 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-09-09 19:03 - 2017-07-29 20:41 - 000994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-09-09 19:03 - 2017-07-29 16:21 - 002403160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-09-09 19:03 - 2017-07-29 13:37 - 000865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-09 19:03 - 2017-07-29 13:06 - 002279936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-09-09 19:03 - 2017-07-29 12:25 - 007536128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-09-09 19:03 - 2017-07-29 12:13 - 002911744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-09-09 19:03 - 2017-04-28 04:16 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-09-09 19:03 - 2017-04-28 04:06 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-09-09 19:03 - 2017-04-28 03:59 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-09-09 19:03 - 2017-04-28 03:58 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-09-09 19:03 - 2017-04-28 03:19 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-09-09 19:03 - 2017-03-04 09:18 - 001554152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2017-09-09 19:03 - 2017-03-04 09:18 - 001552104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-09-09 19:03 - 2017-03-04 09:07 - 001040792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-09-09 19:03 - 2017-03-04 06:41 - 001490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2017-09-09 19:03 - 2017-03-04 05:19 - 001487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-09-09 19:03 - 2016-10-25 08:52 - 000577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-09-09 19:03 - 2016-10-25 08:49 - 000790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-09-09 19:03 - 2016-10-25 08:49 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2017-09-09 19:03 - 2016-10-25 08:43 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2017-09-09 19:03 - 2016-10-25 08:38 - 002088960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2017-09-09 19:03 - 2016-10-25 08:38 - 001048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2017-09-09 19:03 - 2016-10-25 08:37 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2017-09-09 19:03 - 2016-10-25 08:28 - 000938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2017-09-09 19:03 - 2016-10-25 08:27 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Pimstore.dll
2017-09-09 19:03 - 2016-10-25 08:05 - 001213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2017-09-09 19:03 - 2016-10-25 08:05 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2017-09-09 19:03 - 2016-10-25 07:36 - 004646400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2017-09-09 19:03 - 2016-10-25 07:36 - 000879616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2017-09-09 19:03 - 2016-10-25 06:53 - 003294208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2017-09-09 19:03 - 2016-10-25 06:52 - 003555840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2017-09-09 19:03 - 2016-09-07 07:36 - 000405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2017-09-09 19:03 - 2016-09-07 06:38 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Geolocation.dll
2017-09-09 19:03 - 2016-09-07 06:37 - 000617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-09-09 19:03 - 2016-09-07 06:28 - 000673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-09-09 19:03 - 2016-09-07 06:23 - 000918016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2017-09-09 19:03 - 2016-09-07 06:17 - 001526784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-09-09 19:03 - 2016-09-07 06:11 - 003053568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-09-09 19:03 - 2016-08-03 12:22 - 000465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-09-09 19:02 - 2017-07-07 13:07 - 000100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-09-09 19:02 - 2017-04-28 06:30 - 000800080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-09-09 19:02 - 2017-03-04 07:29 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2017-09-09 19:02 - 2017-03-04 07:11 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2017-09-09 19:02 - 2017-03-04 07:09 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2017-09-09 19:02 - 2017-03-04 06:49 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2017-09-09 19:02 - 2017-03-04 06:35 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2017-09-09 19:02 - 2016-10-25 09:47 - 028851216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2017-09-09 19:02 - 2016-10-25 09:33 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\genericusbfn.sys
2017-09-09 19:02 - 2016-10-25 08:50 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2017-09-09 19:02 - 2016-09-07 07:08 - 028083144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2017-09-09 19:02 - 2016-09-07 06:19 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-09-09 19:02 - 2016-08-03 12:23 - 000115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2017-09-09 19:01 - 2017-07-29 18:46 - 000129888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-09-09 19:01 - 2017-07-07 10:28 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2017-09-09 19:01 - 2017-06-17 11:12 - 022560744 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-09-09 19:01 - 2017-06-17 09:58 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-09-09 19:01 - 2017-03-28 09:42 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-09-09 19:01 - 2017-03-04 09:48 - 001297760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-09-09 19:01 - 2017-03-04 09:19 - 000586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2017-09-09 19:01 - 2017-03-04 08:09 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2017-09-09 19:01 - 2017-03-04 08:03 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2017-09-09 19:01 - 2017-03-04 07:59 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2017-09-09 19:01 - 2017-03-04 07:52 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2017-09-09 19:01 - 2017-03-04 07:49 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2017-09-09 19:01 - 2017-03-04 07:47 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2017-09-09 19:01 - 2017-03-04 07:44 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2017-09-09 19:01 - 2017-03-04 07:41 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2017-09-09 19:01 - 2017-03-04 07:34 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2017-09-09 19:01 - 2017-03-04 07:31 - 000185856 _____ C:\WINDOWS\system32\ism32k.dll
2017-09-09 19:01 - 2017-03-04 07:29 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2017-09-09 19:01 - 2017-03-04 07:27 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-09-09 19:01 - 2017-03-04 07:25 - 000296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-09-09 19:01 - 2017-03-04 07:25 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2017-09-09 19:01 - 2017-03-04 07:20 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2017-09-09 19:01 - 2017-03-04 07:15 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-09-09 19:01 - 2017-03-04 07:08 - 000852992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-09-09 19:01 - 2017-03-04 07:03 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2017-09-09 19:01 - 2017-03-04 07:02 - 000939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2017-09-09 19:01 - 2017-03-04 06:41 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwave.dll
2017-09-09 19:01 - 2017-03-04 06:24 - 000931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2017-09-09 19:01 - 2016-10-25 10:48 - 000847648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-09-09 19:01 - 2016-10-25 08:51 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2017-09-09 19:01 - 2016-10-25 07:55 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-09-09 19:01 - 2016-10-25 06:48 - 000958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2017-09-09 19:01 - 2016-09-07 07:39 - 000175120 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2017-09-09 19:01 - 2016-09-07 07:26 - 000693592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2017-09-09 19:01 - 2016-09-07 07:11 - 000057912 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-09-09 19:01 - 2016-09-07 06:42 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2017-09-09 19:01 - 2016-09-07 06:42 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2017-09-09 19:01 - 2016-09-07 06:41 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2017-09-09 19:01 - 2016-09-07 06:40 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcshext.dll
2017-09-09 19:01 - 2016-09-07 06:39 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2017-09-09 19:01 - 2016-09-07 06:38 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2017-09-09 19:01 - 2016-09-07 06:38 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2017-09-09 19:01 - 2016-09-07 06:36 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2017-09-09 19:01 - 2016-09-07 06:33 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2017-09-09 19:01 - 2016-09-07 06:33 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2017-09-09 19:01 - 2016-09-07 06:32 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc_ssp.dll
2017-09-09 19:01 - 2016-09-07 06:32 - 000643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2017-09-09 19:01 - 2016-09-07 06:31 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2017-09-09 19:01 - 2016-09-07 06:30 - 001500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-09-09 19:01 - 2016-09-07 06:30 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2017-09-09 19:01 - 2016-09-07 06:27 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2017-09-09 19:01 - 2016-09-07 06:25 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-09 19:01 - 2016-09-07 06:25 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2017-09-09 19:01 - 2016-09-07 06:19 - 001141248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2017-09-09 19:01 - 2016-09-07 06:11 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2017-09-09 19:01 - 2016-08-03 11:36 - 000211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2017-09-09 19:00 - 2017-07-29 19:44 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-09-09 19:00 - 2017-07-29 16:18 - 000388888 _____ (Microsoft Corporation)

Awadu03 · 14.09.2017, 14:25

FRST Teil 2:

Code:

ATTFilter

 C:\WINDOWS\system32\wmpps.dll
2017-09-09 19:00 - 2017-07-29 15:26 - 000824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-09 19:00 - 2017-07-29 14:37 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-09-09 19:00 - 2017-07-29 14:01 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-09-09 19:00 - 2017-07-29 13:15 - 005123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-09-09 19:00 - 2017-07-29 12:56 - 002876928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2017-09-09 19:00 - 2017-07-29 12:38 - 000957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-09-09 19:00 - 2017-07-07 12:51 - 000465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-09-09 19:00 - 2017-07-07 12:11 - 000858992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-09-09 19:00 - 2017-06-17 08:12 - 007977984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-09-09 19:00 - 2017-06-03 14:57 - 000245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-09-09 19:00 - 2017-06-03 12:43 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-09-09 19:00 - 2017-06-03 12:16 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-09-09 19:00 - 2017-04-28 06:30 - 001997840 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-09-09 19:00 - 2017-04-28 05:59 - 001558280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-09-09 19:00 - 2017-04-28 05:38 - 001060432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-09-09 19:00 - 2017-04-28 05:27 - 006604992 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-09-09 19:00 - 2017-04-28 01:57 - 004171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-09-09 19:00 - 2017-03-28 11:18 - 008710320 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-09 19:00 - 2017-03-04 09:19 - 001299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-09-09 19:00 - 2017-03-04 09:19 - 000498952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2017-09-09 19:00 - 2017-03-04 09:18 - 002544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-09-09 19:00 - 2017-03-04 09:18 - 001152328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-09-09 19:00 - 2017-03-04 09:18 - 001092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-09-09 19:00 - 2017-03-04 09:18 - 001017032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2017-09-09 19:00 - 2017-03-04 09:18 - 000819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-09-09 19:00 - 2017-03-04 07:33 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2017-09-09 19:00 - 2017-03-04 07:25 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2017-09-09 19:00 - 2017-03-04 07:23 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-09-09 19:00 - 2017-03-04 07:19 - 000510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2017-09-09 19:00 - 2017-03-04 07:19 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-09-09 19:00 - 2017-03-04 07:17 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2017-09-09 19:00 - 2017-03-04 07:16 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-09-09 19:00 - 2017-03-04 07:08 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2017-09-09 19:00 - 2017-03-04 07:08 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2017-09-09 19:00 - 2017-03-04 07:04 - 000697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2017-09-09 19:00 - 2017-03-04 07:03 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2017-09-09 19:00 - 2017-03-04 07:02 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2017-09-09 19:00 - 2017-03-04 06:53 - 002624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-09-09 19:00 - 2017-03-04 06:25 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanpref.dll
2017-09-09 19:00 - 2017-03-04 06:00 - 007200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-09-09 19:00 - 2017-03-04 05:59 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2017-09-09 19:00 - 2017-03-04 05:36 - 003428352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-09-09 19:00 - 2017-03-04 05:36 - 001385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2017-09-09 19:00 - 2017-03-04 05:34 - 002582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-09-09 19:00 - 2017-03-04 05:28 - 014258688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-09-09 19:00 - 2017-03-04 05:26 - 012590080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-09-09 19:00 - 2016-11-22 09:57 - 003351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2017-09-09 19:00 - 2016-10-25 10:49 - 000588328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll
2017-09-09 19:00 - 2016-10-25 10:39 - 001750440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2017-09-09 19:00 - 2016-10-25 09:47 - 002641928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2017-09-09 19:00 - 2016-10-25 09:47 - 000305808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2017-09-09 19:00 - 2016-10-25 08:53 - 000813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2017-09-09 19:00 - 2016-10-25 08:46 - 000857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2017-09-09 19:00 - 2016-10-25 08:42 - 000517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-09-09 19:00 - 2016-10-25 08:41 - 001294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2017-09-09 19:00 - 2016-10-25 08:41 - 000589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2017-09-09 19:00 - 2016-10-25 08:40 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2017-09-09 19:00 - 2016-10-25 08:40 - 001216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2017-09-09 19:00 - 2016-10-25 08:40 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-09-09 19:00 - 2016-10-25 08:40 - 000253088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2017-09-09 19:00 - 2016-10-25 08:39 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2017-09-09 19:00 - 2016-10-25 08:38 - 000610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmsdk.dll
2017-09-09 19:00 - 2016-10-25 08:35 - 001434112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-09-09 19:00 - 2016-10-25 08:35 - 000859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-09-09 19:00 - 2016-10-25 08:29 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-09-09 19:00 - 2016-10-25 08:27 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2017-09-09 19:00 - 2016-10-25 08:27 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2017-09-09 19:00 - 2016-10-25 08:16 - 001965568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2017-09-09 19:00 - 2016-10-25 08:07 - 000900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-09-09 19:00 - 2016-10-25 08:03 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-09-09 19:00 - 2016-10-25 07:57 - 002285568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2017-09-09 19:00 - 2016-10-25 07:46 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnfldr.dll
2017-09-09 19:00 - 2016-10-25 07:35 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmsdk.dll
2017-09-09 19:00 - 2016-10-25 07:28 - 001186816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2017-09-09 19:00 - 2016-10-25 07:25 - 000688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-09-09 19:00 - 2016-10-25 07:23 - 002295808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2017-09-09 19:00 - 2016-10-25 06:55 - 002217984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2017-09-09 19:00 - 2016-10-25 06:53 - 000583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2017-09-09 19:00 - 2016-10-25 06:52 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-09-09 19:00 - 2016-10-25 06:29 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2017-09-09 19:00 - 2016-10-05 06:38 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2017-09-09 19:00 - 2016-10-05 06:35 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2017-09-09 19:00 - 2016-10-05 05:30 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2017-09-09 19:00 - 2016-10-05 05:28 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2017-09-09 19:00 - 2016-09-07 07:26 - 000131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2017-09-09 19:00 - 2016-09-07 07:24 - 000496360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmdev.dll
2017-09-09 19:00 - 2016-09-07 06:42 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2017-09-09 19:00 - 2016-09-07 06:39 - 009324032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2017-09-09 19:00 - 2016-09-07 06:38 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2017-09-09 19:00 - 2016-09-07 06:35 - 009324032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2017-09-09 19:00 - 2016-09-07 06:33 - 000576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-09-09 19:00 - 2016-09-07 06:32 - 004213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2017-09-09 19:00 - 2016-09-07 06:32 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2017-09-09 19:00 - 2016-09-07 06:31 - 000970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2017-09-09 19:00 - 2016-09-07 06:30 - 002012672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2017-09-09 19:00 - 2016-09-07 06:29 - 000888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-09-09 19:00 - 2016-09-07 06:29 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-09-09 19:00 - 2016-09-07 06:28 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-09-09 19:00 - 2016-09-07 06:28 - 000645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-09-09 19:00 - 2016-09-07 06:27 - 001131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-09-09 19:00 - 2016-09-07 06:21 - 001410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-09-09 18:59 - 2017-07-29 18:58 - 000384864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-09-09 18:59 - 2017-07-29 17:21 - 000161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2017-09-09 18:59 - 2017-07-29 14:16 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-09-09 18:59 - 2017-06-17 09:50 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-09-09 18:59 - 2017-06-17 09:31 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-09-09 18:59 - 2017-06-17 09:20 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2017-09-09 18:59 - 2017-04-28 05:31 - 000026464 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-09-09 18:59 - 2017-04-28 03:55 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-09-09 18:59 - 2017-04-28 03:53 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-09-09 18:59 - 2017-04-28 03:15 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-09-09 18:59 - 2017-04-28 03:13 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-09-09 18:59 - 2017-03-28 09:35 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-09-09 18:59 - 2017-03-04 10:09 - 000610632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-09-09 18:59 - 2017-03-04 07:58 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2017-09-09 18:59 - 2017-03-04 07:39 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabbtnEx.dll
2017-09-09 18:59 - 2017-03-04 07:26 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2017-09-09 18:59 - 2017-03-04 07:03 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2017-09-09 18:59 - 2017-03-04 06:58 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2017-09-09 18:59 - 2017-03-04 06:03 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Tabbtn.dll
2017-09-09 18:59 - 2016-10-25 09:21 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2017-09-09 18:59 - 2016-10-25 08:55 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2017-09-09 18:59 - 2016-10-25 08:03 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-09-09 18:59 - 2016-09-07 07:19 - 000360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-09-09 18:59 - 2016-09-07 06:35 - 000591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-09-09 18:58 - 2017-07-29 20:31 - 002656960 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-09 18:58 - 2017-07-29 18:45 - 000395184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-09-09 18:58 - 2017-07-29 18:31 - 000307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-09-09 18:58 - 2017-07-29 18:08 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-09-09 18:58 - 2017-07-29 18:01 - 001526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-09-09 18:58 - 2017-07-29 17:33 - 003699280 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-09-09 18:58 - 2017-07-29 15:09 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-09-09 18:58 - 2017-07-29 14:41 - 000523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-09-09 18:58 - 2017-07-29 14:31 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-09-09 18:58 - 2017-07-29 14:27 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-09-09 18:58 - 2017-07-29 14:22 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-09-09 18:58 - 2017-07-29 14:05 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2017-09-09 18:58 - 2017-07-29 13:51 - 000784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-09-09 18:58 - 2017-07-29 13:43 - 000325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-09-09 18:58 - 2017-07-29 13:42 - 001752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-09-09 18:58 - 2017-07-29 13:41 - 000961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2017-09-09 18:58 - 2017-07-29 13:30 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-09-09 18:58 - 2017-07-29 13:09 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-09-09 18:58 - 2017-07-07 11:52 - 000360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-09-09 18:58 - 2017-07-07 11:21 - 000216416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-09-09 18:58 - 2017-07-07 10:13 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-09-09 18:58 - 2017-07-07 09:58 - 000967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-09-09 18:58 - 2017-06-17 09:02 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2017-09-09 18:58 - 2017-06-11 17:10 - 000448629 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-09-09 18:58 - 2017-06-03 13:57 - 000335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-09-09 18:58 - 2017-06-03 13:57 - 000034656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-09-09 18:58 - 2017-06-03 12:06 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-09-09 18:58 - 2017-04-28 06:30 - 001098640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-09-09 18:58 - 2017-04-28 04:15 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-09-09 18:58 - 2017-04-28 04:05 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-09-09 18:58 - 2017-04-28 03:55 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-09-09 18:58 - 2017-04-28 03:54 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2017-09-09 18:58 - 2017-04-28 03:46 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-09-09 18:58 - 2017-04-28 03:32 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-09-09 18:58 - 2017-04-28 03:31 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-09-09 18:58 - 2017-04-28 03:28 - 000905728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-09-09 18:58 - 2017-04-28 03:15 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-09-09 18:58 - 2017-04-28 03:07 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-09-09 18:58 - 2017-04-28 02:56 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-09-09 18:58 - 2017-03-28 12:12 - 000061792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-09-09 18:58 - 2017-03-28 10:28 - 001777792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-09-09 18:58 - 2017-03-04 10:04 - 000687496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-09-09 18:58 - 2017-03-04 09:20 - 000118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2017-09-09 18:58 - 2017-03-04 07:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2017-09-09 18:58 - 2017-03-04 07:49 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2017-09-09 18:58 - 2017-03-04 07:42 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-09-09 18:58 - 2017-03-04 07:28 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\apds.dll
2017-09-09 18:58 - 2017-03-04 07:26 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-09-09 18:58 - 2017-03-04 07:25 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinFax.dll
2017-09-09 18:58 - 2017-03-04 07:22 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-09-09 18:58 - 2017-03-04 07:19 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2017-09-09 18:58 - 2017-03-04 07:16 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2017-09-09 18:58 - 2017-03-04 07:10 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2017-09-09 18:58 - 2017-03-04 07:09 - 000708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-09-09 18:58 - 2017-03-04 07:08 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2017-09-09 18:58 - 2017-03-04 07:08 - 000821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2017-09-09 18:58 - 2017-03-04 07:08 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2017-09-09 18:58 - 2017-03-04 07:05 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-09-09 18:58 - 2017-03-04 07:00 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-09-09 18:58 - 2017-03-04 06:54 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2017-09-09 18:58 - 2017-03-04 06:46 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-09-09 18:58 - 2017-03-04 06:46 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinFax.dll
2017-09-09 18:58 - 2017-03-04 06:31 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2017-09-09 18:58 - 2017-03-04 06:24 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-09-09 18:58 - 2017-03-04 06:10 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2017-09-09 18:58 - 2017-03-04 06:04 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-09-09 18:58 - 2017-03-04 05:55 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-09-09 18:58 - 2016-11-22 12:36 - 000159640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2017-09-09 18:58 - 2016-10-25 11:42 - 000125280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2017-09-09 18:58 - 2016-10-25 10:51 - 000538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2017-09-09 18:58 - 2016-10-25 09:45 - 000503600 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2017-09-09 18:58 - 2016-10-25 09:24 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2017-09-09 18:58 - 2016-10-25 09:12 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2017-09-09 18:58 - 2016-10-25 08:56 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2017-09-09 18:58 - 2016-10-25 08:56 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2017-09-09 18:58 - 2016-10-25 08:53 - 000318976 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-09-09 18:58 - 2016-10-25 08:53 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2017-09-09 18:58 - 2016-10-25 08:52 - 000704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2017-09-09 18:58 - 2016-10-25 08:51 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2017-09-09 18:58 - 2016-10-25 08:50 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneOm.dll
2017-09-09 18:58 - 2016-10-25 08:49 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2017-09-09 18:58 - 2016-10-25 08:48 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-09-09 18:58 - 2016-10-25 08:43 - 000606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-09-09 18:58 - 2016-10-25 08:42 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2017-09-09 18:58 - 2016-10-25 08:40 - 000607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2017-09-09 18:58 - 2016-10-25 08:40 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2017-09-09 18:58 - 2016-10-25 08:40 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2017-09-09 18:58 - 2016-10-25 08:38 - 000588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2017-09-09 18:58 - 2016-10-25 08:35 - 001132544 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2017-09-09 18:58 - 2016-10-25 08:34 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-09-09 18:58 - 2016-10-25 04:19 - 000775336 _____ C:\WINDOWS\SysWOW64\locale.nls
2017-09-09 18:58 - 2016-10-25 04:19 - 000775336 _____ C:\WINDOWS\system32\locale.nls
2017-09-09 18:58 - 2016-09-07 07:39 - 000428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-09-09 18:58 - 2016-09-07 07:27 - 000413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2017-09-09 18:58 - 2016-09-07 07:25 - 001447776 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2017-09-09 18:58 - 2016-09-07 07:15 - 000911640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2017-09-09 18:58 - 2016-09-07 06:44 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2017-09-09 18:58 - 2016-09-07 06:44 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoipRT.dll
2017-09-09 18:58 - 2016-09-07 06:44 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2017-09-09 18:58 - 2016-09-07 06:44 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2017-09-09 18:58 - 2016-09-07 06:43 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2017-09-09 18:58 - 2016-09-07 06:41 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2017-09-09 18:58 - 2016-09-07 06:38 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-09-09 18:58 - 2016-09-07 06:37 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2017-09-09 18:58 - 2016-09-07 06:37 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2017-09-09 18:58 - 2016-09-07 06:37 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2017-09-09 18:58 - 2016-09-07 06:36 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2017-09-09 18:58 - 2016-09-07 06:36 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2017-09-09 18:58 - 2016-09-07 06:34 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2017-09-09 18:58 - 2016-09-07 06:34 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-09-09 18:58 - 2016-09-07 06:33 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2017-09-09 18:58 - 2016-09-07 06:32 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2017-09-09 18:58 - 2016-09-07 06:31 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll
2017-09-09 18:58 - 2016-09-07 06:31 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2017-09-09 18:58 - 2016-09-07 06:31 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2017-09-09 18:58 - 2016-09-07 06:30 - 001707520 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-09-09 18:58 - 2016-09-07 06:30 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2017-09-09 18:58 - 2016-09-07 06:30 - 000607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx.dll
2017-09-09 18:58 - 2016-09-07 06:28 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2017-09-09 18:58 - 2016-09-07 06:23 - 000838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2017-09-09 18:58 - 2016-09-07 06:20 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetcfg.dll
2017-09-09 18:58 - 2016-09-07 06:09 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2017-09-09 18:58 - 2016-08-03 11:44 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2017-09-09 18:58 - 2016-08-03 11:39 - 000104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-09-09 18:58 - 2016-08-03 11:31 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2017-09-09 18:58 - 2016-06-18 06:55 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2017-09-09 18:58 - 2016-06-18 06:51 - 000470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-09-09 18:57 - 2017-07-29 20:03 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-09-09 18:57 - 2017-07-29 18:59 - 007463264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-09-09 18:57 - 2017-07-29 18:41 - 001637216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-09-09 18:57 - 2017-07-29 17:20 - 000609056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-09-09 18:57 - 2017-07-29 17:11 - 012139008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-09-09 18:57 - 2017-07-29 17:07 - 003661824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-09-09 18:57 - 2017-07-29 17:03 - 019345408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-09-09 18:57 - 2017-07-29 17:03 - 018672640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-09-09 18:57 - 2017-07-29 16:49 - 005662208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-09-09 18:57 - 2017-07-29 16:21 - 001089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2017-09-09 18:57 - 2017-07-29 14:19 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-09-09 18:57 - 2017-07-29 13:41 - 001292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-09-09 18:57 - 2017-07-29 13:39 - 001872896 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-09-09 18:57 - 2017-07-29 13:37 - 001742848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-09-09 18:57 - 2017-07-29 13:02 - 003405312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-09-09 18:57 - 2017-07-29 12:38 - 022376960 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-09-09 18:57 - 2017-07-29 12:38 - 013394432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-09-09 18:57 - 2017-07-29 12:22 - 024605696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-09-09 18:57 - 2017-07-29 12:05 - 007843840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-09-09 18:57 - 2017-07-07 13:04 - 002149216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-09-09 18:57 - 2017-07-07 09:56 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-09-09 18:57 - 2017-07-07 09:51 - 001900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-09-09 18:57 - 2017-07-07 09:45 - 001424384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2017-09-09 18:57 - 2017-07-07 09:10 - 002055680 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-09-09 18:57 - 2017-07-07 08:44 - 016985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-09 18:57 - 2017-06-17 11:52 - 003449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2017-09-09 18:57 - 2017-06-17 07:34 - 006312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-09-09 18:57 - 2017-06-03 13:40 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-09-09 18:57 - 2017-06-03 12:40 - 001648128 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-09-09 18:57 - 2017-06-03 12:26 - 002433536 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-09-09 18:57 - 2017-04-28 05:32 - 002608912 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-09-09 18:57 - 2017-04-28 05:32 - 001323272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-09-09 18:57 - 2017-04-28 05:20 - 001848584 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-09-09 18:57 - 2017-04-28 04:11 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2017-09-09 18:57 - 2017-04-28 03:29 - 002127872 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-09-09 18:57 - 2017-04-28 02:54 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-09-09 18:57 - 2017-04-28 02:27 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-09-09 18:57 - 2017-03-04 08:27 - 000431456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2017-09-09 18:57 - 2017-03-04 08:24 - 000420704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-09-09 18:57 - 2017-03-04 08:16 - 002831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-09-09 18:57 - 2017-03-04 08:16 - 001062992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2017-09-09 18:57 - 2017-03-04 08:15 - 000549088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2017-09-09 18:57 - 2017-03-04 08:15 - 000521192 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-09-09 18:57 - 2017-03-04 07:23 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-09-09 18:57 - 2017-03-04 07:00 - 001239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-09-09 18:57 - 2017-03-04 06:59 - 001847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2017-09-09 18:57 - 2017-03-04 06:59 - 001213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-09-09 18:57 - 2017-03-04 06:57 - 001040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-09-09 18:57 - 2017-03-04 06:55 - 001319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2017-09-09 18:57 - 2017-03-04 06:54 - 000549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2017-09-09 18:57 - 2017-03-04 06:50 - 002054144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-09-09 18:57 - 2017-03-04 06:33 - 001534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-09-09 18:57 - 2017-03-04 06:24 - 001946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-09-09 18:57 - 2017-03-04 06:13 - 002843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2017-09-09 18:57 - 2017-03-04 06:11 - 002444800 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-09-09 18:57 - 2016-10-25 11:41 - 001819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-09-09 18:57 - 2016-10-25 10:50 - 000439136 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2017-09-09 18:57 - 2016-10-25 09:31 - 000299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2017-09-09 18:57 - 2016-10-25 09:10 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2017-09-09 18:57 - 2016-10-25 09:08 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2017-09-09 18:57 - 2016-10-25 08:57 - 006572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2017-09-09 18:57 - 2016-10-25 08:55 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2017-09-09 18:57 - 2016-10-25 08:52 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-09-09 18:57 - 2016-10-25 08:51 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2017-09-09 18:57 - 2016-10-25 08:46 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2017-09-09 18:57 - 2016-10-25 08:42 - 001813504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2017-09-09 18:57 - 2016-10-25 08:41 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-09-09 18:57 - 2016-10-25 08:36 - 000965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-09-09 18:57 - 2016-10-25 08:26 - 002103296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-09-09 18:57 - 2016-10-25 07:28 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2017-09-09 18:57 - 2016-10-05 06:17 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2017-09-09 18:57 - 2016-09-07 07:34 - 002587696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-09-09 18:57 - 2016-09-07 07:26 - 000785088 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2017-09-09 18:57 - 2016-09-07 07:25 - 001270064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2017-09-09 18:57 - 2016-09-07 07:22 - 000431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2017-09-09 18:57 - 2016-09-07 07:11 - 002187408 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2017-09-09 18:57 - 2016-09-07 06:44 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2017-09-09 18:57 - 2016-09-07 06:37 - 000846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsecsnp.dll
2017-09-09 18:57 - 2016-09-07 06:37 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2017-09-09 18:57 - 2016-09-07 06:36 - 001568768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdt.exe
2017-09-09 18:57 - 2016-09-07 06:36 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagCpl.dll
2017-09-09 18:57 - 2016-09-07 06:36 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-09-09 18:57 - 2016-09-07 06:34 - 000952320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-09-09 18:57 - 2016-09-07 06:33 - 000948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-09-09 18:57 - 2016-09-07 06:33 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-09-09 18:57 - 2016-09-07 06:31 - 000588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2017-09-09 18:57 - 2016-09-07 06:30 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2017-09-09 18:57 - 2016-09-07 06:21 - 003046400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2017-09-09 18:57 - 2016-09-07 06:18 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-09-09 18:57 - 2016-09-07 06:16 - 002746368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-09-09 18:57 - 2016-09-07 06:16 - 001676800 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-09-09 18:57 - 2016-09-07 06:09 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2017-09-09 18:57 - 2016-09-07 06:09 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msobjs.dll
2017-09-09 18:57 - 2016-08-03 11:41 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-09-09 18:57 - 2016-08-03 11:41 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-09-09 18:56 - 2017-07-29 14:37 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2017-09-09 18:56 - 2017-07-29 14:28 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-09-09 18:56 - 2017-07-29 12:13 - 004890624 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-09-09 18:56 - 2017-07-07 10:19 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-09-09 18:56 - 2017-06-17 09:41 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-09 18:56 - 2017-06-17 09:03 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-09-09 18:56 - 2017-06-03 15:51 - 000129376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-09-09 18:56 - 2017-03-28 12:19 - 000202480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2017-09-09 18:56 - 2017-03-04 07:49 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2017-09-09 18:56 - 2017-03-04 07:48 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2017-09-09 18:56 - 2017-03-04 06:58 - 001717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-09-09 18:56 - 2017-03-04 06:27 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2017-09-09 18:56 - 2017-03-04 06:08 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-09-09 18:56 - 2016-11-22 11:21 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2017-09-09 18:56 - 2016-11-22 11:00 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2017-09-09 18:56 - 2016-10-25 09:12 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSMDesktopProvider.dll
2017-09-09 18:56 - 2016-10-05 06:47 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-09-09 18:56 - 2016-09-07 07:39 - 000705576 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-09-09 18:56 - 2016-09-07 07:39 - 000414232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2017-09-09 18:56 - 2016-09-07 06:44 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll
2017-09-09 18:56 - 2016-09-07 06:42 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-09-09 18:56 - 2016-09-07 06:41 - 000313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2017-09-09 18:56 - 2016-09-07 06:36 - 000479744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2017-09-09 18:56 - 2016-09-07 06:36 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroleui.dll
2017-09-09 18:56 - 2016-09-07 06:33 - 000276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2017-09-09 18:56 - 2016-09-07 06:31 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2017-09-09 18:56 - 2016-09-07 06:09 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2017-09-09 18:56 - 2016-08-03 11:40 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2017-09-09 18:55 - 2017-07-29 20:29 - 000754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-09-09 18:55 - 2017-07-29 17:26 - 000566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-09-09 18:55 - 2017-07-29 17:21 - 000146272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2017-09-09 18:55 - 2017-07-29 17:21 - 000075952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-09-09 18:55 - 2017-07-29 16:48 - 000292192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-09-09 18:55 - 2017-07-29 16:48 - 000122504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-09-09 18:55 - 2017-07-29 16:44 - 000642008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-09-09 18:55 - 2017-07-29 16:44 - 000380152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-09-09 18:55 - 2017-07-29 16:43 - 000147808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-09-09 18:55 - 2017-07-29 14:50 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2017-09-09 18:55 - 2017-07-29 14:45 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2017-09-09 18:55 - 2017-07-29 14:24 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-09-09 18:55 - 2017-07-29 14:23 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-09-09 18:55 - 2017-07-29 14:20 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-09-09 18:55 - 2017-07-29 14:17 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-09-09 18:55 - 2017-07-29 14:11 - 000715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-09-09 18:55 - 2017-07-29 14:09 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-09-09 18:55 - 2017-07-29 14:04 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-09-09 18:55 - 2017-07-29 13:52 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-09-09 18:55 - 2017-07-29 13:47 - 001385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-09-09 18:55 - 2017-07-29 13:17 - 003587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-09-09 18:55 - 2017-07-07 10:37 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2017-09-09 18:55 - 2017-06-17 09:50 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-09-09 18:55 - 2017-06-17 09:30 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2017-09-09 18:55 - 2017-06-17 08:47 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2017-09-09 18:55 - 2017-06-03 14:12 - 001987424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-09-09 18:55 - 2017-06-03 14:12 - 000636304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-09-09 18:55 - 2017-06-03 14:12 - 000379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-09-09 18:55 - 2017-06-03 14:10 - 001597520 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2017-09-09 18:55 - 2017-06-03 13:42 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll
2017-09-09 18:55 - 2017-06-03 13:39 - 000045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-09-09 18:55 - 2017-06-03 13:27 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2017-09-09 18:55 - 2017-06-03 12:38 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-09-09 18:55 - 2017-04-28 03:38 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-09-09 18:55 - 2017-03-28 10:29 - 000393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-09-09 18:55 - 2017-03-28 09:37 - 000161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2017-09-09 18:55 - 2017-03-28 09:20 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2017-09-09 18:55 - 2017-03-04 09:09 - 000230752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-09-09 18:55 - 2017-03-04 09:08 - 000725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-09-09 18:55 - 2017-03-04 09:03 - 000341944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2017-09-09 18:55 - 2017-03-04 08:32 - 002773096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2017-09-09 18:55 - 2017-03-04 07:40 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2017-09-09 18:55 - 2017-03-04 07:38 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\feclient.dll
2017-09-09 18:55 - 2017-03-04 07:36 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2017-09-09 18:55 - 2017-03-04 07:28 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-09-09 18:55 - 2017-03-04 07:26 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-09-09 18:55 - 2017-03-04 07:24 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2017-09-09 18:55 - 2017-03-04 07:22 - 000342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2017-09-09 18:55 - 2017-03-04 07:21 - 000685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2017-09-09 18:55 - 2017-03-04 07:16 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2017-09-09 18:55 - 2017-03-04 07:15 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2017-09-09 18:55 - 2017-03-04 07:09 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-09-09 18:55 - 2017-03-04 07:07 - 000915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2017-09-09 18:55 - 2017-03-04 07:07 - 000504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-09-09 18:55 - 2017-03-04 07:07 - 000480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-09-09 18:55 - 2017-03-04 07:02 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-09-09 18:55 - 2017-03-04 07:02 - 000585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-09-09 18:55 - 2017-03-04 06:47 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-09-09 18:55 - 2017-03-04 06:47 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2017-09-09 18:55 - 2017-03-04 06:27 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-09-09 18:55 - 2017-03-04 06:27 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-09-09 18:55 - 2017-03-04 06:24 - 002067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2017-09-09 18:55 - 2017-03-04 06:20 - 002175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-09 18:55 - 2017-03-04 06:19 - 001997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-09-09 18:55 - 2017-03-04 06:08 - 000984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-09-09 18:55 - 2017-03-04 05:42 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-09-09 18:55 - 2017-03-04 05:34 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2017-09-09 18:55 - 2016-11-22 12:04 - 002549456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-09-09 18:55 - 2016-11-22 12:02 - 001399216 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-09-09 18:55 - 2016-11-22 11:13 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2017-09-09 18:55 - 2016-11-22 10:20 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2017-09-09 18:55 - 2016-11-22 09:36 - 000766464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-09-09 18:55 - 2016-10-25 11:42 - 000037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2017-09-09 18:55 - 2016-10-25 11:26 - 000528736 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2017-09-09 18:55 - 2016-10-25 10:39 - 000304752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2017-09-09 18:55 - 2016-10-25 10:38 - 000374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-09-09 18:55 - 2016-10-25 10:37 - 001603224 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2017-09-09 18:55 - 2016-10-25 10:34 - 000106928 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2017-09-09 18:55 - 2016-10-25 10:02 - 000577376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-09-09 18:55 - 2016-10-25 10:01 - 000324448 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2017-09-09 18:55 - 2016-10-25 09:46 - 000376528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-09-09 18:55 - 2016-10-25 09:13 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2017-09-09 18:55 - 2016-10-25 09:13 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2017-09-09 18:55 - 2016-10-25 09:10 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2017-09-09 18:55 - 2016-10-25 09:05 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FingerprintEnrollment.dll
2017-09-09 18:55 - 2016-10-25 08:59 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvc.dll
2017-09-09 18:55 - 2016-10-25 08:59 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2017-09-09 18:55 - 2016-10-25 08:58 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2017-09-09 18:55 - 2016-10-25 08:54 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2017-09-09 18:55 - 2016-10-25 08:53 - 000714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-09-09 18:55 - 2016-10-25 08:51 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2017-09-09 18:55 - 2016-10-25 08:50 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2017-09-09 18:55 - 2016-10-25 08:50 - 000479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2017-09-09 18:55 - 2016-10-25 08:42 - 000656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2017-09-09 18:55 - 2016-10-25 08:41 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2017-09-09 18:55 - 2016-10-25 08:41 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-09-09 18:55 - 2016-10-25 08:34 - 000436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-09-09 18:55 - 2016-10-25 08:32 - 001037824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2017-09-09 18:55 - 2016-10-25 08:32 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2017-09-09 18:55 - 2016-10-25 08:22 - 000638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-09-09 18:55 - 2016-10-25 07:52 - 000693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2017-09-09 18:55 - 2016-10-25 06:43 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2017-09-09 18:55 - 2016-10-05 09:01 - 001337184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-09-09 18:55 - 2016-10-05 07:25 - 000871776 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2017-09-09 18:55 - 2016-10-05 06:51 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-09-09 18:55 - 2016-10-05 06:49 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2017-09-09 18:55 - 2016-10-05 06:47 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2017-09-09 18:55 - 2016-10-05 06:34 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-09-09 18:55 - 2016-10-05 06:30 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2017-09-09 18:55 - 2016-10-05 06:17 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-09-09 18:55 - 2016-10-05 06:15 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-09-09 18:55 - 2016-09-07 07:39 - 000337328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-09-09 18:55 - 2016-09-07 07:16 - 002144512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2017-09-09 18:55 - 2016-09-07 07:15 - 000550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2017-09-09 18:55 - 2016-09-07 06:45 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\spcompat.dll
2017-09-09 18:55 - 2016-09-07 06:44 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IconCodecService.dll
2017-09-09 18:55 - 2016-09-07 06:40 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2017-09-09 18:55 - 2016-09-07 06:40 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2017-09-09 18:55 - 2016-09-07 06:38 - 000413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-09-09 18:55 - 2016-09-07 06:38 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-09-09 18:55 - 2016-09-07 06:36 - 001582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-09-09 18:55 - 2016-09-07 06:36 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2017-09-09 18:55 - 2016-09-07 06:36 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-09-09 18:55 - 2016-09-07 06:36 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2017-09-09 18:55 - 2016-09-07 06:35 - 000814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2017-09-09 18:55 - 2016-09-07 06:35 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2017-09-09 18:55 - 2016-09-07 06:34 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2017-09-09 18:55 - 2016-09-07 06:34 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2017-09-09 18:55 - 2016-09-07 06:34 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2017-09-09 18:55 - 2016-09-07 06:34 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-09-09 18:55 - 2016-09-07 06:32 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl
2017-09-09 18:55 - 2016-09-07 06:31 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppinst.dll
2017-09-09 18:55 - 2016-09-07 06:31 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2017-09-09 18:55 - 2016-09-07 06:30 - 002476032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2017-09-09 18:55 - 2016-09-07 06:30 - 001558528 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2017-09-09 18:55 - 2016-09-07 06:30 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2017-09-09 18:55 - 2016-09-07 06:30 - 000599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2017-09-09 18:55 - 2016-09-07 06:30 - 000531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2017-09-09 18:55 - 2016-09-07 06:29 - 001465344 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2017-09-09 18:55 - 2016-09-07 06:29 - 001443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2017-09-09 18:55 - 2016-09-07 06:27 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2017-09-09 18:55 - 2016-09-07 06:19 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2017-09-09 18:55 - 2016-09-07 06:16 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2017-09-09 18:55 - 2016-09-07 06:12 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2017-09-09 18:55 - 2016-08-03 11:39 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2017-09-09 18:54 - 2017-07-29 17:23 - 001540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-09-09 18:54 - 2017-07-29 17:23 - 000692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-09-09 18:54 - 2017-07-29 14:12 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2017-09-09 18:54 - 2017-07-29 12:15 - 006977536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-09 18:54 - 2017-07-29 12:12 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-09-09 18:54 - 2017-07-29 12:08 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-09-09 18:54 - 2017-06-17 12:16 - 001030408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-09-09 18:54 - 2017-06-17 11:07 - 001128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-09-09 18:54 - 2017-06-17 11:07 - 000625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-09-09 18:54 - 2017-06-17 09:01 - 002125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2017-09-09 18:54 - 2017-06-17 08:49 - 004456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-09 18:54 - 2017-06-17 08:11 - 002635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-09-09 18:54 - 2017-06-03 12:47 - 001418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-09-09 18:54 - 2017-04-28 06:30 - 001317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-09-09 18:54 - 2017-04-28 03:03 - 002610176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-09 18:54 - 2017-04-28 02:35 - 003585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-09-09 18:54 - 2017-04-28 02:08 - 003993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-09-09 18:54 - 2017-03-28 08:19 - 001674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-09-09 18:54 - 2017-03-04 10:15 - 000875480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-09-09 18:54 - 2017-03-04 09:55 - 001038176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-09-09 18:54 - 2017-03-04 09:09 - 000730352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-09-09 18:54 - 2017-03-04 09:08 - 004516800 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-09-09 18:54 - 2017-03-04 09:06 - 000742192 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2017-09-09 18:54 - 2017-03-04 07:29 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-09-09 18:54 - 2017-03-04 07:14 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-09-09 18:54 - 2017-03-04 07:11 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-09-09 18:54 - 2017-03-04 07:08 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-09-09 18:54 - 2017-03-04 07:03 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2017-09-09 18:54 - 2017-03-04 07:02 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2017-09-09 18:54 - 2017-03-04 07:02 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-09-09 18:54 - 2017-03-04 07:02 - 000990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-09-09 18:54 - 2017-03-04 06:58 - 001575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-09-09 18:54 - 2017-03-04 06:57 - 002731008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2017-09-09 18:54 - 2017-03-04 06:53 - 001073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-09-09 18:54 - 2017-03-04 06:41 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-09-09 18:54 - 2017-03-04 06:39 - 001297408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2017-09-09 18:54 - 2017-03-04 06:31 - 001755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-09-09 18:54 - 2017-03-04 06:30 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Proximity.dll
2017-09-09 18:54 - 2017-03-04 06:03 - 001390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-09-09 18:54 - 2017-03-04 05:56 - 002563584 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2017-09-09 18:54 - 2017-03-04 05:52 - 001797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-09-09 18:54 - 2016-12-21 08:56 - 001502208 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-09-09 18:54 - 2016-10-25 11:42 - 001142560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-09-09 18:54 - 2016-10-25 11:39 - 001238584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2017-09-09 18:54 - 2016-10-25 10:01 - 001415200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-09-09 18:54 - 2016-10-25 09:32 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2017-09-09 18:54 - 2016-10-25 08:58 - 000289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-09-09 18:54 - 2016-10-25 08:56 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dxpserver.exe
2017-09-09 18:54 - 2016-10-25 08:55 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2017-09-09 18:54 - 2016-10-25 08:52 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-09-09 18:54 - 2016-10-25 08:51 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2017-09-09 18:54 - 2016-10-25 08:47 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-09-09 18:54 - 2016-10-25 08:47 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2017-09-09 18:54 - 2016-10-25 08:44 - 001479168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2017-09-09 18:54 - 2016-10-25 08:43 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\certreq.exe
2017-09-09 18:54 - 2016-10-25 08:40 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2017-09-09 18:54 - 2016-10-25 08:38 - 000828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-09-09 18:54 - 2016-10-25 08:24 - 001211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-09-09 18:54 - 2016-10-25 08:21 - 001570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2017-09-09 18:54 - 2016-10-25 08:20 - 003549696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2017-09-09 18:54 - 2016-10-25 08:03 - 006675968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-09-09 18:54 - 2016-10-25 07:52 - 004170240 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-09-09 18:54 - 2016-10-25 07:50 - 002874880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2017-09-09 18:54 - 2016-10-25 07:47 - 003355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-09-09 18:54 - 2016-10-25 07:39 - 005503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-09-09 18:54 - 2016-10-25 07:35 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2017-09-09 18:54 - 2016-10-25 07:10 - 001568256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2017-09-09 18:54 - 2016-10-25 07:10 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2017-09-09 18:54 - 2016-10-25 07:02 - 003459584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-09-09 18:54 - 2016-09-07 07:35 - 000523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2017-09-09 18:54 - 2016-09-07 07:26 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-09-09 18:54 - 2016-09-07 07:22 - 000638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2017-09-09 18:54 - 2016-09-07 06:41 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2017-09-09 18:54 - 2016-09-07 06:41 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2017-09-09 18:54 - 2016-09-07 06:37 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-09-09 18:54 - 2016-09-07 06:35 - 000945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-09-09 18:54 - 2016-09-07 06:33 - 000904704 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2017-09-09 18:54 - 2016-09-07 06:32 - 000738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartCardSimulator.dll
2017-09-09 18:54 - 2016-09-07 06:31 - 000984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2017-09-09 18:54 - 2016-09-07 06:31 - 000900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2017-09-09 18:54 - 2016-09-07 06:31 - 000511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2017-09-09 18:54 - 2016-09-07 06:30 - 001318400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-09-09 18:54 - 2016-09-07 06:30 - 000649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2017-09-09 18:54 - 2016-09-07 06:29 - 001487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2017-09-09 18:54 - 2016-09-07 06:28 - 001783808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-09-09 18:54 - 2016-09-07 06:27 - 001395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-09-09 18:54 - 2016-09-07 06:26 - 002881536 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2017-09-09 18:54 - 2016-09-07 06:22 - 003093504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-09-09 18:54 - 2016-09-07 06:22 - 001113600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2017-09-09 18:54 - 2016-09-07 06:10 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2017-09-09 18:53 - 2017-07-07 09:12 - 004827136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-09-09 18:53 - 2017-03-04 05:41 - 011545600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-09-09 18:53 - 2017-03-04 05:35 - 002352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-09-09 18:53 - 2016-10-25 08:16 - 003415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2017-09-09 18:53 - 2016-09-07 07:39 - 004387680 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 001564512 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 001214816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 000629088 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 000544096 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 000334176 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 000225632 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 000136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 000096608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-09-09 18:41 - 2017-09-09 18:41 - 000003382 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3052078447-1551124749-911916405-1001

==================== Ein Monat: GeÃ¤nderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-09-14 15:19 - 2015-10-30 20:35 - 000778202 _____ C:\WINDOWS\system32\perfh007.dat
2017-09-14 15:19 - 2015-10-30 20:35 - 000155964 _____ C:\WINDOWS\system32\perfc007.dat
2017-09-14 15:19 - 2015-07-16 17:54 - 001799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-14 14:30 - 2017-01-29 21:29 - 000000292 _____ C:\WINDOWS\Tasks\{4C163C37-2A77-1B61-DB2E-195CB105048D}.job
2017-09-14 14:28 - 2017-01-29 21:28 - 000001016 _____ C:\WINDOWS\Tasks\Yahoo! Powered litom.job
2017-09-14 14:14 - 2017-01-29 21:28 - 000000000 ____D C:\Program Files\ByteFence
2017-09-14 14:13 - 2017-01-29 21:15 - 000014731 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2017-09-14 14:10 - 2015-12-25 03:28 - 000000000 __SHD C:\Users\Caroline\IntelGraphicsProfiles
2017-09-14 07:10 - 2016-06-02 14:06 - 000004176 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{750F3F90-E105-4C60-BF9E-318ED3F70004}
2017-09-13 22:53 - 2017-06-26 14:53 - 000000314 _____ C:\WINDOWS\Tasks\{6F20E16E-4EBB-90E1-1649-58CEA584431B}.job
2017-09-13 18:18 - 2015-10-30 09:11 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-09-13 18:08 - 2015-12-29 16:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-09-13 18:07 - 2015-10-30 08:28 - 000786432 ___SH C:\WINDOWS\system32\config\BBI
2017-09-13 17:45 - 2016-01-28 15:36 - 000048128 ___SH C:\Users\Caroline\Documents\Thumbs.db
2017-09-13 17:28 - 2017-01-29 21:28 - 000000000 ____D C:\ProgramData\{05C8C0AB-8F8A-4A6D-094C-D42F930E5FE1}
2017-09-12 18:22 - 2016-04-17 10:47 - 000247296 ___SH C:\Users\Caroline\Desktop\Thumbs.db
2017-09-11 15:54 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-09-10 20:33 - 2016-09-13 19:28 - 000002179 _____ C:\Users\Caroline\Desktop\Mathematik 5.lnk
2017-09-10 20:13 - 2015-10-30 09:21 - 000000000 ____D C:\WINDOWS\INF
2017-09-10 20:07 - 2015-12-29 16:41 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2017-09-10 20:07 - 2015-07-16 17:49 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-09-10 20:05 - 2015-12-29 16:13 - 000000000 ____D C:\Users\Caroline
2017-09-10 20:01 - 2015-12-29 16:02 - 000224368 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-09-10 19:53 - 2015-10-30 09:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-09-10 19:53 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-09-10 19:53 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2017-09-10 19:53 - 2015-10-30 08:31 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2017-09-10 19:53 - 2015-10-30 08:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ___RD C:\WINDOWS\DevicesFlow
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\setup
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\Provisioning
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\Program Files\Windows Defender
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-09-10 19:52 - 2015-10-30 08:31 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2017-09-10 19:52 - 2015-10-30 08:28 - 000000000 ____D C:\WINDOWS\system32\Dism
2017-09-10 16:48 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\rescache
2017-09-10 15:20 - 2015-10-17 18:17 - 000000000 ____D C:\ProgramData\McAfee
2017-09-10 14:54 - 2017-08-11 22:33 - 000000000 ___HD C:\$GetCurrent
2017-09-10 14:54 - 2017-06-27 19:55 - 000000000 ____D C:\Windows10Upgrade
2017-09-10 14:54 - 2015-10-17 19:43 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2017-09-10 14:54 - 2015-10-17 19:43 - 000001908 _____ C:\WINDOWS\diagerr.xml
2017-09-10 14:53 - 2015-12-29 16:01 - 000000000 ___DC C:\WINDOWS\Panther
2017-09-10 14:40 - 2017-01-29 21:28 - 000000306 __RSH C:\ProgramData\ntuser.pol
2017-09-10 14:26 - 2015-10-17 18:14 - 000000000 ____D C:\Program Files\Lenovo
2017-09-09 20:26 - 2015-10-30 09:24 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-09 20:11 - 2017-06-27 19:43 - 000000000 ____D C:\Program Files\rempl
2017-09-09 19:39 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2017-09-09 18:51 - 2015-12-25 13:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-09-09 18:43 - 2015-12-25 13:07 - 140394280 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-09-09 18:41 - 2015-12-25 03:34 - 000002445 _____ C:\Users\Caroline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-09 18:41 - 2015-12-25 03:34 - 000000000 ___RD C:\Users\Caroline\OneDrive
2017-09-09 18:36 - 2015-10-30 08:28 - 000032768 ___SH C:\WINDOWS\system32\config\ELAM
2017-09-09 18:35 - 2017-06-26 14:53 - 000000000 ____D C:\Users\Caroline\AppData\Local\6f20e16e4ebb90e1164958cea584431b
2017-09-09 18:35 - 2017-01-30 18:12 - 000000242 _____ C:\Users\Caroline\AppData\Roaming\WB.CFG
2017-08-17 18:35 - 2016-04-24 17:01 - 000544424 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2017-06-26 14:53 - 2017-06-26 14:53 - 000020035 _____ () C:\Users\Caroline\AppData\Roaming\Sotalasetu
2017-01-30 18:12 - 2017-09-09 18:35 - 000000242 _____ () C:\Users\Caroline\AppData\Roaming\WB.CFG
2015-12-25 03:29 - 2017-09-14 15:13 - 000695517 _____ () C:\Users\Caroline\AppData\Local\BTServer.log
2016-07-23 11:41 - 2016-07-23 11:41 - 000003584 _____ () C:\Users\Caroline\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-29 16:08 - 2015-12-29 16:08 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

Dateien, die verschoben oder gelÃ¶scht werden sollten:
====================
C:\Windows\Tasks\{4C163C37-2A77-1B61-DB2E-195CB105048D}.job
C:\Windows\Tasks\{6F20E16E-4EBB-90E1-1649-58CEA584431B}.job


Einige Dateien in TEMP:
====================
2016-01-07 17:33 - 2009-07-13 22:59 - 000703552 _____ (Electronic Arts Inc.) C:\Users\Caroline\AppData\Local\Temp\AutoRun.exe
2016-01-07 17:33 - 2009-07-13 22:59 - 000703552 _____ (Electronic Arts Inc.) C:\Users\Caroline\AppData\Local\Temp\AutoRunGUI.dll
2016-01-07 17:54 - 2016-08-02 16:57 - 000204800 _____ (Sony DADC Austria AG) C:\Users\Caroline\AppData\Local\Temp\drm_dyndata_7400006.dll
2017-01-29 21:37 - 2017-01-29 21:37 - 003350528 _____ () C:\Users\Caroline\AppData\Local\Temp\SkypeSetup.exe
2016-01-07 17:38 - 2009-07-13 22:59 - 000026176 ____R () C:\Users\Caroline\AppData\Local\Temp\VP6Install.exe
2016-01-07 17:38 - 2009-07-13 22:59 - 000445504 ____R (On2.com) C:\Users\Caroline\AppData\Local\Temp\VP6VFW.dll
2017-08-11 22:14 - 2017-08-11 22:32 - 006457520 _____ (Microsoft Corporation) C:\Users\Caroline\AppData\Local\Temp\Windows10Upgrade.exe

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix fÃ¼r Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-09-11 19:32

==================== Ende von FRST.txt ============================

und

Code:

ATTFilter

ZusÃ¤tzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 13-09-2017 02
durchgefÃ¼hrt von Caroline (14-09-2017 15:22:10)
Gestartet von C:\Users\Caroline\Desktop
Windows 10 Home Version 1511 (X64) (2015-12-29 14:34:58)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3052078447-1551124749-911916405-500 - Administrator - Disabled)
Caroline (S-1-5-21-3052078447-1551124749-911916405-1001 - Administrator - Enabled) => C:\Users\Caroline
DefaultAccount (S-1-5-21-3052078447-1551124749-911916405-503 - Limited - Disabled)
Gast (S-1-5-21-3052078447-1551124749-911916405-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3052078447-1551124749-911916405-1003 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {B10D5953-051E-97F6-F53B-3839EFD98259}
AS: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {0A6CB8B7-2324-9878-CF8B-034B945EC8E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Disabled) {8936D876-4F71-96AE-DE64-910C110AC522}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" kÃ¶nnen in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Apple Application Support (32-Bit) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
BenutzerhandbÃ¼cher (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
ByteFence Anti-Malware (HKLM-x32\...\ByteFence) (Version: 2.9.0.0 - Byte Technologies LLC) <==== ACHTUNG
Chromium (HKLM-x32\...\{D81F30DF-889F-E15F-391F-91DFE99F425F}) (Version:  - )
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Components (HKLM-x32\...\{1720B0E0-C520-43A6-B677-97A1D80F3B99}) (Version: 1.0.023.00 - Lenovo) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.4505 - CyberLink Corp.)
Die Simsâ„¢ 2 (HKLM-x32\...\{2C82E097-694E-44ea-A947-2750679469CF}) (Version:  - Electronic Arts)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10600.147 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4653 - Intel Corporation)
Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 604.10125.2655.573 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
IntelÂ® Chipsatz-GerÃ¤tesoftware (HKLM-x32\...\{c6cff78a-cccb-49d5-be68-ae0ec5f0d48a}) (Version: 10.1.1.8 - Intel(R) Corporation) Hidden
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
KB4023057 (HKLM\...\{ED06689A-33B7-4D35-8F76-36A82CD03406}) (Version: 2.3.0.0 - Microsoft Corporation)
'Lass uns reiten 2'  - Demo (HKLM-x32\...\'Lass uns reiten 2') (Version:  - Demo - dtp Entertainment AG)
Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11105 - Realtek Semiconductor Corp.)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 2.0.9.0 - Lenovo)
Lenovo FusionEngine  (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4210 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4210 - CyberLink Corp.)
Lenovo Photo Master (HKLM-x32\...\{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 2.5.5720.01 - CyberLink Corp.)
Lenovo PowerDVD12 (HKLM-x32\...\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.) Hidden
Lenovo PowerDVD12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.)
Lenovo QuickOptimizer (HKLM\...\{8D2C871B-1B9F-45AC-9C43-2BB18089CDFA}) (Version: 1.0.006.00 - Lenovo)
Lenovo Solution Center (HKLM\...\{F925868A-2F2C-414B-A5A7-C613039CE9E4}) (Version: 3.1.001.00 - Lenovo)
Lenovo System Interface Foundation Driver (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.0.078.00 - Lenovo)
Mathematik 5 (HKLM-x32\...\Mathematik 5) (Version: 1.0 - Westermann)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 15.0.2063 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.161 - McAfee, Inc.)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\OneDriveSetup.exe) (Version: 17.3.6966.0824 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
QuickTime (HKLM-x32\...\QuickTime) (Version:  - )
REACHit (HKLM-x32\...\{4532E4C5-C84D-4040-A044-ECFCC5C6995B}) (Version: 2.5.003.11 - Lenovo)
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.876.867.091615 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29088 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7514 - Realtek Semiconductor Corp.)
Realtek Wireless LAN Adapter Software (HKLM-x32\...\{E462B252-195B-47EA-98E2-BAC3C2DF7D37}) (Version: 11.00.0057.0 - REALTEK Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0286 - REALTEK Semiconductor Corp.)
Search the Web (Yahoo) (HKLM-x32\...\{CB1E23DE-9B9E-F25E-2A1E-82DEFA9E515E}) (Version:  - ) <==== ACHTUNG
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skypeâ„¢ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.7 - Synaptics Incorporated)
UpdateAssistant (HKLM-x32\...\{4E67FF7F-C24E-4279-9AB2-C26D57B53742}) (Version: 1.3.0.0 - Microsoft Corporation) Hidden
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22243 - Microsoft Corporation)
Yahoo Search Set (HKLM-x32\...\Yahoo! SearchSet) (Version:  - Yahoo Inc.)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3052078447-1551124749-911916405-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
ContextMenuHandlers1: [BtSendToMenuEx] -> {CF24E6B8-F148-4BCB-9108-ADF313966E80} => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\DevMenuExt.dll [2014-07-03] (Realtek Semiconductor Corporation)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2014-09-10] (Cyberlink)
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2016-11-18] (McAfee, Inc.)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2014-09-10] (Cyberlink)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-08-07] (Intel Corporation)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2016-11-18] (McAfee, Inc.)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {08551E10-D461-4F45-BA68-D7F90176C49C} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe [2016-12-18] (Byte Technologies LLC) <==== ACHTUNG
Task: {102D5A18-E912-4CFD-8456-2B8C50BE9EC5} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\db3a76ce-f9c4-4b1f-befe-544d7256ac4c => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {18B8C126-1705-4DB6-AD84-65CC4217884C} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2016-12-18] (Byte Technologies LLC) <==== ACHTUNG
Task: {2C3A3A1C-F6EE-4467-8A60-AE8D0A9B2C69} - System32\Tasks\Lenovo\QuickOptimizer => C:\Program Files\lenovo\QuickOptimizer\QuickOptimizerIcon.exe [2015-07-10] (Lenovo)
Task: {3A2C1D69-B820-4CF8-B7C4-BD49C29C2982} - System32\Tasks\{4C163C37-2A77-1B61-DB2E-195CB105048D} => C:\Program Files (x86)\Common Files\UpdateTask\synctask.exe [2013-05-02] () <==== ACHTUNG
Task: {3FB0CF8E-AC71-4AB9-AA70-0CB8029D963E} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe [2016-09-22] (CyberLink Corp.)
Task: {47C6179E-7CCA-41AF-ACBE-8E34F4AE945C} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {585CBE0A-15AD-4B2A-B3AF-C840BBCED3DA} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {66B5067A-0D5F-488D-8F3C-573D0345AC88} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4f7070f3-d6df-4f63-9b00-35f7da642399 => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {75FD5929-6B2B-4BF1-BF8A-88458E44D6A6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\918028ce-4bd8-461e-a923-890fe9c7d164 => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {77B7695F-F5FD-4511-9958-9A5ADA6552A5} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\platform\McUICnt.exe [2016-10-11] (McAfee, Inc.)
Task: {7BED48F1-97D8-41E9-876E-4D9332A6761F} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-08-07] ()
Task: {7D1C5CC5-6097-4380-831C-CCD0F2297A84} - System32\Tasks\Yahoo! Powered litom => C:\WINDOWS\system32\wscript.exe "C:\ProgramData\{05C8C0AB-8F8A-4A6D-094C-D42F930E5FE1}\dide.txt" "687474703a2f2f7761676e672e636f6d" "433a5c50726f6772616d446174615c7b30354338433041422d384638412d344136442d303934432d4434324639333045354645317d5c6d6f736f6e6f" "433a5c50726f6772616d446174615c7b30354338433041422d384638412d344136442d303934 (Der Dateneintrag hat 78 mehr Zeichen). <==== ACHTUNG
Task: {7E734F91-E3D9-4868-982C-29EDC77EC8BB} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\bc7eac65-6dfd-409a-bcf0-d14e24bdc82b => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {81B3674A-F3F4-4355-930D-ED57FE68AA33} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2015-08-07] (Lenovo)
Task: {8255D9FB-CFCE-4C35-8BE4-8C20E2646A12} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\666ad4a9-18e9-4e1e-815f-b2614803c97a => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {84483B6E-91B7-45FB-AFC4-325AC0CBBE4E} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2015-12-25] (Lenovo)
Task: {8C9F35B2-8523-419E-8629-EA5AC2DC2943} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [2015-05-28] (CyberLink Corp.)
Task: {8F6D52FF-9F9C-4202-97AD-F0AFD09828A5} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo)
Task: {97C1667D-E6B9-4062-B720-3BBB8D81668E} - System32\Tasks\{F202318E-4915-4596-9E38-50F8EBA318D5} => "c:\windows\system32\launchwinapp.exe" hxxp://ui.skype.com/ui/0/7.25.0.106/de/abandoninstall?page=tsProgressBar
Task: {9C557365-8988-4302-B8DE-2F785F068BD0} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 1 /f /reg:32
Task: {9F2FB77C-B936-4479-85D4-82CA6A25B992} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [2016-09-12] (Microsoft Corporation)
Task: {A8AEDEB6-3E0E-445A-B534-DBDBD373C543} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [2016-02-22] (Lenovo)
Task: {ABBE0747-23A4-4C1B-A0B1-ECCB1A6398D1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f0a96b97-1b64-4dec-a31f-1c14b5c6d49a => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {B10CBAAC-FABC-4F20-87F4-8F86D2FFB714} - System32\Tasks\Microsoft\Windows\rempl\shell-unlock => C:\Program Files\rempl\remsh.exe [2017-08-17] (Microsoft Corporation)
Task: {DABEADB3-5AF3-4BBA-BA82-28562AD216B5} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [2016-02-22] (Lenovo)
Task: {DD4ADD69-783F-4025-B8F7-612CCA767EB9} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8fdea1ab-41e3-405a-8bd4-877f7043a256 => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {E8F61430-4297-43A3-892E-F4E338A95BD2} - System32\Tasks\{6F20E16E-4EBB-90E1-1649-58CEA584431B} => C:\Users\Caroline\AppData\Local\6f20e16e4ebb90e1164958cea584431b\synhelper.exe [2013-04-23] () <==== ACHTUNG
Task: {EA0C5711-B996-4BAA-B76C-939CAFB13363} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2015-08-07] (Lenovo)
Task: {F0649318-8E1C-483E-8BD1-B66DF1460964} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\remsh.exe [2017-08-17] (Microsoft Corporation)
Task: {F7024B97-86B6-45B6-9D1E-3145B5E88302} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {FDB634DC-96FB-4D45-BD39-7840CA1CC50A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => %windir%\system32\sc.exe START ImControllerService

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Yahoo! Powered litom.job => Wscript.exe  C:\ProgramData\{05C8C0AB-8F8A-4A6D-094C-D42F930E5FE1}\dide.txt <==== ACHTUNG
Task: C:\WINDOWS\Tasks\{4C163C37-2A77-1B61-DB2E-195CB105048D}.job => C:\PROGRA~2\COMMON~1\UPDATE~1\synctask.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\{6F20E16E-4EBB-90E1-1649-58CEA584431B}.job => C:\Users\Caroline\AppData\Local\6F20E1~1\SYNHEL~1.EXE <==== ACHTUNG

==================== VerknÃ¼pfungen & WMI ========================

(Die EintrÃ¤ge kÃ¶nnen gelistet werden, um sie zurÃ¼ckzusetzen oder zu entfernen.)


==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-10-17 19:26 - 2015-07-20 19:19 - 000121560 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2017-06-26 15:24 - 2017-09-09 18:34 - 000302920 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
2017-09-09 19:01 - 2017-03-04 07:31 - 000185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-09-09 18:58 - 2017-07-29 20:31 - 002656960 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-07-10 17:40 - 2015-07-10 17:40 - 000048544 _____ () C:\Program Files\Lenovo\QuickOptimizer\LNBPrismAssistInf.dll
2017-06-26 15:23 - 2017-09-09 18:34 - 000620872 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
2015-12-29 15:54 - 2015-12-29 15:54 - 000093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-13 14:57 - 2016-07-01 05:48 - 000472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 17:40 - 2015-07-10 17:40 - 000016288 _____ () C:\Program Files\lenovo\QuickOptimizer\ShowTaskbarIcon.dll
2015-07-10 17:40 - 2015-07-10 17:40 - 005067168 _____ () C:\Program Files\lenovo\QuickOptimizer\DTPrismAssistInf.dll
2016-12-29 13:09 - 2017-08-11 23:06 - 000018944 _____ () C:\Program Files\WindowsApps\9FD20106.MediaPlayerQueen_1.2.5.0_x64__nwhm06f2kfry2\MediaPlayer.exe
2016-12-29 13:09 - 2017-08-11 23:06 - 021922304 _____ () C:\Program Files\WindowsApps\9FD20106.MediaPlayerQueen_1.2.5.0_x64__nwhm06f2kfry2\MediaPlayer.dll
2016-10-02 21:01 - 2016-10-02 21:02 - 000015360 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1609.2561.0_x64__8wekyb3d8bbwe\CompanionApp.exe
2016-10-02 21:01 - 2016-10-02 21:02 - 004148736 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1609.2561.0_x64__8wekyb3d8bbwe\CompanionApp.dll
2016-10-02 21:01 - 2016-10-02 21:02 - 000637440 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1609.2561.0_x64__8wekyb3d8bbwe\CompanionAppDeviceManager.dll
2015-12-24 22:32 - 2015-12-24 22:34 - 000258560 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1609.2561.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2017-09-09 18:57 - 2017-03-04 05:19 - 007992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-09-09 18:58 - 2017-03-04 05:14 - 000591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-09-09 18:57 - 2017-04-28 01:46 - 002483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-09-09 18:57 - 2017-07-29 20:03 - 004089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-09-09 18:57 - 2017-03-04 10:02 - 003081560 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll
2015-10-17 18:16 - 2015-02-12 16:02 - 000224696 _____ () C:\Program Files (x86)\Lenovo\CCSDK\SDKClient.dll
2017-06-26 15:05 - 2016-09-22 08:24 - 000884504 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\Kernel\Boomerang\UNO.dll
2017-06-26 15:01 - 2016-09-22 08:11 - 000081920 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\koan\_ctypes.pyd
2015-10-17 18:20 - 2014-07-04 06:35 - 000627672 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMediaLibrary.dll
2014-07-04 12:35 - 2014-07-04 12:35 - 000016856 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll
2017-01-29 21:30 - 2016-03-18 13:32 - 002160128 _____ () C:\Users\Caroline\AppData\Local\chromium\Application\51.0.2683.0\libglesv2.dll
2017-01-29 21:30 - 2016-03-18 13:32 - 000075776 _____ () C:\Users\Caroline\AppData\Local\chromium\Application\51.0.2683.0\libegl.dll
2016-06-04 07:58 - 2016-06-04 07:59 - 000725504 _____ () C:\Program Files\WindowsApps\Yodo1Ltd.CrossyRoad_1.3.4.0_x86__s3s3f300emkze\UnityEngineDelegates.dll
2017-09-11 19:47 - 2017-09-11 19:47 - 000329728 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Foundation\1dd6caefd2a4dabad06461f142fa6ce1\Windows.Foundation.ni.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"

==================== VerknÃ¼pfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurÃ¼ckgesetzt oder entfernt.)


==================== Internet Explorer VertrauenswÃ¼rdig/EingeschrÃ¤nkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ==========================

(Wenn benÃ¶tigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurÃ¼ckzusetzen.)

2015-07-10 13:04 - 2017-09-13 18:09 - 000002103 _____ C:\WINDOWS\system32\Drivers\etc\hosts

0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix fÃ¼r diesen Bereich.)

HKU\S-1-5-21-3052078447-1551124749-911916405-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Caroline\Pictures\2015-07\IMG_0176.PNG
DNS Servers: DatentrÃ¤ger ist nicht mit dem Internet verbunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte EintrÃ¤ge ==

HKLM\...\StartupApproved\Run: => "RtHDVBg_LENOVO_DOLBYDRAGON"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\StartupApproved\Run: => "PowerDVD12"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\StartupApproved\Run: => "Skype"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

Teil 2:

Code:

ATTFilter

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{DE955567-D6D1-4AB8-A34D-1C6C8F1412CB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{2346AF8F-CA67-450E-9AE6-82920D1F7DB1}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{BBFF9AFF-2D2C-4AD0-A650-D40706810D0E}] => (Allow) C:\Users\Caroline\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{494B61D7-3101-41DB-A25F-38655ED75B3C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{CE512D64-6FDC-45BB-8818-967AF5D3796B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{265B42B1-F028-43EE-A69A-D628759BEB21}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{7AE23E22-4DF0-4896-92C4-832B022506E6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

==================== Wiederherstellungspunkte =========================

10-09-2017 16:42:13 Geplanter PrÃ¼fpunkt

==================== Fehlerhafte GerÃ¤te im GerÃ¤temanager =============


==================== FehlereintrÃ¤ge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (09/14/2017 03:13:19 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2328797

Error: (09/14/2017 03:13:19 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2328797

Error: (09/14/2017 03:13:19 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/13/2017 06:27:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5422

Error: (09/13/2017 06:27:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5422

Error: (09/13/2017 06:27:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/13/2017 06:05:23 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.147) TYPE: ERROR

DPTF Build Version:  8.1.10600.147
DPTF Build Date:  May 26 2015 13:35:22
Source File:  ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function:  DptfEvent
Message:  Received unexpected event
Framework Event:  DptfResume [3]

Error: (09/13/2017 06:05:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-6DVRLBBN)
Description: Bei der Aktivierung der App â€žMicrosoft.Windows.Photos_8wekyb3d8bbwe!Appâ€œ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll â€žMicrosoft-Windows-TWinUI/Betriebsbereitâ€œ.

Error: (09/13/2017 06:05:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1172

Error: (09/13/2017 06:05:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1172


Systemfehler:
=============
Error: (09/14/2017 02:09:51 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine TransaktionsrÃ¼ckmeldung von Dienst ImControllerService erreicht.

Error: (09/14/2017 02:09:21 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine TransaktionsrÃ¼ckmeldung von Dienst ImControllerService erreicht.

Error: (09/14/2017 07:12:07 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine TransaktionsrÃ¼ckmeldung von Dienst ImControllerService erreicht.

Error: (09/14/2017 07:11:24 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_588e6" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende KorrekturmaÃŸnahmen werden in 10000 Millisekunden durchgefÃ¼hrt: Neustart des Diensts.

Error: (09/14/2017 07:11:24 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _588e6" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende KorrekturmaÃŸnahmen werden in 10000 Millisekunden durchgefÃ¼hrt: Neustart des Diensts.

Error: (09/14/2017 07:11:24 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_588e6" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende KorrekturmaÃŸnahmen werden in 10000 Millisekunden durchgefÃ¼hrt: Neustart des Diensts.

Error: (09/14/2017 07:11:24 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_588e6" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende KorrekturmaÃŸnahmen werden in 10000 Millisekunden durchgefÃ¼hrt: Neustart des Diensts.

Error: (09/13/2017 06:14:51 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-6DVRLBBN)
Description: Durch die Berechtigungseinstellungen fÃ¼r "Computerstandard" wird dem Benutzer "LAPTOP-6DVRLBBN\Caroline" (SID: S-1-5-21-3052078447-1551124749-911916405-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" fÃ¼r die COM-Serveranwendung mit der CLSID 
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
 und der APPID 
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
 im Anwendungscontainer "Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy" (SID: S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742) gewÃ¤hrt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool fÃ¼r Komponentendienste geÃ¤ndert werden.

Error: (09/13/2017 06:14:50 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-6DVRLBBN)
Description: Durch die Berechtigungseinstellungen fÃ¼r "Computerstandard" wird dem Benutzer "LAPTOP-6DVRLBBN\Caroline" (SID: S-1-5-21-3052078447-1551124749-911916405-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" fÃ¼r die COM-Serveranwendung mit der CLSID 
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
 und der APPID 
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
 im Anwendungscontainer "Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy" (SID: S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742) gewÃ¤hrt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool fÃ¼r Komponentendienste geÃ¤ndert werden.

Error: (09/13/2017 06:14:46 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-6DVRLBBN)
Description: Durch die Berechtigungseinstellungen fÃ¼r "Computerstandard" wird dem Benutzer "LAPTOP-6DVRLBBN\Caroline" (SID: S-1-5-21-3052078447-1551124749-911916405-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" fÃ¼r die COM-Serveranwendung mit der CLSID 
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
 und der APPID 
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
 im Anwendungscontainer "Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy" (SID: S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742) gewÃ¤hrt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool fÃ¼r Komponentendienste geÃ¤ndert werden.


CodeIntegrity:
===================================
  Date: 2017-09-13 17:07:51.547
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-09-12 16:25:25.234
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-09-10 20:04:13.089
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-09-10 20:02:16.081
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-09-09 20:07:30.293
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-09-09 18:51:31.238
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-01-30 17:13:34.581
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-01-29 15:57:07.810
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-09-13 19:16:15.267
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-07-18 19:04:11.664
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Celeron(R) CPU N2840 @ 2.16GHz
Prozentuale Nutzung des RAM: 63%
Installierter physikalischer RAM: 3977.2 MB
VerfÃ¼gbarer physikalischer RAM: 1443.11 MB
Summe virtueller Speicher: 4681.2 MB
VerfÃ¼gbarer virtueller Speicher: 1558.72 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:420.88 GB) (Free:361.39 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.27 GB) NTFS
Drive f: () (Removable) (Total:1.88 GB) (Free:1.88 GB) FAT

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 56F098AA)

Partition: GPT.

========================================================
Disk: 1 (Size: 1.9 GB) (Disk ID: 58038AE9)
Partition 1: (Not Active) - (Size=1.9 GB) - (Type=06)

==================== Ende von Addition.txt ============================

Awadu03

cosinus · 14.09.2017, 14:37

Oje

zuerst mal muss dieser Blödsinn von McAfee runter siehe --> https://service.mcafee.com/webcenter...cleId=TS101331

Melde dich wenn das geschafft ist oder wenn du Probleme dabei hast

Awadu03 · 14.09.2017, 14:55

McAfee wurde erfolgreich entfernt!

cosinus · 14.09.2017, 15:28

Ich brauche neue FRST-Logs . Haken setzen bei addition.txt dann auf Untersuchen klicken.

Awadu03 · 14.09.2017, 16:11

hier die Logs:

Code:

ATTFilter

ï»¿Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 13-09-2017 02
durchgefÃ¼hrt von Caroline (Administrator) auf LAPTOP-6DVRLBBN (14-09-2017 17:01:18)
Gestartet von C:\Users\Caroline\Desktop
Geladene Profile: Caroline (VerfÃ¼gbare Profile: Caroline)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung fÃ¼r Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Lenovo) C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
(Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Byte Technologies LLC) C:\Program Files\ByteFence\ByteFence.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Lenovo) C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Lenovo) C:\Program Files\Lenovo\QuickOptimizer\QuickOptimizerIcon.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo(beijing) Limited) C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe
(The Chromium Authors) C:\Users\Caroline\AppData\Local\chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Caroline\AppData\Local\chromium\Application\chrome.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(Apple Computer, Inc.) C:\Program Files (x86)\QuickTime\qttask.exe
(The Chromium Authors) C:\Users\Caroline\AppData\Local\chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Caroline\AppData\Local\chromium\Application\chrome.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(The Chromium Authors) C:\Users\Caroline\AppData\Local\chromium\Application\chrome.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurÃ¼ckgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13877464 2015-05-15] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [230104 2015-07-10] (Realtek Semiconductor Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3937448 2015-08-11] (Synaptics Incorporated)
HKLM\...\Run: [LenovoUtility] => C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [911272 2017-07-27] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\qttask.exe [98304 2015-12-24] (Apple Computer, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM-x32\...\RunOnce: [Nepomeho] => C:\WINDOWS\SysWOW64\wscript.exe /E:vbscript /B "C:\PROGRA~2\COMMON~1\UPDATE~1\Raparufuceh.dat"
HKLM-x32\...\RunOnce: [Carikotu] => C:\WINDOWS\SysWOW64\wscript.exe /E:vbscript /B "C:\Users\Caroline\AppData\Roaming\Sotalasetu"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\Run: [PowerDVD12] => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVDLaunchPolicy.exe [343480 2015-05-28] (CyberLink Corp.)
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\Run: [Chromium] => c:\users\caroline\appdata\local\chromium\application\chrome.exe [1068544 2016-03-18] (The Chromium Authors)
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\Run: [PhotoMasterImportAgent] => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [675608 2016-09-22] (CyberLink Corp.)
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\Run: [GoogleChromeAutoLaunch_F6409A96EF08163104C18CA4D1671239] => C:\Users\Caroline\AppData\Local\chromium\Application\chrome.exe [1068544 2016-03-18] (The Chromium Authors)
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\RunOnce: [Uninstall C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\RunOnce: [Uninstall C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\RunOnce: [Uninstall C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\RunOnce: [Uninstall C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\RunOnce: [Uninstall C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Caroline\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
GroupPolicy: BeschrÃ¤nkung <==== ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurÃ¼ckgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 172.17.2.1 172.17.2.1
Tcpip\..\Interfaces\{1682bb96-3e87-4afc-9144-8b7a333acf16}: [DhcpNameServer] 172.17.2.1 172.17.2.1
Tcpip\..\Interfaces\{aaed46eb-9f69-46d2-9312-f9b95e71c4a6}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{bec6402c-61c3-4222-818a-bf92edfde88d}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://de.search.yahoo.com/yhs/web?hspart=arh&hsimp=yhs-001&type=zxy_2a9bf677f9976a22e9&param1=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%3D&param2=NatbLGJ5MaR5
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://de.search.yahoo.com/yhs/web?hspart=arh&hsimp=yhs-001&type=zxy_2a9bf677f9976a22e9&param1=ArFaIWVoNqArQGMVHFFoNqAqBbFaITIoQGR7xTVoN9I4y7IsQGR7B7JoN9JbDSk8vFE9GqQANFdcFCk8NVQ9JqYWwVI3vCIVwVJdIWYUvFFdJ6IWwVU9JmIXwVI9GqYVNUI3wGYGwVQ9ISoUvmo9GqUNNos3wCIYwVA9Jmk4wVA4ICITvFI9J6ILNFdcJ6k8NoFcFGUMwVU9JmITwVU9ImoVwV5cGWUSNFRcEqULNopcGWUIvmFbF6oVNVQ3vCoXNVM4IWYXNVI9I6oWNVQ3vqYTwVxdICIWNVE9JmISwVQ9JGYWvmo9I6oWwVQ4JaYVwVJdISIWNVBdJCoUwVQ4JaQIwV5cGGUTNFRbDqUDNF5bDGUNNEU3wGQGvmk4ICoXvFQ9JqYXvFE4JmISwVU4IGYXvFM9I6oUNVQ9IWYUwVw3vCoVwVM4ISISNVQ4J6k4wVVdIGYYNVQ9Jmk4vFNdImoVNoU9GqYYNVc3wCoUQGR7B6RoN9J7LWJ6NqV9LWpoNqAsQGMVvDIlC6MuNGwuNaQuw7QnC6MoB6EbADIpy6wfyT0sAU1cM81dMU0ax7xdNHFbMn0aC6AoxrFaIWVdOqZoNqAexbFaIUwkynIew6NoNpRcNXFbJpseyDF%3D&param2=NatbLGJ5MaR5
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKLM -> DefaultScope {809A1B80-5261-4A75-87EE-9081FA65B490} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_17_26_wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StBtDtDtAtN1L2XzutAtFtAtBtFtCtFyDtDtN1L1Czu1M1Q1CtAtBtFtAtFtCtFtCtN1L1G1B1V1N2Y1L1Qzu2StDyEtByDyE0CzztBtGtDyEtCtCtGtC0FtDzytGtDtA0EyCtG0EzytAtBtDtCyDyEzyyB0F0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN0D0T0S1P1RzutCyEzyzzyEzztDyByBzy%26cr%3D1088848945%26a%3Dhdr_s_17_26_wbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM -> {809A1B80-5261-4A75-87EE-9081FA65B490} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_17_26_wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StBtDtDtAtN1L2XzutAtFtAtBtFtCtFyDtDtN1L1Czu1M1Q1CtAtBtFtAtFtCtFtCtN1L1G1B1V1N2Y1L1Qzu2StDyEtByDyE0CzztBtGtDyEtCtCtGtC0FtDzytGtDtA0EyCtG0EzytAtBtDtCyDyEzyyB0F0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN0D0T0S1P1RzutCyEzyzzyEzztDyByBzy%26cr%3D1088848945%26a%3Dhdr_s_17_26_wbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM -> {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StCzzyDyDtN1L2XzutAtFtByDtFtCtFtCtCzztN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StDzzyC0CtAyB0AtAtGyC0D0C0CtG0F0DtBtDtGyE0F0EyCtG0E0A0FtBtCyEyEyEtByE0CtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtCzztAyE%26cr%3D811579374%26a%3Dwbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {809A1B80-5261-4A75-87EE-9081FA65B490} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_17_26_wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StBtDtDtAtN1L2XzutAtFtAtBtFtCtFyDtDtN1L1Czu1M1Q1CtAtBtFtAtFtCtFtCtN1L1G1B1V1N2Y1L1Qzu2StDyEtByDyE0CzztBtGtDyEtCtCtGtC0FtDzytGtDtA0EyCtG0EzytAtBtDtCyDyEzyyB0F0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN0D0T0S1P1RzutCyEzyzzyEzztDyByBzy%26cr%3D1088848945%26a%3Dhdr_s_17_26_wbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> {809A1B80-5261-4A75-87EE-9081FA65B490} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_17_26_wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StBtDtDtAtN1L2XzutAtFtAtBtFtCtFyDtDtN1L1Czu1M1Q1CtAtBtFtAtFtCtFtCtN1L1G1B1V1N2Y1L1Qzu2StDyEtByDyE0CzztBtGtDyEtCtCtGtC0FtDzytGtDtA0EyCtG0EzytAtBtDtCyDyEzyyB0F0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN0D0T0S1P1RzutCyEzyzzyEzztDyByBzy%26cr%3D1088848945%26a%3Dhdr_s_17_26_wbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StCzzyDyDtN1L2XzutAtFtByDtFtCtFtCtCzztN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StDzzyC0CtAyB0AtAtGyC0D0C0CtG0F0DtBtDtGyE0F0EyCtG0E0A0FtBtCyEyEyEtByE0CtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtCzztAyE%26cr%3D811579374%26a%3Dwbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3052078447-1551124749-911916405-1001 -> DefaultScope {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_17_26_wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StBtDtDtAtN1L2XzutAtFtAtBtFtCtFyDtDtN1L1Czu1M1Q1CtAtBtFtAtFtCtFtCtN1L1G1B1V1N2Y1L1Qzu2StDyEtByDyE0CzztBtGtDyEtCtCtGtC0FtDzytGtDtA0EyCtG0EzytAtBtDtCyDyEzyyB0F0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN0D0T0S1P1RzutCyEzyzzyEzztDyByBzy%26cr%3D1088848945%26a%3Dhdr_s_17_26_wbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3052078447-1551124749-911916405-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StCzzyDyDtN1L2XzutAtFtByDtFtCtFtCtCzztN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StDzzyC0CtAyB0AtAtGyC0D0C0CtG0F0DtBtDtGyE0F0EyCtG0E0A0FtBtCyEyEyEtByE0CtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtCzztAyE%26cr%3D811579374%26a%3Dwbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3052078447-1551124749-911916405-1001 -> {809A1B80-5261-4A75-87EE-9081FA65B490} URL = 
SearchScopes: HKU\S-1-5-21-3052078447-1551124749-911916405-1001 -> {D18D72F5-08F0-466B-9F23-DF2FBCDBEA4E} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-3052078447-1551124749-911916405-1001 -> {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_17_26_wbf_secureddownload_17_04_ssg01&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0BtB0CtDzytDtD0D0EyE0CtCtAtBtBtDtN0D0Tzu0StBtDtDtAtN1L2XzutAtFtAtBtFtCtFyDtDtN1L1Czu1M1Q1CtAtBtFtAtFtCtFtCtN1L1G1B1V1N2Y1L1Qzu2StDyEtByDyE0CzztBtGtDyEtCtCtGtC0FtDzytGtDtA0EyCtG0EzytAtBtDtCyDyEzyyB0F0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyEyByBtB0ByEyBtGtAyE0ByCtGyE0BtD0EtGzyyDtCyDtG0ByCzytA0E0A0BtBzyyC0FyD2QtN0A0LzuyEtN0D0T0S1P1RzutCyEzyzzyEzztDyByBzy%26cr%3D1088848945%26a%3Dhdr_s_17_26_wbf_secureddownload_17_04_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-29] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-29] (Oracle Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-29] (Oracle Corporation)

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [41176 2015-03-02] (Realtek Semiconductor Corporation)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [121560 2015-07-20] ()
S2 ByteFenceService; C:\Program Files\ByteFence\ByteFenceService.exe [146400 2016-12-18] (Byte Technologies LLC)
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [650680 2015-07-29] (Lenovo)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1385640 2015-05-26] (Intel Corporation)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-29] (Lenovo)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337912 2017-08-07] (Intel Corporation)
R2 ImControllerService; c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [57160 2017-06-05] (Lenovo Group Limited)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [887232 2013-12-24] (Intel(R) Corporation)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [271296 2015-08-07] (Lenovo)
R2 rtop; C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe [302920 2017-09-09] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2017-07-29] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [47096 2015-05-26] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [251384 2015-05-26] (Intel Corporation)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [41464 2015-06-09] (Intel(R) Corporation)
R1 MpKsl5a73c6e5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EFBF26E2-E5B1-4A5A-9790-C70B32E82327}\MpKsl5a73c6e5.sys [44928 2017-09-13] (Microsoft Corporation)
R1 MpKslae7f3ac7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EFBF26E2-E5B1-4A5A-9790-C70B32E82327}\MpKslae7f3ac7.sys [44928 2017-09-13] (Microsoft Corporation)
S3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-05-21] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-12-25] (Realtek )
S3 RtkA2dp; C:\WINDOWS\system32\drivers\RtkA2dp.sys [182288 2015-05-21] (Realtek Semiconductor Corporation)
S3 RtkAvrcp; C:\WINDOWS\System32\drivers\RtkAvrcp.sys [67840 2015-09-09] (Realtek Semiconductor Corporation)
S3 RtkAvrcpCtrlr; C:\WINDOWS\System32\drivers\RtkAvrcpCtrlr.sys [70672 2015-05-12] (Realtek Semiconductor Corporation)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [593624 2015-12-25] (Realtek Semiconductor Corporation)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [3764736 2015-10-30] (Realtek Semiconductor Corporation )
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3059416 2015-06-11] (Realtek Semiconductor Corp.)
R3 RTWlanE; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [5491456 2016-05-25] (Realtek Semiconductor Corporation )
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-08-11] (Synaptics Incorporated)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [88592 2014-01-16] (Intel Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Apple, Inc.) [Datei ist nicht signiert]
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-09-14 17:01 - 2017-09-14 17:05 - 000023107 _____ C:\Users\Caroline\Desktop\FRST.txt
2017-09-14 15:16 - 2017-09-14 17:01 - 000000000 ____D C:\FRST
2017-09-14 15:01 - 2017-09-14 15:01 - 002398208 _____ (Farbar) C:\Users\Caroline\Desktop\FRST64.exe
2017-09-12 18:19 - 2017-09-14 07:11 - 000000000 ____D C:\Users\Caroline\Documents\Caroline
2017-09-12 16:57 - 2017-09-12 18:22 - 000017667 _____ C:\Users\Caroline\Desktop\Ostfriesische Inseln.odt
2017-09-11 19:08 - 2017-09-11 19:08 - 000000351 _____ C:\Users\Caroline\Desktop\Nordsee- Welche der Ostfriesischen Inseln zu wem passt - WELT.url
2017-09-10 19:52 - 2017-09-10 19:52 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2017-09-10 19:52 - 2017-09-10 19:52 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2017-09-10 14:53 - 2017-09-10 14:54 - 000000000 ____D C:\Users\Caroline\Documents\klett
2017-09-10 14:51 - 2017-09-10 14:54 - 000000000 ___HD C:\$WINDOWS.~BT
2017-09-10 14:40 - 2017-09-10 14:49 - 000000036 _____ C:\WINDOWS\progress.ini
2017-09-10 14:35 - 2017-09-10 14:36 - 000000000 ____D C:\Users\Caroline\Desktop\Mathematik Klasse 6
2017-09-10 14:26 - 2017-09-10 14:26 - 000001417 _____ C:\Users\Caroline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update- und Datenschutzeinstellungen.lnk
2017-09-10 14:26 - 2017-09-10 14:26 - 000000000 ____D C:\Users\Caroline\AppData\Local\UNP
2017-09-09 20:11 - 2017-09-09 20:12 - 000000000 ____D C:\Program Files\UNP
2017-09-09 20:11 - 2017-09-09 20:11 - 000000000 ____D C:\WINDOWS\system32\UNP
2017-09-09 19:48 - 2017-09-09 19:48 - 000000000 ____D C:\Users\Caroline\AppData\Local\ElevatedDiagnostics
2017-09-09 19:35 - 2017-09-09 19:35 - 000042693 ____T C:\Users\Caroline\Desktop\Einladung2.pdf
2017-09-09 19:35 - 2017-09-09 19:35 - 000042298 ____T C:\Users\Caroline\Desktop\Einladung1.pdf
2017-09-09 19:23 - 2017-09-09 19:23 - 000012973 _____ C:\Users\Caroline\Desktop\super hÃ¤ftiges ding was du nicht lÃ¶schen darfst 2.odt
2017-09-09 19:17 - 2017-09-09 19:17 - 000013125 _____ C:\Users\Caroline\Desktop\super hÃ¤ftiges ding was du nicht lÃ¶schen darfst.odt
2017-09-09 19:08 - 2017-07-30 01:59 - 000302704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2017-09-09 19:08 - 2017-07-29 18:51 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-09-09 19:08 - 2017-07-29 18:20 - 000384512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2017-09-09 19:08 - 2017-07-29 18:02 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2017-09-09 19:08 - 2017-07-29 05:22 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-09-09 19:08 - 2017-06-17 09:11 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-09-09 19:08 - 2017-06-17 08:54 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-09-09 19:08 - 2017-06-17 08:19 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2017-09-09 19:08 - 2017-03-28 10:52 - 000168360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2017-09-09 19:08 - 2017-03-04 07:06 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallButtons.dll
2017-09-09 19:08 - 2017-03-04 07:00 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-09-09 19:08 - 2017-03-04 06:49 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-09-09 19:08 - 2017-03-04 06:46 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2017-09-09 19:08 - 2017-03-04 06:42 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2017-09-09 19:08 - 2017-03-04 06:33 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2017-09-09 19:08 - 2017-03-04 06:29 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2017-09-09 19:08 - 2017-03-04 06:29 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2017-09-09 19:08 - 2017-03-04 06:28 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2017-09-09 19:08 - 2016-11-22 11:17 - 000106896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2017-09-09 19:08 - 2016-11-22 09:54 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2017-09-09 19:08 - 2016-10-25 09:45 - 000032096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2017-09-09 19:08 - 2016-10-25 08:56 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-09-09 19:08 - 2016-10-25 07:51 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2017-09-09 19:08 - 2016-10-25 07:37 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2017-09-09 19:08 - 2016-10-25 07:30 - 000434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-09-09 19:08 - 2016-10-25 06:21 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2017-09-09 19:08 - 2016-10-05 05:15 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2017-09-09 19:08 - 2016-09-07 07:39 - 000620176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-09-09 19:08 - 2016-09-07 07:24 - 000355672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2017-09-09 19:08 - 2016-09-07 07:08 - 000116216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2017-09-09 19:08 - 2016-09-07 06:52 - 001035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-09-09 19:08 - 2016-09-07 06:43 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MTConfig.sys
2017-09-09 19:08 - 2016-09-07 06:39 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2017-09-09 19:08 - 2016-09-07 06:36 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2017-09-09 19:08 - 2016-09-07 06:36 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2017-09-09 19:08 - 2016-09-07 06:35 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usbceip.dll
2017-09-09 19:08 - 2016-09-07 06:35 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2017-09-09 19:08 - 2016-09-07 06:32 - 000581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2017-09-09 19:08 - 2016-09-07 06:29 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2017-09-09 19:08 - 2016-09-07 06:29 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2017-09-09 19:08 - 2016-09-07 06:25 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-09-09 19:08 - 2016-09-07 06:15 - 000416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hnetcfg.dll
2017-09-09 19:08 - 2016-09-07 06:10 - 000438784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DbgModel.dll
2017-09-09 19:08 - 2016-08-03 07:33 - 000051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2017-09-09 19:08 - 2016-08-03 06:37 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-09-09 19:07 - 2017-07-30 02:24 - 001862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-09-09 19:07 - 2017-07-29 23:47 - 002945648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-09-09 19:07 - 2017-07-29 23:47 - 000703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-09-09 19:07 - 2017-07-29 23:26 - 000064584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-09-09 19:07 - 2017-07-29 22:26 - 000262496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-09-09 19:07 - 2017-07-29 22:26 - 000118368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2017-09-09 19:07 - 2017-07-29 22:19 - 000540280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-09-09 19:07 - 2017-07-29 22:19 - 000335248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-09-09 19:07 - 2017-07-29 22:18 - 000141664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-09-09 19:07 - 2017-07-29 19:21 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2017-09-09 19:07 - 2017-07-29 19:00 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2017-09-09 19:07 - 2017-07-29 18:55 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2017-09-09 19:07 - 2017-07-29 18:39 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2017-09-09 19:07 - 2017-07-29 18:34 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-09-09 19:07 - 2017-07-29 18:32 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-09-09 19:07 - 2017-07-29 18:29 - 000190976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-09-09 19:07 - 2017-07-29 18:27 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2017-09-09 19:07 - 2017-07-29 18:24 - 000541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-09-09 19:07 - 2017-07-29 18:19 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-09-09 19:07 - 2017-07-29 18:17 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-09-09 19:07 - 2017-07-29 18:00 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2017-09-09 19:07 - 2017-07-29 17:51 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-09-09 19:07 - 2017-07-29 17:34 - 001501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-09-09 19:07 - 2017-07-29 17:32 - 002881536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-09-09 19:07 - 2017-07-29 16:59 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-09-09 19:07 - 2017-07-29 16:15 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-09-09 19:07 - 2017-07-29 05:22 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2017-09-09 19:07 - 2017-07-29 05:22 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-09-09 19:07 - 2017-07-29 05:22 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2017-09-09 19:07 - 2017-07-29 05:22 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2017-09-09 19:07 - 2017-07-29 05:22 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2017-09-09 19:07 - 2017-07-07 10:57 - 000295776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-09-09 19:07 - 2017-07-07 10:35 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2017-09-09 19:07 - 2017-07-07 09:33 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2017-09-09 19:07 - 2017-07-07 09:21 - 000320000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2017-09-09 19:07 - 2017-07-07 09:08 - 000788992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-09-09 19:07 - 2017-07-07 09:07 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-09-09 19:07 - 2017-07-07 09:03 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-09-09 19:07 - 2017-07-07 08:59 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2017-09-09 19:07 - 2017-06-17 09:19 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-09-09 19:07 - 2017-06-17 08:53 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2017-09-09 19:07 - 2017-06-17 08:30 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2017-09-09 19:07 - 2017-06-03 13:44 - 021123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-09-09 19:07 - 2017-06-03 13:39 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-09-09 19:07 - 2017-06-03 13:14 - 000316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-09-09 19:07 - 2017-06-03 13:13 - 000546968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-09-09 19:07 - 2017-06-03 13:11 - 001368176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-09-09 19:07 - 2017-06-03 12:34 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-09-09 19:07 - 2017-06-03 12:32 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-09-09 19:07 - 2017-06-03 12:31 - 000037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-09-09 19:07 - 2017-06-03 12:20 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certenc.dll
2017-09-09 19:07 - 2017-06-03 11:49 - 001151488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2017-09-09 19:07 - 2017-06-03 11:34 - 001984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-09-09 19:07 - 2017-04-28 05:59 - 000602256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-09-09 19:07 - 2017-04-28 04:45 - 001536600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-09-09 19:07 - 2017-03-28 08:17 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-09-09 19:07 - 2017-03-28 08:12 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-09-09 19:07 - 2017-03-04 09:29 - 000535088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-09-09 19:07 - 2017-03-04 08:43 - 000306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2017-09-09 19:07 - 2017-03-04 08:29 - 000569752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-09-09 19:07 - 2017-03-04 08:25 - 000268040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2017-09-09 19:07 - 2017-03-04 07:57 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-09-09 19:07 - 2017-03-04 07:19 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2017-09-09 19:07 - 2017-03-04 07:15 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb
2017-09-09 19:07 - 2017-03-04 07:06 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2017-09-09 19:07 - 2017-03-04 07:06 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2017-09-09 19:07 - 2017-03-04 06:57 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\feclient.dll
2017-09-09 19:07 - 2017-03-04 06:55 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2017-09-09 19:07 - 2017-03-04 06:49 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2017-09-09 19:07 - 2017-03-04 06:48 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apds.dll
2017-09-09 19:07 - 2017-03-04 06:45 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2017-09-09 19:07 - 2017-03-04 06:45 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2017-09-09 19:07 - 2017-03-04 06:37 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-09-09 19:07 - 2017-03-04 06:33 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-09-09 19:07 - 2017-03-04 06:33 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2017-09-09 19:07 - 2017-03-04 06:32 - 000502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2017-09-09 19:07 - 2017-03-04 06:31 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2017-09-09 19:07 - 2017-03-04 06:26 - 001497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2017-09-09 19:07 - 2017-03-04 06:26 - 001467904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-09-09 19:07 - 2017-03-04 06:25 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-09-09 19:07 - 2017-03-04 06:24 - 000885248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-09-09 19:07 - 2017-03-04 06:22 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2017-09-09 19:07 - 2017-03-04 06:18 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2017-09-09 19:07 - 2017-03-04 06:14 - 000581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2017-09-09 19:07 - 2017-03-04 06:13 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qwave.dll
2017-09-09 19:07 - 2017-03-04 06:05 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Proximity.dll
2017-09-09 19:07 - 2017-03-04 06:03 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rshx32.dll
2017-09-09 19:07 - 2017-03-04 05:59 - 001626112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-09-09 19:07 - 2017-03-04 05:58 - 000871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2017-09-09 19:07 - 2017-03-04 05:57 - 001708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-09-09 19:07 - 2016-10-25 10:32 - 000845568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2017-09-09 19:07 - 2016-10-25 10:32 - 000034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2017-09-09 19:07 - 2016-10-25 10:28 - 001083648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2017-09-09 19:07 - 2016-10-25 09:27 - 000256704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2017-09-09 19:07 - 2016-10-25 09:26 - 001355344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2017-09-09 19:07 - 2016-10-25 09:22 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2017-09-09 19:07 - 2016-10-25 09:12 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2017-09-09 19:07 - 2016-10-25 08:54 - 000273760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2017-09-09 19:07 - 2016-10-25 08:09 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2017-09-09 19:07 - 2016-10-25 08:03 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SCardDlg.dll
2017-09-09 19:07 - 2016-10-25 08:01 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSMDesktopProvider.dll
2017-09-09 19:07 - 2016-10-25 07:50 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2017-09-09 19:07 - 2016-10-25 07:50 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2017-09-09 19:07 - 2016-10-25 07:50 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-09-09 19:07 - 2016-10-25 07:48 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2017-09-09 19:07 - 2016-10-25 07:45 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneOm.dll
2017-09-09 19:07 - 2016-10-25 07:44 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2017-09-09 19:07 - 2016-10-25 07:43 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\filemgmt.dll
2017-09-09 19:07 - 2016-10-25 07:42 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2017-09-09 19:07 - 2016-10-25 07:41 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2017-09-09 19:07 - 2016-10-25 07:39 - 000400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-09-09 19:07 - 2016-10-25 07:39 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certreq.exe
2017-09-09 19:07 - 2016-10-25 07:36 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll
2017-09-09 19:07 - 2016-10-25 07:33 - 000517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-09-09 19:07 - 2016-10-25 07:32 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2017-09-09 19:07 - 2016-10-25 07:32 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2017-09-09 19:07 - 2016-10-25 07:29 - 000673280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2017-09-09 19:07 - 2016-10-25 07:27 - 000799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2017-09-09 19:07 - 2016-10-25 07:25 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2017-09-09 19:07 - 2016-10-25 07:09 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2017-09-09 19:07 - 2016-10-25 06:59 - 002680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-09-09 19:07 - 2016-10-25 06:55 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnfldr.dll
2017-09-09 19:07 - 2016-10-25 06:34 - 001228800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2017-09-09 19:07 - 2016-10-25 06:23 - 000712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2017-09-09 19:07 - 2016-10-05 06:19 - 000717152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2017-09-09 19:07 - 2016-10-05 05:40 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2017-09-09 19:07 - 2016-10-05 05:37 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2017-09-09 19:07 - 2016-10-05 05:37 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-09-09 19:07 - 2016-10-05 05:24 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2017-09-09 19:07 - 2016-10-05 05:23 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2017-09-09 19:07 - 2016-09-07 07:39 - 000328520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2017-09-09 19:07 - 2016-09-07 07:39 - 000277848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-09-09 19:07 - 2016-09-07 07:33 - 002026736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2017-09-09 19:07 - 2016-09-07 07:24 - 000451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2017-09-09 19:07 - 2016-09-07 07:22 - 001085728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2017-09-09 19:07 - 2016-09-07 06:45 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-09-09 19:07 - 2016-09-07 06:39 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoipRT.dll
2017-09-09 19:07 - 2016-09-07 06:38 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2017-09-09 19:07 - 2016-09-07 06:38 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2017-09-09 19:07 - 2016-09-07 06:37 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2017-09-09 19:07 - 2016-09-07 06:37 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2017-09-09 19:07 - 2016-09-07 06:37 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2017-09-09 19:07 - 2016-09-07 06:37 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2017-09-09 19:07 - 2016-09-07 06:37 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2017-09-09 19:07 - 2016-09-07 06:36 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwcfg.dll
2017-09-09 19:07 - 2016-09-07 06:35 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2017-09-09 19:07 - 2016-09-07 06:35 - 000393216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wbemcomn.dll
2017-09-09 19:07 - 2016-09-07 06:35 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.ps.dll
2017-09-09 19:07 - 2016-09-07 06:35 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcshext.dll
2017-09-09 19:07 - 2016-09-07 06:35 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CheckNetIsolation.exe
2017-09-09 19:07 - 2016-09-07 06:34 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2017-09-09 19:07 - 2016-09-07 06:34 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcbase.dll
2017-09-09 19:07 - 2016-09-07 06:34 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cic.dll
2017-09-09 19:07 - 2016-09-07 06:33 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WmpDui.dll
2017-09-09 19:07 - 2016-09-07 06:33 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2017-09-09 19:07 - 2016-09-07 06:33 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2017-09-09 19:07 - 2016-09-07 06:31 - 001985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certmgr.dll
2017-09-09 19:07 - 2016-09-07 06:31 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-09-09 19:07 - 2016-09-07 06:31 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authfwcfg.dll
2017-09-09 19:07 - 2016-09-07 06:30 - 000576000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-09-09 19:07 - 2016-09-07 06:30 - 000436224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2017-09-09 19:07 - 2016-09-07 06:29 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2017-09-09 19:07 - 2016-09-07 06:28 - 000780800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2017-09-09 19:07 - 2016-09-07 06:28 - 000638976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000708608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comuid.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2017-09-09 19:07 - 2016-09-07 06:27 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2017-09-09 19:07 - 2016-09-07 06:26 - 001537536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2017-09-09 19:07 - 2016-09-07 06:26 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2017-09-09 19:07 - 2016-09-07 06:26 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2017-09-09 19:07 - 2016-09-07 06:26 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncutil.dll
2017-09-09 19:07 - 2016-09-07 06:25 - 001166848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Pimstore.dll
2017-09-09 19:07 - 2016-09-07 06:25 - 001139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2017-09-09 19:07 - 2016-09-07 06:25 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-09-09 19:07 - 2016-09-07 06:24 - 001276928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2017-09-09 19:07 - 2016-09-07 06:22 - 002106368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2017-09-09 19:07 - 2016-09-07 06:21 - 002527232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2017-09-09 19:07 - 2016-09-07 06:21 - 001063936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2017-09-09 19:07 - 2016-09-07 06:18 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2017-09-09 19:07 - 2016-09-07 06:16 - 001194496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-09-09 19:07 - 2016-09-07 06:16 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2017-09-09 19:07 - 2016-09-07 06:14 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2017-09-09 19:07 - 2016-09-07 06:10 - 000627200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2017-09-09 19:07 - 2016-09-07 06:09 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2017-09-09 19:07 - 2016-09-07 06:09 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msobjs.dll
2017-09-09 19:07 - 2016-08-03 12:22 - 000331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2017-09-09 19:07 - 2016-08-03 11:41 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2017-09-09 19:07 - 2016-08-03 11:40 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2017-09-09 19:07 - 2016-08-03 11:29 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2017-09-09 19:07 - 2016-08-03 07:34 - 000084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2017-09-09 19:07 - 2016-08-03 06:57 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2017-09-09 19:07 - 2016-08-03 06:48 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2017-09-09 19:07 - 2016-08-03 06:44 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2017-09-09 19:07 - 2016-08-03 06:44 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2017-09-09 19:07 - 2016-08-03 06:42 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2017-09-09 19:07 - 2016-08-03 06:35 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2017-09-09 19:07 - 2016-06-18 06:49 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2017-09-09 19:06 - 2017-07-30 01:59 - 000922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-09-09 19:06 - 2017-07-29 23:35 - 000465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-09-09 19:06 - 2017-07-29 18:47 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2017-09-09 19:06 - 2017-07-29 18:14 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-09-09 19:06 - 2017-07-29 18:09 - 000400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-09-09 19:06 - 2017-07-29 18:01 - 000760320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-09-09 19:06 - 2017-07-29 17:56 - 000667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-09-09 19:06 - 2017-07-29 17:39 - 004078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-09-09 19:06 - 2017-07-29 17:30 - 001984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-09-09 19:06 - 2017-07-29 17:06 - 006743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-09-09 19:06 - 2017-07-29 17:06 - 005327360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-09-09 19:06 - 2017-07-29 17:00 - 002604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-09-09 19:06 - 2017-07-29 16:50 - 002770432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-09-09 19:06 - 2017-07-29 12:28 - 003574272 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2017-09-09 19:06 - 2017-07-29 05:22 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2017-09-09 19:06 - 2017-07-07 11:16 - 000700880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-09-09 19:06 - 2017-07-07 08:34 - 004412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-09-09 19:06 - 2017-07-07 08:31 - 001557504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-09-09 19:06 - 2017-06-17 08:20 - 003695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-09-09 19:06 - 2017-06-17 08:15 - 002597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-09-09 19:06 - 2017-06-17 07:53 - 006296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-09-09 19:06 - 2017-06-17 07:35 - 004404736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-09-09 19:06 - 2017-06-03 12:40 - 000938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-09-09 19:06 - 2017-04-28 05:04 - 000881664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-09-09 19:06 - 2017-04-28 04:57 - 001813408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-09-09 19:06 - 2017-04-28 04:57 - 000959144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-09-09 19:06 - 2017-04-28 04:52 - 005240448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-09-09 19:06 - 2017-04-28 02:21 - 013018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-09-09 19:06 - 2017-03-28 09:53 - 006958304 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-09 19:06 - 2017-03-28 09:06 - 001522664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-09-09 19:06 - 2017-03-28 07:18 - 001542656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-09-09 19:06 - 2017-03-18 18:41 - 001799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-09-09 19:06 - 2017-03-04 09:12 - 000987488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-09-09 19:06 - 2017-03-04 08:41 - 002180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-09-09 19:06 - 2017-03-04 08:41 - 001118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-09-09 19:06 - 2017-03-04 08:41 - 000980352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-09-09 19:06 - 2017-03-04 08:41 - 000895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-09-09 19:06 - 2017-03-04 08:40 - 001349640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-09-09 19:06 - 2017-03-04 08:40 - 000925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-09-09 19:06 - 2017-03-04 08:40 - 000713824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-09-09 19:06 - 2017-03-04 08:29 - 004075184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-09-09 19:06 - 2017-03-04 08:29 - 000836752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-09-09 19:06 - 2017-03-04 07:58 - 002186864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2017-09-09 19:06 - 2017-03-04 07:41 - 002448752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-09-09 19:06 - 2017-03-04 07:41 - 000882208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2017-09-09 19:06 - 2017-03-04 07:40 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-09-09 19:06 - 2017-03-04 07:40 - 000467440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2017-09-09 19:06 - 2017-03-04 07:06 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2017-09-09 19:06 - 2017-03-04 07:04 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2017-09-09 19:06 - 2017-03-04 06:33 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2017-09-09 19:06 - 2017-03-04 06:33 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2017-09-09 19:06 - 2017-03-04 06:27 - 000854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-09-09 19:06 - 2017-03-04 06:25 - 001117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-09-09 19:06 - 2017-03-04 06:24 - 002578432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2017-09-09 19:06 - 2017-03-04 06:23 - 001944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-09-09 19:06 - 2017-03-04 06:08 - 001185280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll
2017-09-09 19:06 - 2017-03-04 06:07 - 000503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2017-09-09 19:06 - 2017-03-04 06:01 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanpref.dll
2017-09-09 19:06 - 2017-03-04 05:55 - 001860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2017-09-09 19:06 - 2017-03-04 05:52 - 002000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-09-09 19:06 - 2017-03-04 05:52 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-09-09 19:06 - 2017-03-04 05:51 - 009921024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-09-09 19:06 - 2017-03-04 05:44 - 005205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-09-09 19:06 - 2017-03-04 05:38 - 002519552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2017-09-09 19:06 - 2017-03-04 05:36 - 001582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-09-09 19:06 - 2017-03-04 05:35 - 002798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-09-09 19:06 - 2017-03-04 05:31 - 002155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2017-09-09 19:06 - 2017-03-04 05:31 - 002062336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-09-09 19:06 - 2017-03-04 05:30 - 001249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2017-09-09 19:06 - 2017-03-04 05:29 - 000573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2017-09-09 19:06 - 2016-11-22 10:49 - 002195640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-09-09 19:06 - 2016-11-22 10:47 - 001337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-09-09 19:06 - 2016-11-22 08:59 - 003671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2017-09-09 19:06 - 2016-10-25 11:34 - 000454496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2017-09-09 19:06 - 2016-10-25 10:32 - 001542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-09-09 19:06 - 2016-10-25 10:05 - 000712032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-09-09 19:06 - 2016-10-25 09:37 - 000709176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-09-09 19:06 - 2016-10-25 08:53 - 001174008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-09-09 19:06 - 2016-10-25 08:00 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2017-09-09 19:06 - 2016-10-25 07:49 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3ui.dll
2017-09-09 19:06 - 2016-10-25 07:45 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2017-09-09 19:06 - 2016-10-25 07:41 - 000589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2017-09-09 19:06 - 2016-10-25 07:40 - 001336832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2017-09-09 19:06 - 2016-10-25 07:37 - 004143104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2017-09-09 19:06 - 2016-10-25 07:37 - 001226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2017-09-09 19:06 - 2016-10-25 07:37 - 000846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-09-09 19:06 - 2016-10-25 07:36 - 000413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2017-09-09 19:06 - 2016-10-25 07:35 - 000585216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2017-09-09 19:06 - 2016-10-25 07:35 - 000552960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2017-09-09 19:06 - 2016-10-25 07:33 - 001063936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2017-09-09 19:06 - 2016-10-25 07:32 - 000738816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2017-09-09 19:06 - 2016-10-25 07:28 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2017-09-09 19:06 - 2016-10-25 07:27 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2017-09-09 19:06 - 2016-10-25 07:25 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2017-09-09 19:06 - 2016-10-25 07:23 - 002362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2017-09-09 19:06 - 2016-10-25 07:23 - 000964096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-09-09 19:06 - 2016-10-25 07:22 - 001562624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2017-09-09 19:06 - 2016-10-25 07:14 - 000683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-09-09 19:06 - 2016-10-25 07:11 - 006471168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-09-09 19:06 - 2016-10-25 07:11 - 000592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2017-09-09 19:06 - 2016-10-25 07:04 - 000835072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2017-09-09 19:06 - 2016-10-25 07:01 - 002361856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2017-09-09 19:06 - 2016-10-25 06:54 - 004759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-09-09 19:06 - 2016-10-25 06:45 - 002679808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2017-09-09 19:06 - 2016-10-25 06:44 - 000802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2017-09-09 19:06 - 2016-10-25 06:35 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2017-09-09 19:06 - 2016-10-25 06:33 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2017-09-09 19:06 - 2016-10-25 06:27 - 003065344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2017-09-09 19:06 - 2016-09-07 07:37 - 000572272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2017-09-09 19:06 - 2016-09-07 07:24 - 000652312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2017-09-09 19:06 - 2016-09-07 07:24 - 000511312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2017-09-09 19:06 - 2016-09-07 07:24 - 000501600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2017-09-09 19:06 - 2016-09-07 07:13 - 001865584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2017-09-09 19:06 - 2016-09-07 07:07 - 001951848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2017-09-09 19:06 - 2016-09-07 06:39 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Cortana.ProxyStub.dll
2017-09-09 19:06 - 2016-09-07 06:33 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2017-09-09 19:06 - 2016-09-07 06:33 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2017-09-09 19:06 - 2016-09-07 06:32 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2017-09-09 19:06 - 2016-09-07 06:32 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-09-09 19:06 - 2016-09-07 06:31 - 001094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-09-09 19:06 - 2016-09-07 06:31 - 000753664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2017-09-09 19:06 - 2016-09-07 06:30 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2017-09-09 19:06 - 2016-09-07 06:29 - 000785408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroles.dll
2017-09-09 19:06 - 2016-09-07 06:29 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2017-09-09 19:06 - 2016-09-07 06:29 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-09-09 19:06 - 2016-09-07 06:28 - 000674816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2017-09-09 19:06 - 2016-09-07 06:28 - 000654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc_ssp.dll
2017-09-09 19:06 - 2016-09-07 06:28 - 000296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysdm.cpl
2017-09-09 19:06 - 2016-09-07 06:28 - 000284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2017-09-09 19:06 - 2016-09-07 06:27 - 001139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2017-09-09 19:06 - 2016-09-07 06:27 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2017-09-09 19:06 - 2016-09-07 06:26 - 001915392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2017-09-09 19:06 - 2016-09-07 06:26 - 001508352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmsipc.dll
2017-09-09 19:06 - 2016-09-07 06:26 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2017-09-09 19:06 - 2016-09-07 06:25 - 001328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2017-09-09 19:06 - 2016-09-07 06:25 - 001105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2017-09-09 19:06 - 2016-09-07 06:24 - 000785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2017-09-09 19:06 - 2016-09-07 06:23 - 000980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc.dll
2017-09-09 19:06 - 2016-09-07 06:19 - 002102272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2017-09-09 19:06 - 2016-09-07 06:19 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2017-09-09 19:06 - 2016-09-07 06:16 - 001123328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-09-09 19:06 - 2016-09-07 06:16 - 000314880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-09-09 19:06 - 2016-09-07 06:13 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2017-09-09 19:06 - 2016-09-07 06:12 - 002632192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-09-09 19:06 - 2016-09-07 06:12 - 002180096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-09-09 19:06 - 2016-08-03 11:29 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-09-09 19:05 - 2017-07-29 18:42 - 000118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-09-09 19:05 - 2017-03-04 07:19 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2017-09-09 19:05 - 2016-10-25 08:50 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2017-09-09 19:05 - 2016-09-07 06:43 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2017-09-09 19:05 - 2016-09-07 06:42 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2017-09-09 19:05 - 2016-09-07 06:42 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2017-09-09 19:05 - 2016-09-07 06:41 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2017-09-09 19:05 - 2016-08-03 11:51 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2017-09-09 19:04 - 2017-07-29 17:33 - 000808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-09-09 19:04 - 2017-07-29 13:06 - 002573824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-09-09 19:04 - 2017-07-07 09:49 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-09-09 19:04 - 2017-07-07 09:48 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-09-09 19:04 - 2017-06-17 11:09 - 006536256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-09-09 19:04 - 2017-06-03 15:31 - 000989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-09-09 19:04 - 2017-06-03 13:42 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-09-09 19:04 - 2017-04-28 03:35 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-09-09 19:04 - 2017-04-28 03:35 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-09-09 19:04 - 2017-04-28 01:58 - 000821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2017-09-09 19:04 - 2017-04-28 01:53 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprtPS.dll
2017-09-09 19:04 - 2017-03-28 10:59 - 000262400 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2017-09-09 19:04 - 2017-03-04 07:59 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-09-09 19:04 - 2017-03-04 07:37 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-09-09 19:04 - 2017-03-04 07:11 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2017-09-09 19:04 - 2017-03-04 07:04 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-09-09 19:04 - 2017-03-04 05:20 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2017-09-09 19:04 - 2016-10-25 11:18 - 000026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-09-09 19:04 - 2016-10-25 09:26 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-09-09 19:04 - 2016-10-25 09:14 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-09-09 19:04 - 2016-10-25 09:12 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\racpldlg.dll
2017-09-09 19:04 - 2016-10-25 09:10 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceClassExtension.dll
2017-09-09 19:04 - 2016-10-25 09:06 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceConnectApi.dll
2017-09-09 19:04 - 2016-10-25 08:59 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-09-09 19:04 - 2016-10-25 08:48 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceApi.dll
2017-09-09 19:04 - 2016-10-25 08:37 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2017-09-09 19:04 - 2016-10-25 08:00 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceClassExtension.dll
2017-09-09 19:04 - 2016-10-25 07:56 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceConnectApi.dll
2017-09-09 19:04 - 2016-10-25 07:43 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceApi.dll
2017-09-09 19:04 - 2016-10-25 06:51 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2017-09-09 19:04 - 2016-10-05 06:50 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2017-09-09 19:04 - 2016-10-05 06:29 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2017-09-09 19:04 - 2016-10-05 06:00 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2017-09-09 19:04 - 2016-09-07 06:53 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2017-09-09 19:04 - 2016-09-07 06:49 - 000649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-09-09 19:04 - 2016-09-07 06:41 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwcfg.dll
2017-09-09 19:04 - 2016-09-07 06:40 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbemcomn.dll
2017-09-09 19:04 - 2016-09-07 06:40 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CheckNetIsolation.exe
2017-09-09 19:04 - 2016-09-07 06:38 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2017-09-09 19:04 - 2016-09-07 06:37 - 000373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2017-09-09 19:04 - 2016-09-07 06:36 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\authfwcfg.dll
2017-09-09 19:04 - 2016-09-07 06:34 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-09-09 19:04 - 2016-09-07 06:34 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\filemgmt.dll
2017-09-09 19:04 - 2016-09-07 06:34 - 000507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2017-09-09 19:04 - 2016-09-07 06:32 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2017-09-09 19:04 - 2016-09-07 06:31 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-09-09 19:04 - 2016-09-07 06:21 - 000620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2017-09-09 19:04 - 2016-09-07 06:10 - 001035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-09-09 19:04 - 2016-08-03 12:22 - 000058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2017-09-09 19:04 - 2016-08-03 11:40 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2017-09-09 19:04 - 2016-08-03 11:33 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2017-09-09 19:04 - 2016-08-03 11:28 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-09-09 19:03 - 2017-07-29 20:41 - 000994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-09-09 19:03 - 2017-07-29 16:21 - 002403160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-09-09 19:03 - 2017-07-29 13:37 - 000865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-09 19:03 - 2017-07-29 13:06 - 002279936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-09-09 19:03 - 2017-07-29 12:25 - 007536128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-09-09 19:03 - 2017-07-29 12:13 - 002911744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-09-09 19:03 - 2017-04-28 04:16 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-09-09 19:03 - 2017-04-28 04:06 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-09-09 19:03 - 2017-04-28 03:59 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-09-09 19:03 - 2017-04-28 03:58 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-09-09 19:03 - 2017-04-28 03:19 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-09-09 19:03 - 2017-03-04 09:18 - 001554152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2017-09-09 19:03 - 2017-03-04 09:18 - 001552104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-09-09 19:03 - 2017-03-04 09:07 - 001040792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-09-09 19:03 - 2017-03-04 06:41 - 001490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2017-09-09 19:03 - 2017-03-04 05:19 - 001487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-09-09 19:03 - 2016-10-25 08:52 - 000577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-09-09 19:03 - 2016-10-25 08:49 - 000790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-09-09 19:03 - 2016-10-25 08:49 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2017-09-09 19:03 - 2016-10-25 08:43 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2017-09-09 19:03 - 2016-10-25 08:38 - 002088960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2017-09-09 19:03 - 2016-10-25 08:38 - 001048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2017-09-09 19:03 - 2016-10-25 08:37 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2017-09-09 19:03 - 2016-10-25 08:28 - 000938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2017-09-09 19:03 - 2016-10-25 08:27 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Pimstore.dll
2017-09-09 19:03 - 2016-10-25 08:05 - 001213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2017-09-09 19:03 - 2016-10-25 08:05 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2017-09-09 19:03 - 2016-10-25 07:36 - 004646400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2017-09-09 19:03 - 2016-10-25 07:36 - 000879616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2017-09-09 19:03 - 2016-10-25 06:53 - 003294208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2017-09-09 19:03 - 2016-10-25 06:52 - 003555840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2017-09-09 19:03 - 2016-09-07 07:36 - 000405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2017-09-09 19:03 - 2016-09-07 06:38 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Geolocation.dll
2017-09-09 19:03 - 2016-09-07 06:37 - 000617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-09-09 19:03 - 2016-09-07 06:28 - 000673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-09-09 19:03 - 2016-09-07 06:23 - 000918016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2017-09-09 19:03 - 2016-09-07 06:17 - 001526784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-09-09 19:03 - 2016-09-07 06:11 - 003053568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-09-09 19:03 - 2016-08-03 12:22 - 000465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-09-09 19:02 - 2017-07-07 13:07 - 000100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-09-09 19:02 - 2017-04-28 06:30 - 000800080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-09-09 19:02 - 2017-03-04 07:29 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2017-09-09 19:02 - 2017-03-04 07:11 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2017-09-09 19:02 - 2017-03-04 07:09 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2017-09-09 19:02 - 2017-03-04 06:49 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2017-09-09 19:02 - 2017-03-04 06:35 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2017-09-09 19:02 - 2016-10-25 09:47 - 028851216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2017-09-09 19:02 - 2016-10-25 09:33 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\genericusbfn.sys
2017-09-09 19:02 - 2016-10-25 08:50 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2017-09-09 19:02 - 2016-09-07 07:08 - 028083144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2017-09-09 19:02 - 2016-09-07 06:19 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-09-09 19:02 - 2016-08-03 12:23 - 000115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2017-09-09 19:01 - 2017-07-29 18:46 - 000129888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-09-09 19:01 - 2017-07-07 10:28 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2017-09-09 19:01 - 2017-06-17 11:12 - 022560744 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-09-09 19:01 - 2017-06-17 09:58 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-09-09 19:01 - 2017-03-28 09:42 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-09-09 19:01 - 2017-03-04 09:48 - 001297760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-09-09 19:01 - 2017-03-04 09:19 - 000586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2017-09-09 19:01 - 2017-03-04 08:09 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2017-09-09 19:01 - 2017-03-04 08:03 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2017-09-09 19:01 - 2017-03-04 07:59 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2017-09-09 19:01 - 2017-03-04 07:52 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2017-09-09 19:01 - 2017-03-04 07:49 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2017-09-09 19:01 - 2017-03-04 07:47 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2017-09-09 19:01 - 2017-03-04 07:44 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2017-09-09 19:01 - 2017-03-04 07:41 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2017-09-09 19:01 - 2017-03-04 07:34 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2017-09-09 19:01 - 2017-03-04 07:31 - 000185856 _____ C:\WINDOWS\system32\ism32k.dll
2017-09-09 19:01 - 2017-03-04 07:29 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2017-09-09 19:01 - 2017-03-04 07:27 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-09-09 19:01 - 2017-03-04 07:25 - 000296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-09-09 19:01 - 2017-03-04 07:25 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2017-09-09 19:01 - 2017-03-04 07:20 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2017-09-09 19:01 - 2017-03-04 07:15 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-09-09 19:01 - 2017-03-04 07:08 - 000852992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-09-09 19:01 - 2017-03-04 07:03 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2017-09-09 19:01 - 2017-03-04 07:02 - 000939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2017-09-09 19:01 - 2017-03-04 06:41 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwave.dll
2017-09-09 19:01 - 2017-03-04 06:24 - 000931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2017-09-09 19:01 - 2016-10-25 10:48 - 000847648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-09-09 19:01 - 2016-10-25 08:51 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2017-09-09 19:01 - 2016-10-25 07:55 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-09-09 19:01 - 2016-10-25 06:48 - 000958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2017-09-09 19:01 - 2016-09-07 07:39 - 000175120 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2017-09-09 19:01 - 2016-09-07 07:26 - 000693592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2017-09-09 19:01 - 2016-09-07 07:11 - 000057912 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-09-09 19:01 - 2016-09-07 06:42 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2017-09-09 19:01 - 2016-09-07 06:42 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2017-09-09 19:01 - 2016-09-07 06:41 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2017-09-09 19:01 - 2016-09-07 06:40 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcshext.dll
2017-09-09 19:01 - 2016-09-07 06:39 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2017-09-09 19:01 - 2016-09-07 06:38 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2017-09-09 19:01 - 2016-09-07 06:38 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2017-09-09 19:01 - 2016-09-07 06:36 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2017-09-09 19:01 - 2016-09-07 06:33 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2017-09-09 19:01 - 2016-09-07 06:33 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2017-09-09 19:01 - 2016-09-07 06:32 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc_ssp.dll
2017-09-09 19:01 - 2016-09-07 06:32 - 000643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2017-09-09 19:01 - 2016-09-07 06:31 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2017-09-09 19:01 - 2016-09-07 06:30 - 001500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-09-09 19:01 - 2016-09-07 06:30 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2017-09-09 19:01 - 2016-09-07 06:27 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2017-09-09 19:01 - 2016-09-07 06:25 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-09 19:01 - 2016-09-07 06:25 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2017-09-09 19:01 - 2016-09-07 06:19 - 001141248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2017-09-09 19:01 - 2016-09-07 06:11 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2017-09-09 19:01 - 2016-08-03 11:36 - 000211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2017-09-09 19:00 - 2017-07-29 19:44 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-09-09 19:00 - 2017-07-29 16:18 - 000388888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-09-09 19:00 - 2017-07-29 15:26 - 000824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-09 19:00 - 2017-07-29 14:37 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-09-09 19:00 - 2017-07-29 14:01 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-09-09 19:00 - 2017-07-29 13:15 - 005123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-09-09 19:00 - 2017-07-29 12:56 - 002876928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2017-09-09 19:00 - 2017-07-29 12:38 - 000957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-09-09 19:00 - 2017-07-07 12:51 - 000465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-09-09 19:00 - 2017-07-07 12:11 - 000858992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-09-09 19:00 - 2017-06-17 08:12 - 007977984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-09-09 19:00 - 2017-06-03 14:57 - 000245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-09-09 19:00 - 2017-06-03 12:43 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-09-09 19:00 - 2017-06-03 12:16 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-09-09 19:00 - 2017-04-28 06:30 - 001997840 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-09-09 19:00 - 2017-04-28 05:59 - 001558280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-09-09 19:00 - 2017-04-28 05:38 - 001060432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-09-09 19:00 - 2017-04-28 05:27 - 006604992 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-09-09 19:00 - 2017-04-28 01:57 - 004171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-09-09 19:00 - 2017-03-28 11:18 - 008710320 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-09 19:00 - 2017-03-04 09:19 - 001299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-09-09 19:00 - 2017-03-04 09:19 - 000498952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2017-09-09 19:00 - 2017-03-04 09:18 - 002544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-09-09 19:00 - 2017-03-04 09:18 - 001152328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-09-09 19:00 - 2017-03-04 09:18 - 001092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-09-09 19:00 - 2017-03-04 09:18 - 001017032 _____ (Microsoft Corporation)

Awadu03 · 14.09.2017, 16:13

Code:

ATTFilter

 C:\WINDOWS\system32\mfsrcsnk.dll
2017-09-09 19:00 - 2017-03-04 09:18 - 000819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-09-09 19:00 - 2017-03-04 07:33 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2017-09-09 19:00 - 2017-03-04 07:25 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2017-09-09 19:00 - 2017-03-04 07:23 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-09-09 19:00 - 2017-03-04 07:19 - 000510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2017-09-09 19:00 - 2017-03-04 07:19 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-09-09 19:00 - 2017-03-04 07:17 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2017-09-09 19:00 - 2017-03-04 07:16 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-09-09 19:00 - 2017-03-04 07:08 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2017-09-09 19:00 - 2017-03-04 07:08 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2017-09-09 19:00 - 2017-03-04 07:04 - 000697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2017-09-09 19:00 - 2017-03-04 07:03 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2017-09-09 19:00 - 2017-03-04 07:02 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2017-09-09 19:00 - 2017-03-04 06:53 - 002624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-09-09 19:00 - 2017-03-04 06:25 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanpref.dll
2017-09-09 19:00 - 2017-03-04 06:00 - 007200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-09-09 19:00 - 2017-03-04 05:59 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2017-09-09 19:00 - 2017-03-04 05:36 - 003428352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-09-09 19:00 - 2017-03-04 05:36 - 001385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2017-09-09 19:00 - 2017-03-04 05:34 - 002582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-09-09 19:00 - 2017-03-04 05:28 - 014258688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-09-09 19:00 - 2017-03-04 05:26 - 012590080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-09-09 19:00 - 2016-11-22 09:57 - 003351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2017-09-09 19:00 - 2016-10-25 10:49 - 000588328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll
2017-09-09 19:00 - 2016-10-25 10:39 - 001750440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2017-09-09 19:00 - 2016-10-25 09:47 - 002641928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2017-09-09 19:00 - 2016-10-25 09:47 - 000305808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2017-09-09 19:00 - 2016-10-25 08:53 - 000813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2017-09-09 19:00 - 2016-10-25 08:46 - 000857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2017-09-09 19:00 - 2016-10-25 08:42 - 000517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-09-09 19:00 - 2016-10-25 08:41 - 001294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2017-09-09 19:00 - 2016-10-25 08:41 - 000589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2017-09-09 19:00 - 2016-10-25 08:40 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2017-09-09 19:00 - 2016-10-25 08:40 - 001216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2017-09-09 19:00 - 2016-10-25 08:40 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-09-09 19:00 - 2016-10-25 08:40 - 000253088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2017-09-09 19:00 - 2016-10-25 08:39 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2017-09-09 19:00 - 2016-10-25 08:38 - 000610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmsdk.dll
2017-09-09 19:00 - 2016-10-25 08:35 - 001434112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-09-09 19:00 - 2016-10-25 08:35 - 000859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-09-09 19:00 - 2016-10-25 08:29 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-09-09 19:00 - 2016-10-25 08:27 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2017-09-09 19:00 - 2016-10-25 08:27 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2017-09-09 19:00 - 2016-10-25 08:16 - 001965568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2017-09-09 19:00 - 2016-10-25 08:07 - 000900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-09-09 19:00 - 2016-10-25 08:03 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-09-09 19:00 - 2016-10-25 07:57 - 002285568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2017-09-09 19:00 - 2016-10-25 07:46 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnfldr.dll
2017-09-09 19:00 - 2016-10-25 07:35 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmsdk.dll
2017-09-09 19:00 - 2016-10-25 07:28 - 001186816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2017-09-09 19:00 - 2016-10-25 07:25 - 000688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-09-09 19:00 - 2016-10-25 07:23 - 002295808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2017-09-09 19:00 - 2016-10-25 06:55 - 002217984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2017-09-09 19:00 - 2016-10-25 06:53 - 000583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2017-09-09 19:00 - 2016-10-25 06:52 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-09-09 19:00 - 2016-10-25 06:29 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2017-09-09 19:00 - 2016-10-05 06:38 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2017-09-09 19:00 - 2016-10-05 06:35 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2017-09-09 19:00 - 2016-10-05 05:30 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2017-09-09 19:00 - 2016-10-05 05:28 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2017-09-09 19:00 - 2016-09-07 07:26 - 000131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2017-09-09 19:00 - 2016-09-07 07:24 - 000496360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmdev.dll
2017-09-09 19:00 - 2016-09-07 06:42 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2017-09-09 19:00 - 2016-09-07 06:39 - 009324032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2017-09-09 19:00 - 2016-09-07 06:38 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2017-09-09 19:00 - 2016-09-07 06:35 - 009324032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2017-09-09 19:00 - 2016-09-07 06:33 - 000576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-09-09 19:00 - 2016-09-07 06:32 - 004213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2017-09-09 19:00 - 2016-09-07 06:32 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2017-09-09 19:00 - 2016-09-07 06:31 - 000970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2017-09-09 19:00 - 2016-09-07 06:30 - 002012672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2017-09-09 19:00 - 2016-09-07 06:29 - 000888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-09-09 19:00 - 2016-09-07 06:29 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-09-09 19:00 - 2016-09-07 06:28 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-09-09 19:00 - 2016-09-07 06:28 - 000645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-09-09 19:00 - 2016-09-07 06:27 - 001131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-09-09 19:00 - 2016-09-07 06:21 - 001410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-09-09 18:59 - 2017-07-29 18:58 - 000384864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-09-09 18:59 - 2017-07-29 17:21 - 000161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2017-09-09 18:59 - 2017-07-29 14:16 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-09-09 18:59 - 2017-06-17 09:50 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-09-09 18:59 - 2017-06-17 09:31 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-09-09 18:59 - 2017-06-17 09:20 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2017-09-09 18:59 - 2017-04-28 05:31 - 000026464 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-09-09 18:59 - 2017-04-28 03:55 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-09-09 18:59 - 2017-04-28 03:53 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-09-09 18:59 - 2017-04-28 03:15 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-09-09 18:59 - 2017-04-28 03:13 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-09-09 18:59 - 2017-03-28 09:35 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-09-09 18:59 - 2017-03-04 10:09 - 000610632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-09-09 18:59 - 2017-03-04 07:58 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2017-09-09 18:59 - 2017-03-04 07:39 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabbtnEx.dll
2017-09-09 18:59 - 2017-03-04 07:26 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2017-09-09 18:59 - 2017-03-04 07:03 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2017-09-09 18:59 - 2017-03-04 06:58 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2017-09-09 18:59 - 2017-03-04 06:03 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Tabbtn.dll
2017-09-09 18:59 - 2016-10-25 09:21 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2017-09-09 18:59 - 2016-10-25 08:55 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2017-09-09 18:59 - 2016-10-25 08:03 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-09-09 18:59 - 2016-09-07 07:19 - 000360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-09-09 18:59 - 2016-09-07 06:35 - 000591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-09-09 18:58 - 2017-07-29 20:31 - 002656960 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-09 18:58 - 2017-07-29 18:45 - 000395184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-09-09 18:58 - 2017-07-29 18:31 - 000307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-09-09 18:58 - 2017-07-29 18:08 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-09-09 18:58 - 2017-07-29 18:01 - 001526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-09-09 18:58 - 2017-07-29 17:33 - 003699280 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-09-09 18:58 - 2017-07-29 15:09 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-09-09 18:58 - 2017-07-29 14:41 - 000523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-09-09 18:58 - 2017-07-29 14:31 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-09-09 18:58 - 2017-07-29 14:27 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-09-09 18:58 - 2017-07-29 14:22 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-09-09 18:58 - 2017-07-29 14:05 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2017-09-09 18:58 - 2017-07-29 13:51 - 000784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-09-09 18:58 - 2017-07-29 13:43 - 000325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-09-09 18:58 - 2017-07-29 13:42 - 001752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-09-09 18:58 - 2017-07-29 13:41 - 000961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2017-09-09 18:58 - 2017-07-29 13:30 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-09-09 18:58 - 2017-07-29 13:09 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-09-09 18:58 - 2017-07-07 11:52 - 000360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-09-09 18:58 - 2017-07-07 11:21 - 000216416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-09-09 18:58 - 2017-07-07 10:13 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-09-09 18:58 - 2017-07-07 09:58 - 000967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-09-09 18:58 - 2017-06-17 09:02 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2017-09-09 18:58 - 2017-06-11 17:10 - 000448629 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-09-09 18:58 - 2017-06-03 13:57 - 000335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-09-09 18:58 - 2017-06-03 13:57 - 000034656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-09-09 18:58 - 2017-06-03 12:06 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-09-09 18:58 - 2017-04-28 06:30 - 001098640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-09-09 18:58 - 2017-04-28 04:15 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-09-09 18:58 - 2017-04-28 04:05 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-09-09 18:58 - 2017-04-28 03:55 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-09-09 18:58 - 2017-04-28 03:54 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2017-09-09 18:58 - 2017-04-28 03:46 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-09-09 18:58 - 2017-04-28 03:32 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-09-09 18:58 - 2017-04-28 03:31 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-09-09 18:58 - 2017-04-28 03:28 - 000905728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-09-09 18:58 - 2017-04-28 03:15 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-09-09 18:58 - 2017-04-28 03:07 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-09-09 18:58 - 2017-04-28 02:56 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-09-09 18:58 - 2017-03-28 12:12 - 000061792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-09-09 18:58 - 2017-03-28 10:28 - 001777792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-09-09 18:58 - 2017-03-04 10:04 - 000687496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-09-09 18:58 - 2017-03-04 09:20 - 000118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2017-09-09 18:58 - 2017-03-04 07:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2017-09-09 18:58 - 2017-03-04 07:49 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2017-09-09 18:58 - 2017-03-04 07:42 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-09-09 18:58 - 2017-03-04 07:28 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\apds.dll
2017-09-09 18:58 - 2017-03-04 07:26 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-09-09 18:58 - 2017-03-04 07:25 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinFax.dll
2017-09-09 18:58 - 2017-03-04 07:22 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-09-09 18:58 - 2017-03-04 07:19 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2017-09-09 18:58 - 2017-03-04 07:16 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2017-09-09 18:58 - 2017-03-04 07:10 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2017-09-09 18:58 - 2017-03-04 07:09 - 000708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-09-09 18:58 - 2017-03-04 07:08 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2017-09-09 18:58 - 2017-03-04 07:08 - 000821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2017-09-09 18:58 - 2017-03-04 07:08 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2017-09-09 18:58 - 2017-03-04 07:05 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-09-09 18:58 - 2017-03-04 07:00 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-09-09 18:58 - 2017-03-04 06:54 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2017-09-09 18:58 - 2017-03-04 06:46 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-09-09 18:58 - 2017-03-04 06:46 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinFax.dll
2017-09-09 18:58 - 2017-03-04 06:31 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2017-09-09 18:58 - 2017-03-04 06:24 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-09-09 18:58 - 2017-03-04 06:10 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2017-09-09 18:58 - 2017-03-04 06:04 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-09-09 18:58 - 2017-03-04 05:55 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-09-09 18:58 - 2016-11-22 12:36 - 000159640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2017-09-09 18:58 - 2016-10-25 11:42 - 000125280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2017-09-09 18:58 - 2016-10-25 10:51 - 000538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2017-09-09 18:58 - 2016-10-25 09:45 - 000503600 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2017-09-09 18:58 - 2016-10-25 09:24 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2017-09-09 18:58 - 2016-10-25 09:12 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2017-09-09 18:58 - 2016-10-25 08:56 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2017-09-09 18:58 - 2016-10-25 08:56 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2017-09-09 18:58 - 2016-10-25 08:53 - 000318976 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-09-09 18:58 - 2016-10-25 08:53 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2017-09-09 18:58 - 2016-10-25 08:52 - 000704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2017-09-09 18:58 - 2016-10-25 08:51 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2017-09-09 18:58 - 2016-10-25 08:50 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneOm.dll
2017-09-09 18:58 - 2016-10-25 08:49 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2017-09-09 18:58 - 2016-10-25 08:48 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-09-09 18:58 - 2016-10-25 08:43 - 000606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-09-09 18:58 - 2016-10-25 08:42 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2017-09-09 18:58 - 2016-10-25 08:40 - 000607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2017-09-09 18:58 - 2016-10-25 08:40 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2017-09-09 18:58 - 2016-10-25 08:40 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2017-09-09 18:58 - 2016-10-25 08:38 - 000588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2017-09-09 18:58 - 2016-10-25 08:35 - 001132544 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2017-09-09 18:58 - 2016-10-25 08:34 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-09-09 18:58 - 2016-10-25 04:19 - 000775336 _____ C:\WINDOWS\SysWOW64\locale.nls
2017-09-09 18:58 - 2016-10-25 04:19 - 000775336 _____ C:\WINDOWS\system32\locale.nls
2017-09-09 18:58 - 2016-09-07 07:39 - 000428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-09-09 18:58 - 2016-09-07 07:27 - 000413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2017-09-09 18:58 - 2016-09-07 07:25 - 001447776 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2017-09-09 18:58 - 2016-09-07 07:15 - 000911640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2017-09-09 18:58 - 2016-09-07 06:44 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2017-09-09 18:58 - 2016-09-07 06:44 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoipRT.dll
2017-09-09 18:58 - 2016-09-07 06:44 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2017-09-09 18:58 - 2016-09-07 06:44 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2017-09-09 18:58 - 2016-09-07 06:43 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2017-09-09 18:58 - 2016-09-07 06:41 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2017-09-09 18:58 - 2016-09-07 06:38 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-09-09 18:58 - 2016-09-07 06:37 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2017-09-09 18:58 - 2016-09-07 06:37 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2017-09-09 18:58 - 2016-09-07 06:37 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2017-09-09 18:58 - 2016-09-07 06:36 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2017-09-09 18:58 - 2016-09-07 06:36 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2017-09-09 18:58 - 2016-09-07 06:34 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2017-09-09 18:58 - 2016-09-07 06:34 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-09-09 18:58 - 2016-09-07 06:33 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2017-09-09 18:58 - 2016-09-07 06:32 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2017-09-09 18:58 - 2016-09-07 06:31 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll
2017-09-09 18:58 - 2016-09-07 06:31 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2017-09-09 18:58 - 2016-09-07 06:31 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2017-09-09 18:58 - 2016-09-07 06:30 - 001707520 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-09-09 18:58 - 2016-09-07 06:30 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2017-09-09 18:58 - 2016-09-07 06:30 - 000607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx.dll
2017-09-09 18:58 - 2016-09-07 06:28 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2017-09-09 18:58 - 2016-09-07 06:23 - 000838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2017-09-09 18:58 - 2016-09-07 06:20 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetcfg.dll
2017-09-09 18:58 - 2016-09-07 06:09 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2017-09-09 18:58 - 2016-08-03 11:44 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2017-09-09 18:58 - 2016-08-03 11:39 - 000104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-09-09 18:58 - 2016-08-03 11:31 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2017-09-09 18:58 - 2016-06-18 06:55 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2017-09-09 18:58 - 2016-06-18 06:51 - 000470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-09-09 18:57 - 2017-07-29 20:03 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-09-09 18:57 - 2017-07-29 18:59 - 007463264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-09-09 18:57 - 2017-07-29 18:41 - 001637216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-09-09 18:57 - 2017-07-29 17:20 - 000609056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-09-09 18:57 - 2017-07-29 17:11 - 012139008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-09-09 18:57 - 2017-07-29 17:07 - 003661824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-09-09 18:57 - 2017-07-29 17:03 - 019345408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-09-09 18:57 - 2017-07-29 17:03 - 018672640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-09-09 18:57 - 2017-07-29 16:49 - 005662208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-09-09 18:57 - 2017-07-29 16:21 - 001089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2017-09-09 18:57 - 2017-07-29 14:19 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-09-09 18:57 - 2017-07-29 13:41 - 001292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-09-09 18:57 - 2017-07-29 13:39 - 001872896 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-09-09 18:57 - 2017-07-29 13:37 - 001742848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-09-09 18:57 - 2017-07-29 13:02 - 003405312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-09-09 18:57 - 2017-07-29 12:38 - 022376960 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-09-09 18:57 - 2017-07-29 12:38 - 013394432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-09-09 18:57 - 2017-07-29 12:22 - 024605696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-09-09 18:57 - 2017-07-29 12:05 - 007843840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-09-09 18:57 - 2017-07-07 13:04 - 002149216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-09-09 18:57 - 2017-07-07 09:56 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-09-09 18:57 - 2017-07-07 09:51 - 001900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-09-09 18:57 - 2017-07-07 09:45 - 001424384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2017-09-09 18:57 - 2017-07-07 09:10 - 002055680 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-09-09 18:57 - 2017-07-07 08:44 - 016985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-09 18:57 - 2017-06-17 11:52 - 003449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2017-09-09 18:57 - 2017-06-17 07:34 - 006312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-09-09 18:57 - 2017-06-03 13:40 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-09-09 18:57 - 2017-06-03 12:40 - 001648128 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-09-09 18:57 - 2017-06-03 12:26 - 002433536 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-09-09 18:57 - 2017-04-28 05:32 - 002608912 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-09-09 18:57 - 2017-04-28 05:32 - 001323272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-09-09 18:57 - 2017-04-28 05:20 - 001848584 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-09-09 18:57 - 2017-04-28 04:11 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2017-09-09 18:57 - 2017-04-28 03:29 - 002127872 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-09-09 18:57 - 2017-04-28 02:54 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-09-09 18:57 - 2017-04-28 02:27 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-09-09 18:57 - 2017-03-04 08:27 - 000431456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2017-09-09 18:57 - 2017-03-04 08:24 - 000420704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-09-09 18:57 - 2017-03-04 08:16 - 002831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-09-09 18:57 - 2017-03-04 08:16 - 001062992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2017-09-09 18:57 - 2017-03-04 08:15 - 000549088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2017-09-09 18:57 - 2017-03-04 08:15 - 000521192 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-09-09 18:57 - 2017-03-04 07:23 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-09-09 18:57 - 2017-03-04 07:00 - 001239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-09-09 18:57 - 2017-03-04 06:59 - 001847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2017-09-09 18:57 - 2017-03-04 06:59 - 001213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-09-09 18:57 - 2017-03-04 06:57 - 001040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-09-09 18:57 - 2017-03-04 06:55 - 001319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2017-09-09 18:57 - 2017-03-04 06:54 - 000549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2017-09-09 18:57 - 2017-03-04 06:50 - 002054144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-09-09 18:57 - 2017-03-04 06:33 - 001534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-09-09 18:57 - 2017-03-04 06:24 - 001946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-09-09 18:57 - 2017-03-04 06:13 - 002843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2017-09-09 18:57 - 2017-03-04 06:11 - 002444800 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-09-09 18:57 - 2016-10-25 11:41 - 001819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-09-09 18:57 - 2016-10-25 10:50 - 000439136 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2017-09-09 18:57 - 2016-10-25 09:31 - 000299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2017-09-09 18:57 - 2016-10-25 09:10 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2017-09-09 18:57 - 2016-10-25 09:08 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2017-09-09 18:57 - 2016-10-25 08:57 - 006572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2017-09-09 18:57 - 2016-10-25 08:55 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2017-09-09 18:57 - 2016-10-25 08:52 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-09-09 18:57 - 2016-10-25 08:51 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2017-09-09 18:57 - 2016-10-25 08:46 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2017-09-09 18:57 - 2016-10-25 08:42 - 001813504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2017-09-09 18:57 - 2016-10-25 08:41 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-09-09 18:57 - 2016-10-25 08:36 - 000965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-09-09 18:57 - 2016-10-25 08:26 - 002103296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-09-09 18:57 - 2016-10-25 07:28 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2017-09-09 18:57 - 2016-10-05 06:17 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2017-09-09 18:57 - 2016-09-07 07:34 - 002587696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-09-09 18:57 - 2016-09-07 07:26 - 000785088 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2017-09-09 18:57 - 2016-09-07 07:25 - 001270064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2017-09-09 18:57 - 2016-09-07 07:22 - 000431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2017-09-09 18:57 - 2016-09-07 07:11 - 002187408 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2017-09-09 18:57 - 2016-09-07 06:44 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2017-09-09 18:57 - 2016-09-07 06:37 - 000846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsecsnp.dll
2017-09-09 18:57 - 2016-09-07 06:37 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2017-09-09 18:57 - 2016-09-07 06:36 - 001568768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdt.exe
2017-09-09 18:57 - 2016-09-07 06:36 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagCpl.dll
2017-09-09 18:57 - 2016-09-07 06:36 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-09-09 18:57 - 2016-09-07 06:34 - 000952320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-09-09 18:57 - 2016-09-07 06:33 - 000948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-09-09 18:57 - 2016-09-07 06:33 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-09-09 18:57 - 2016-09-07 06:31 - 000588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2017-09-09 18:57 - 2016-09-07 06:30 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2017-09-09 18:57 - 2016-09-07 06:21 - 003046400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2017-09-09 18:57 - 2016-09-07 06:18 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-09-09 18:57 - 2016-09-07 06:16 - 002746368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-09-09 18:57 - 2016-09-07 06:16 - 001676800 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-09-09 18:57 - 2016-09-07 06:09 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2017-09-09 18:57 - 2016-09-07 06:09 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msobjs.dll
2017-09-09 18:57 - 2016-08-03 11:41 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-09-09 18:57 - 2016-08-03 11:41 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-09-09 18:56 - 2017-07-29 14:37 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2017-09-09 18:56 - 2017-07-29 14:28 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-09-09 18:56 - 2017-07-29 12:13 - 004890624 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-09-09 18:56 - 2017-07-07 10:19 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-09-09 18:56 - 2017-06-17 09:41 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-09 18:56 - 2017-06-17 09:03 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-09-09 18:56 - 2017-06-03 15:51 - 000129376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-09-09 18:56 - 2017-03-28 12:19 - 000202480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2017-09-09 18:56 - 2017-03-04 07:49 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2017-09-09 18:56 - 2017-03-04 07:48 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2017-09-09 18:56 - 2017-03-04 06:58 - 001717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-09-09 18:56 - 2017-03-04 06:27 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2017-09-09 18:56 - 2017-03-04 06:08 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-09-09 18:56 - 2016-11-22 11:21 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2017-09-09 18:56 - 2016-11-22 11:00 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2017-09-09 18:56 - 2016-10-25 09:12 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSMDesktopProvider.dll
2017-09-09 18:56 - 2016-10-05 06:47 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-09-09 18:56 - 2016-09-07 07:39 - 000705576 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-09-09 18:56 - 2016-09-07 07:39 - 000414232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2017-09-09 18:56 - 2016-09-07 06:44 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll
2017-09-09 18:56 - 2016-09-07 06:42 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-09-09 18:56 - 2016-09-07 06:41 - 000313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2017-09-09 18:56 - 2016-09-07 06:36 - 000479744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2017-09-09 18:56 - 2016-09-07 06:36 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroleui.dll
2017-09-09 18:56 - 2016-09-07 06:33 - 000276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2017-09-09 18:56 - 2016-09-07 06:31 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2017-09-09 18:56 - 2016-09-07 06:09 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2017-09-09 18:56 - 2016-08-03 11:40 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2017-09-09 18:55 - 2017-07-29 20:29 - 000754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-09-09 18:55 - 2017-07-29 17:26 - 000566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-09-09 18:55 - 2017-07-29 17:21 - 000146272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2017-09-09 18:55 - 2017-07-29 17:21 - 000075952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-09-09 18:55 - 2017-07-29 16:48 - 000292192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-09-09 18:55 - 2017-07-29 16:48 - 000122504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-09-09 18:55 - 2017-07-29 16:44 - 000642008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-09-09 18:55 - 2017-07-29 16:44 - 000380152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-09-09 18:55 - 2017-07-29 16:43 - 000147808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-09-09 18:55 - 2017-07-29 14:50 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2017-09-09 18:55 - 2017-07-29 14:45 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2017-09-09 18:55 - 2017-07-29 14:24 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-09-09 18:55 - 2017-07-29 14:23 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-09-09 18:55 - 2017-07-29 14:20 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-09-09 18:55 - 2017-07-29 14:17 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-09-09 18:55 - 2017-07-29 14:11 - 000715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-09-09 18:55 - 2017-07-29 14:09 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-09-09 18:55 - 2017-07-29 14:04 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-09-09 18:55 - 2017-07-29 13:52 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-09-09 18:55 - 2017-07-29 13:47 - 001385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-09-09 18:55 - 2017-07-29 13:17 - 003587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-09-09 18:55 - 2017-07-07 10:37 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2017-09-09 18:55 - 2017-06-17 09:50 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-09-09 18:55 - 2017-06-17 09:30 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2017-09-09 18:55 - 2017-06-17 08:47 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2017-09-09 18:55 - 2017-06-03 14:12 - 001987424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-09-09 18:55 - 2017-06-03 14:12 - 000636304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-09-09 18:55 - 2017-06-03 14:12 - 000379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-09-09 18:55 - 2017-06-03 14:10 - 001597520 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2017-09-09 18:55 - 2017-06-03 13:42 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll
2017-09-09 18:55 - 2017-06-03 13:39 - 000045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-09-09 18:55 - 2017-06-03 13:27 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2017-09-09 18:55 - 2017-06-03 12:38 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-09-09 18:55 - 2017-04-28 03:38 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-09-09 18:55 - 2017-03-28 10:29 - 000393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-09-09 18:55 - 2017-03-28 09:37 - 000161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2017-09-09 18:55 - 2017-03-28 09:20 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2017-09-09 18:55 - 2017-03-04 09:09 - 000230752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-09-09 18:55 - 2017-03-04 09:08 - 000725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-09-09 18:55 - 2017-03-04 09:03 - 000341944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2017-09-09 18:55 - 2017-03-04 08:32 - 002773096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2017-09-09 18:55 - 2017-03-04 07:40 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2017-09-09 18:55 - 2017-03-04 07:38 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\feclient.dll
2017-09-09 18:55 - 2017-03-04 07:36 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2017-09-09 18:55 - 2017-03-04 07:28 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-09-09 18:55 - 2017-03-04 07:26 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-09-09 18:55 - 2017-03-04 07:24 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2017-09-09 18:55 - 2017-03-04 07:22 - 000342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2017-09-09 18:55 - 2017-03-04 07:21 - 000685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2017-09-09 18:55 - 2017-03-04 07:16 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2017-09-09 18:55 - 2017-03-04 07:15 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2017-09-09 18:55 - 2017-03-04 07:09 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-09-09 18:55 - 2017-03-04 07:07 - 000915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2017-09-09 18:55 - 2017-03-04 07:07 - 000504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-09-09 18:55 - 2017-03-04 07:07 - 000480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-09-09 18:55 - 2017-03-04 07:02 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-09-09 18:55 - 2017-03-04 07:02 - 000585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-09-09 18:55 - 2017-03-04 06:47 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-09-09 18:55 - 2017-03-04 06:47 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2017-09-09 18:55 - 2017-03-04 06:27 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-09-09 18:55 - 2017-03-04 06:27 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-09-09 18:55 - 2017-03-04 06:24 - 002067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2017-09-09 18:55 - 2017-03-04 06:20 - 002175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-09 18:55 - 2017-03-04 06:19 - 001997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-09-09 18:55 - 2017-03-04 06:08 - 000984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-09-09 18:55 - 2017-03-04 05:42 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-09-09 18:55 - 2017-03-04 05:34 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2017-09-09 18:55 - 2016-11-22 12:04 - 002549456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-09-09 18:55 - 2016-11-22 12:02 - 001399216 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-09-09 18:55 - 2016-11-22 11:13 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2017-09-09 18:55 - 2016-11-22 10:20 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2017-09-09 18:55 - 2016-11-22 09:36 - 000766464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-09-09 18:55 - 2016-10-25 11:42 - 000037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2017-09-09 18:55 - 2016-10-25 11:26 - 000528736 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2017-09-09 18:55 - 2016-10-25 10:39 - 000304752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2017-09-09 18:55 - 2016-10-25 10:38 - 000374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-09-09 18:55 - 2016-10-25 10:37 - 001603224 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2017-09-09 18:55 - 2016-10-25 10:34 - 000106928 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2017-09-09 18:55 - 2016-10-25 10:02 - 000577376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-09-09 18:55 - 2016-10-25 10:01 - 000324448 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2017-09-09 18:55 - 2016-10-25 09:46 - 000376528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-09-09 18:55 - 2016-10-25 09:13 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2017-09-09 18:55 - 2016-10-25 09:13 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2017-09-09 18:55 - 2016-10-25 09:10 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2017-09-09 18:55 - 2016-10-25 09:05 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FingerprintEnrollment.dll
2017-09-09 18:55 - 2016-10-25 08:59 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvc.dll
2017-09-09 18:55 - 2016-10-25 08:59 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2017-09-09 18:55 - 2016-10-25 08:58 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2017-09-09 18:55 - 2016-10-25 08:54 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2017-09-09 18:55 - 2016-10-25 08:53 - 000714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-09-09 18:55 - 2016-10-25 08:51 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2017-09-09 18:55 - 2016-10-25 08:50 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2017-09-09 18:55 - 2016-10-25 08:50 - 000479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2017-09-09 18:55 - 2016-10-25 08:42 - 000656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2017-09-09 18:55 - 2016-10-25 08:41 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2017-09-09 18:55 - 2016-10-25 08:41 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-09-09 18:55 - 2016-10-25 08:34 - 000436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-09-09 18:55 - 2016-10-25 08:32 - 001037824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2017-09-09 18:55 - 2016-10-25 08:32 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2017-09-09 18:55 - 2016-10-25 08:22 - 000638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-09-09 18:55 - 2016-10-25 07:52 - 000693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2017-09-09 18:55 - 2016-10-25 06:43 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2017-09-09 18:55 - 2016-10-05 09:01 - 001337184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-09-09 18:55 - 2016-10-05 07:25 - 000871776 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2017-09-09 18:55 - 2016-10-05 06:51 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-09-09 18:55 - 2016-10-05 06:49 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2017-09-09 18:55 - 2016-10-05 06:47 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2017-09-09 18:55 - 2016-10-05 06:34 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-09-09 18:55 - 2016-10-05 06:30 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2017-09-09 18:55 - 2016-10-05 06:17 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-09-09 18:55 - 2016-10-05 06:15 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-09-09 18:55 - 2016-09-07 07:39 - 000337328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-09-09 18:55 - 2016-09-07 07:16 - 002144512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2017-09-09 18:55 - 2016-09-07 07:15 - 000550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2017-09-09 18:55 - 2016-09-07 06:45 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\spcompat.dll
2017-09-09 18:55 - 2016-09-07 06:44 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IconCodecService.dll
2017-09-09 18:55 - 2016-09-07 06:40 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2017-09-09 18:55 - 2016-09-07 06:40 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2017-09-09 18:55 - 2016-09-07 06:38 - 000413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-09-09 18:55 - 2016-09-07 06:38 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-09-09 18:55 - 2016-09-07 06:36 - 001582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-09-09 18:55 - 2016-09-07 06:36 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2017-09-09 18:55 - 2016-09-07 06:36 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-09-09 18:55 - 2016-09-07 06:36 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2017-09-09 18:55 - 2016-09-07 06:35 - 000814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2017-09-09 18:55 - 2016-09-07 06:35 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2017-09-09 18:55 - 2016-09-07 06:34 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2017-09-09 18:55 - 2016-09-07 06:34 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2017-09-09 18:55 - 2016-09-07 06:34 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2017-09-09 18:55 - 2016-09-07 06:34 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-09-09 18:55 - 2016-09-07 06:32 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl
2017-09-09 18:55 - 2016-09-07 06:31 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppinst.dll
2017-09-09 18:55 - 2016-09-07 06:31 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2017-09-09 18:55 - 2016-09-07 06:30 - 002476032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2017-09-09 18:55 - 2016-09-07 06:30 - 001558528 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2017-09-09 18:55 - 2016-09-07 06:30 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2017-09-09 18:55 - 2016-09-07 06:30 - 000599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2017-09-09 18:55 - 2016-09-07 06:30 - 000531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2017-09-09 18:55 - 2016-09-07 06:29 - 001465344 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2017-09-09 18:55 - 2016-09-07 06:29 - 001443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2017-09-09 18:55 - 2016-09-07 06:27 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2017-09-09 18:55 - 2016-09-07 06:19 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2017-09-09 18:55 - 2016-09-07 06:16 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2017-09-09 18:55 - 2016-09-07 06:12 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2017-09-09 18:55 - 2016-08-03 11:39 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2017-09-09 18:54 - 2017-07-29 17:23 - 001540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-09-09 18:54 - 2017-07-29 17:23 - 000692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-09-09 18:54 - 2017-07-29 14:12 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2017-09-09 18:54 - 2017-07-29 12:15 - 006977536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-09 18:54 - 2017-07-29 12:12 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-09-09 18:54 - 2017-07-29 12:08 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-09-09 18:54 - 2017-06-17 12:16 - 001030408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-09-09 18:54 - 2017-06-17 11:07 - 001128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-09-09 18:54 - 2017-06-17 11:07 - 000625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-09-09 18:54 - 2017-06-17 09:01 - 002125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2017-09-09 18:54 - 2017-06-17 08:49 - 004456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-09 18:54 - 2017-06-17 08:11 - 002635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-09-09 18:54 - 2017-06-03 12:47 - 001418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-09-09 18:54 - 2017-04-28 06:30 - 001317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-09-09 18:54 - 2017-04-28 03:03 - 002610176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-09 18:54 - 2017-04-28 02:35 - 003585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-09-09 18:54 - 2017-04-28 02:08 - 003993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-09-09 18:54 - 2017-03-28 08:19 - 001674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-09-09 18:54 - 2017-03-04 10:15 - 000875480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-09-09 18:54 - 2017-03-04 09:55 - 001038176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-09-09 18:54 - 2017-03-04 09:09 - 000730352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-09-09 18:54 - 2017-03-04 09:08 - 004516800 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-09-09 18:54 - 2017-03-04 09:06 - 000742192 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2017-09-09 18:54 - 2017-03-04 07:29 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-09-09 18:54 - 2017-03-04 07:14 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-09-09 18:54 - 2017-03-04 07:11 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-09-09 18:54 - 2017-03-04 07:08 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-09-09 18:54 - 2017-03-04 07:03 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2017-09-09 18:54 - 2017-03-04 07:02 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2017-09-09 18:54 - 2017-03-04 07:02 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-09-09 18:54 - 2017-03-04 07:02 - 000990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-09-09 18:54 - 2017-03-04 06:58 - 001575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-09-09 18:54 - 2017-03-04 06:57 - 002731008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2017-09-09 18:54 - 2017-03-04 06:53 - 001073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-09-09 18:54 - 2017-03-04 06:41 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-09-09 18:54 - 2017-03-04 06:39 - 001297408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2017-09-09 18:54 - 2017-03-04 06:31 - 001755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-09-09 18:54 - 2017-03-04 06:30 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Proximity.dll
2017-09-09 18:54 - 2017-03-04 06:03 - 001390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-09-09 18:54 - 2017-03-04 05:56 - 002563584 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2017-09-09 18:54 - 2017-03-04 05:52 - 001797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-09-09 18:54 - 2016-12-21 08:56 - 001502208 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-09-09 18:54 - 2016-10-25 11:42 - 001142560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-09-09 18:54 - 2016-10-25 11:39 - 001238584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2017-09-09 18:54 - 2016-10-25 10:01 - 001415200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-09-09 18:54 - 2016-10-25 09:32 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2017-09-09 18:54 - 2016-10-25 08:58 - 000289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-09-09 18:54 - 2016-10-25 08:56 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dxpserver.exe
2017-09-09 18:54 - 2016-10-25 08:55 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2017-09-09 18:54 - 2016-10-25 08:52 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-09-09 18:54 - 2016-10-25 08:51 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2017-09-09 18:54 - 2016-10-25 08:47 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-09-09 18:54 - 2016-10-25 08:47 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2017-09-09 18:54 - 2016-10-25 08:44 - 001479168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2017-09-09 18:54 - 2016-10-25 08:43 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\certreq.exe
2017-09-09 18:54 - 2016-10-25 08:40 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2017-09-09 18:54 - 2016-10-25 08:38 - 000828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-09-09 18:54 - 2016-10-25 08:24 - 001211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-09-09 18:54 - 2016-10-25 08:21 - 001570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2017-09-09 18:54 - 2016-10-25 08:20 - 003549696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2017-09-09 18:54 - 2016-10-25 08:03 - 006675968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-09-09 18:54 - 2016-10-25 07:52 - 004170240 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-09-09 18:54 - 2016-10-25 07:50 - 002874880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2017-09-09 18:54 - 2016-10-25 07:47 - 003355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-09-09 18:54 - 2016-10-25 07:39 - 005503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-09-09 18:54 - 2016-10-25 07:35 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2017-09-09 18:54 - 2016-10-25 07:10 - 001568256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2017-09-09 18:54 - 2016-10-25 07:10 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2017-09-09 18:54 - 2016-10-25 07:02 - 003459584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-09-09 18:54 - 2016-09-07 07:35 - 000523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2017-09-09 18:54 - 2016-09-07 07:26 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-09-09 18:54 - 2016-09-07 07:22 - 000638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2017-09-09 18:54 - 2016-09-07 06:41 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2017-09-09 18:54 - 2016-09-07 06:41 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2017-09-09 18:54 - 2016-09-07 06:37 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-09-09 18:54 - 2016-09-07 06:35 - 000945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-09-09 18:54 - 2016-09-07 06:33 - 000904704 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2017-09-09 18:54 - 2016-09-07 06:32 - 000738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartCardSimulator.dll
2017-09-09 18:54 - 2016-09-07 06:31 - 000984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2017-09-09 18:54 - 2016-09-07 06:31 - 000900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2017-09-09 18:54 - 2016-09-07 06:31 - 000511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2017-09-09 18:54 - 2016-09-07 06:30 - 001318400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-09-09 18:54 - 2016-09-07 06:30 - 000649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2017-09-09 18:54 - 2016-09-07 06:29 - 001487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2017-09-09 18:54 - 2016-09-07 06:28 - 001783808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-09-09 18:54 - 2016-09-07 06:27 - 001395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-09-09 18:54 - 2016-09-07 06:26 - 002881536 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2017-09-09 18:54 - 2016-09-07 06:22 - 003093504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-09-09 18:54 - 2016-09-07 06:22 - 001113600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2017-09-09 18:54 - 2016-09-07 06:10 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2017-09-09 18:53 - 2017-07-07 09:12 - 004827136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-09-09 18:53 - 2017-03-04 05:41 - 011545600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-09-09 18:53 - 2017-03-04 05:35 - 002352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-09-09 18:53 - 2016-10-25 08:16 - 003415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2017-09-09 18:53 - 2016-09-07 07:39 - 004387680 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 001564512 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 001214816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 000629088 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 000544096 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 000334176 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 000225632 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 000136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-09-09 18:52 - 2017-06-03 13:57 - 000096608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-09-09 18:41 - 2017-09-09 18:41 - 000003382 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3052078447-1551124749-911916405-1001

==================== Ein Monat: GeÃ¤nderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-09-14 17:01 - 2017-01-29 21:15 - 000015627 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2017-09-14 16:57 - 2015-10-30 09:11 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-09-14 16:56 - 2015-12-29 16:13 - 000000000 ____D C:\Users\Caroline
2017-09-14 16:56 - 2015-12-25 03:28 - 000000000 __SHD C:\Users\Caroline\IntelGraphicsProfiles
2017-09-14 16:53 - 2017-06-26 14:53 - 000000314 _____ C:\WINDOWS\Tasks\{6F20E16E-4EBB-90E1-1649-58CEA584431B}.job
2017-09-14 16:47 - 2015-12-29 16:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-09-14 16:29 - 2017-01-29 21:29 - 000000292 _____ C:\WINDOWS\Tasks\{4C163C37-2A77-1B61-DB2E-195CB105048D}.job
2017-09-14 16:28 - 2017-01-29 21:28 - 000001016 _____ C:\WINDOWS\Tasks\Yahoo! Powered litom.job
2017-09-14 16:04 - 2015-10-30 09:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-09-14 16:04 - 2015-10-30 08:28 - 000032768 ___SH C:\WINDOWS\system32\config\ELAM
2017-09-14 16:02 - 2015-07-10 11:05 - 000000000 ____D C:\Users\Default.migrated
2017-09-14 15:19 - 2015-10-30 20:35 - 000778202 _____ C:\WINDOWS\system32\perfh007.dat
2017-09-14 15:19 - 2015-10-30 20:35 - 000155964 _____ C:\WINDOWS\system32\perfc007.dat
2017-09-14 15:19 - 2015-10-30 09:21 - 000000000 ____D C:\WINDOWS\INF
2017-09-14 15:19 - 2015-07-16 17:54 - 001799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-14 14:14 - 2017-01-29 21:28 - 000000000 ____D C:\Program Files\ByteFence
2017-09-14 07:10 - 2016-06-02 14:06 - 000004176 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{750F3F90-E105-4C60-BF9E-318ED3F70004}
2017-09-13 18:07 - 2015-10-30 08:28 - 000786432 ___SH C:\WINDOWS\system32\config\BBI
2017-09-13 17:45 - 2016-01-28 15:36 - 000048128 ___SH C:\Users\Caroline\Documents\Thumbs.db
2017-09-13 17:28 - 2017-01-29 21:28 - 000000000 ____D C:\ProgramData\{05C8C0AB-8F8A-4A6D-094C-D42F930E5FE1}
2017-09-12 18:22 - 2016-04-17 10:47 - 000247296 ___SH C:\Users\Caroline\Desktop\Thumbs.db
2017-09-11 15:54 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-09-10 20:33 - 2016-09-13 19:28 - 000002179 _____ C:\Users\Caroline\Desktop\Mathematik 5.lnk
2017-09-10 20:07 - 2015-12-29 16:41 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2017-09-10 20:07 - 2015-07-16 17:49 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-09-10 20:01 - 2015-12-29 16:02 - 000224368 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-09-10 19:53 - 2015-10-30 09:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-09-10 19:53 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-09-10 19:53 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2017-09-10 19:53 - 2015-10-30 08:31 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2017-09-10 19:53 - 2015-10-30 08:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ___RD C:\WINDOWS\DevicesFlow
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\setup
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\Provisioning
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\Program Files\Windows Defender
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-09-10 19:52 - 2015-10-30 09:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-09-10 19:52 - 2015-10-30 08:31 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2017-09-10 19:52 - 2015-10-30 08:28 - 000000000 ____D C:\WINDOWS\system32\Dism
2017-09-10 16:48 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\rescache
2017-09-10 14:54 - 2017-08-11 22:33 - 000000000 ___HD C:\$GetCurrent
2017-09-10 14:54 - 2017-06-27 19:55 - 000000000 ____D C:\Windows10Upgrade
2017-09-10 14:54 - 2015-10-17 19:43 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2017-09-10 14:54 - 2015-10-17 19:43 - 000001908 _____ C:\WINDOWS\diagerr.xml
2017-09-10 14:53 - 2015-12-29 16:01 - 000000000 ___DC C:\WINDOWS\Panther
2017-09-10 14:40 - 2017-01-29 21:28 - 000000306 __RSH C:\ProgramData\ntuser.pol
2017-09-10 14:26 - 2015-10-17 18:14 - 000000000 ____D C:\Program Files\Lenovo
2017-09-09 20:26 - 2015-10-30 09:24 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-09 20:11 - 2017-06-27 19:43 - 000000000 ____D C:\Program Files\rempl
2017-09-09 19:39 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2017-09-09 18:51 - 2015-12-25 13:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-09-09 18:43 - 2015-12-25 13:07 - 140394280 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-09-09 18:41 - 2015-12-25 03:34 - 000002445 _____ C:\Users\Caroline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-09 18:41 - 2015-12-25 03:34 - 000000000 ___RD C:\Users\Caroline\OneDrive
2017-09-09 18:35 - 2017-06-26 14:53 - 000000000 ____D C:\Users\Caroline\AppData\Local\6f20e16e4ebb90e1164958cea584431b
2017-09-09 18:35 - 2017-01-30 18:12 - 000000242 _____ C:\Users\Caroline\AppData\Roaming\WB.CFG
2017-08-17 18:35 - 2016-04-24 17:01 - 000544424 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2017-06-26 14:53 - 2017-06-26 14:53 - 000020035 _____ () C:\Users\Caroline\AppData\Roaming\Sotalasetu
2017-01-30 18:12 - 2017-09-09 18:35 - 000000242 _____ () C:\Users\Caroline\AppData\Roaming\WB.CFG
2015-12-25 03:29 - 2017-09-14 16:56 - 000697455 _____ () C:\Users\Caroline\AppData\Local\BTServer.log
2016-07-23 11:41 - 2016-07-23 11:41 - 000003584 _____ () C:\Users\Caroline\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-29 16:08 - 2015-12-29 16:08 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

Dateien, die verschoben oder gelÃ¶scht werden sollten:
====================
C:\Windows\Tasks\{4C163C37-2A77-1B61-DB2E-195CB105048D}.job
C:\Windows\Tasks\{6F20E16E-4EBB-90E1-1649-58CEA584431B}.job


Einige Dateien in TEMP:
====================
2016-01-07 17:33 - 2009-07-13 22:59 - 000703552 _____ (Electronic Arts Inc.) C:\Users\Caroline\AppData\Local\Temp\AutoRun.exe
2016-01-07 17:33 - 2009-07-13 22:59 - 000703552 _____ (Electronic Arts Inc.) C:\Users\Caroline\AppData\Local\Temp\AutoRunGUI.dll
2016-01-07 17:54 - 2016-08-02 16:57 - 000204800 _____ (Sony DADC Austria AG) C:\Users\Caroline\AppData\Local\Temp\drm_dyndata_7400006.dll
2017-01-29 21:37 - 2017-01-29 21:37 - 003350528 _____ () C:\Users\Caroline\AppData\Local\Temp\SkypeSetup.exe
2016-01-07 17:38 - 2009-07-13 22:59 - 000026176 ____R () C:\Users\Caroline\AppData\Local\Temp\VP6Install.exe
2016-01-07 17:38 - 2009-07-13 22:59 - 000445504 ____R (On2.com) C:\Users\Caroline\AppData\Local\Temp\VP6VFW.dll
2017-08-11 22:14 - 2017-08-11 22:32 - 006457520 _____ (Microsoft Corporation) C:\Users\Caroline\AppData\Local\Temp\Windows10Upgrade.exe

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix fÃ¼r Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-09-11 19:32

==================== Ende von FRST.txt ============================

und:

Code:

ATTFilter

ï»¿ZusÃ¤tzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 13-09-2017 02
durchgefÃ¼hrt von Caroline (14-09-2017 17:06:16)
Gestartet von C:\Users\Caroline\Desktop
Windows 10 Home Version 1511 (X64) (2015-12-29 14:34:58)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3052078447-1551124749-911916405-500 - Administrator - Disabled)
Caroline (S-1-5-21-3052078447-1551124749-911916405-1001 - Administrator - Enabled) => C:\Users\Caroline
DefaultAccount (S-1-5-21-3052078447-1551124749-911916405-503 - Limited - Disabled)
Gast (S-1-5-21-3052078447-1551124749-911916405-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3052078447-1551124749-911916405-1003 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" kÃ¶nnen in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Apple Application Support (32-Bit) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
BenutzerhandbÃ¼cher (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
ByteFence Anti-Malware (HKLM-x32\...\ByteFence) (Version: 2.9.0.0 - Byte Technologies LLC) <==== ACHTUNG
Chromium (HKLM-x32\...\{D81F30DF-889F-E15F-391F-91DFE99F425F}) (Version:  - )
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Components (HKLM-x32\...\{1720B0E0-C520-43A6-B677-97A1D80F3B99}) (Version: 1.0.023.00 - Lenovo) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.4505 - CyberLink Corp.)
Die Simsâ„¢ 2 (HKLM-x32\...\{2C82E097-694E-44ea-A947-2750679469CF}) (Version:  - Electronic Arts)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10600.147 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4653 - Intel Corporation)
Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 604.10125.2655.573 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
IntelÂ® Chipsatz-GerÃ¤tesoftware (HKLM-x32\...\{c6cff78a-cccb-49d5-be68-ae0ec5f0d48a}) (Version: 10.1.1.8 - Intel(R) Corporation) Hidden
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
KB4023057 (HKLM\...\{ED06689A-33B7-4D35-8F76-36A82CD03406}) (Version: 2.3.0.0 - Microsoft Corporation)
'Lass uns reiten 2'  - Demo (HKLM-x32\...\'Lass uns reiten 2') (Version:  - Demo - dtp Entertainment AG)
Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11105 - Realtek Semiconductor Corp.)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 2.0.9.0 - Lenovo)
Lenovo FusionEngine  (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4210 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4210 - CyberLink Corp.)
Lenovo Photo Master (HKLM-x32\...\{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 2.5.5720.01 - CyberLink Corp.)
Lenovo PowerDVD12 (HKLM-x32\...\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.) Hidden
Lenovo PowerDVD12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.)
Lenovo QuickOptimizer (HKLM\...\{8D2C871B-1B9F-45AC-9C43-2BB18089CDFA}) (Version: 1.0.006.00 - Lenovo)
Lenovo Solution Center (HKLM\...\{F925868A-2F2C-414B-A5A7-C613039CE9E4}) (Version: 3.1.001.00 - Lenovo)
Lenovo System Interface Foundation Driver (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.0.078.00 - Lenovo)
Mathematik 5 (HKLM-x32\...\Mathematik 5) (Version: 1.0 - Westermann)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\OneDriveSetup.exe) (Version: 17.3.6966.0824 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
QuickTime (HKLM-x32\...\QuickTime) (Version:  - )
REACHit (HKLM-x32\...\{4532E4C5-C84D-4040-A044-ECFCC5C6995B}) (Version: 2.5.003.11 - Lenovo)
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.876.867.091615 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29088 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7514 - Realtek Semiconductor Corp.)
Realtek Wireless LAN Adapter Software (HKLM-x32\...\{E462B252-195B-47EA-98E2-BAC3C2DF7D37}) (Version: 11.00.0057.0 - REALTEK Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0286 - REALTEK Semiconductor Corp.)
Search the Web (Yahoo) (HKLM-x32\...\{CB1E23DE-9B9E-F25E-2A1E-82DEFA9E515E}) (Version:  - ) <==== ACHTUNG
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skypeâ„¢ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.7 - Synaptics Incorporated)
UpdateAssistant (HKLM-x32\...\{4E67FF7F-C24E-4279-9AB2-C26D57B53742}) (Version: 1.3.0.0 - Microsoft Corporation) Hidden
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22243 - Microsoft Corporation)
Yahoo Search Set (HKLM-x32\...\Yahoo! SearchSet) (Version:  - Yahoo Inc.)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3052078447-1551124749-911916405-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
ContextMenuHandlers1: [BtSendToMenuEx] -> {CF24E6B8-F148-4BCB-9108-ADF313966E80} => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\DevMenuExt.dll [2014-07-03] (Realtek Semiconductor Corporation)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2014-09-10] (Cyberlink)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2014-09-10] (Cyberlink)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-08-07] (Intel Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {08551E10-D461-4F45-BA68-D7F90176C49C} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe [2016-12-18] (Byte Technologies LLC) <==== ACHTUNG
Task: {102D5A18-E912-4CFD-8456-2B8C50BE9EC5} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\db3a76ce-f9c4-4b1f-befe-544d7256ac4c => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {18B8C126-1705-4DB6-AD84-65CC4217884C} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2016-12-18] (Byte Technologies LLC) <==== ACHTUNG
Task: {2C3A3A1C-F6EE-4467-8A60-AE8D0A9B2C69} - System32\Tasks\Lenovo\QuickOptimizer => C:\Program Files\lenovo\QuickOptimizer\QuickOptimizerIcon.exe [2015-07-10] (Lenovo)
Task: {3A2C1D69-B820-4CF8-B7C4-BD49C29C2982} - System32\Tasks\{4C163C37-2A77-1B61-DB2E-195CB105048D} => C:\Program Files (x86)\Common Files\UpdateTask\synctask.exe [2013-05-02] () <==== ACHTUNG
Task: {3FB0CF8E-AC71-4AB9-AA70-0CB8029D963E} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe [2016-09-22] (CyberLink Corp.)
Task: {47C6179E-7CCA-41AF-ACBE-8E34F4AE945C} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {66B5067A-0D5F-488D-8F3C-573D0345AC88} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4f7070f3-d6df-4f63-9b00-35f7da642399 => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {75FD5929-6B2B-4BF1-BF8A-88458E44D6A6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\918028ce-4bd8-461e-a923-890fe9c7d164 => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {7BED48F1-97D8-41E9-876E-4D9332A6761F} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-08-07] ()
Task: {7D1C5CC5-6097-4380-831C-CCD0F2297A84} - System32\Tasks\Yahoo! Powered litom => C:\WINDOWS\system32\wscript.exe "C:\ProgramData\{05C8C0AB-8F8A-4A6D-094C-D42F930E5FE1}\dide.txt" "687474703a2f2f7761676e672e636f6d" "433a5c50726f6772616d446174615c7b30354338433041422d384638412d344136442d303934432d4434324639333045354645317d5c6d6f736f6e6f" "433a5c50726f6772616d446174615c7b30354338433041422d384638412d344136442d303934 (Der Dateneintrag hat 78 mehr Zeichen). <==== ACHTUNG
Task: {7E734F91-E3D9-4868-982C-29EDC77EC8BB} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\bc7eac65-6dfd-409a-bcf0-d14e24bdc82b => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {81B3674A-F3F4-4355-930D-ED57FE68AA33} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2015-08-07] (Lenovo)
Task: {8255D9FB-CFCE-4C35-8BE4-8C20E2646A12} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\666ad4a9-18e9-4e1e-815f-b2614803c97a => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {84483B6E-91B7-45FB-AFC4-325AC0CBBE4E} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2015-12-25] (Lenovo)
Task: {8C9F35B2-8523-419E-8629-EA5AC2DC2943} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [2015-05-28] (CyberLink Corp.)
Task: {8F6D52FF-9F9C-4202-97AD-F0AFD09828A5} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo)
Task: {97C1667D-E6B9-4062-B720-3BBB8D81668E} - System32\Tasks\{F202318E-4915-4596-9E38-50F8EBA318D5} => "c:\windows\system32\launchwinapp.exe" hxxp://ui.skype.com/ui/0/7.25.0.106/de/abandoninstall?page=tsProgressBar
Task: {9C557365-8988-4302-B8DE-2F785F068BD0} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 1 /f /reg:32
Task: {9F2FB77C-B936-4479-85D4-82CA6A25B992} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [2016-09-12] (Microsoft Corporation)
Task: {A8AEDEB6-3E0E-445A-B534-DBDBD373C543} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [2016-02-22] (Lenovo)
Task: {ABBE0747-23A4-4C1B-A0B1-ECCB1A6398D1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f0a96b97-1b64-4dec-a31f-1c14b5c6d49a => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {B10CBAAC-FABC-4F20-87F4-8F86D2FFB714} - System32\Tasks\Microsoft\Windows\rempl\shell-unlock => C:\Program Files\rempl\remsh.exe [2017-08-17] (Microsoft Corporation)
Task: {DABEADB3-5AF3-4BBA-BA82-28562AD216B5} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [2016-02-22] (Lenovo)
Task: {DD4ADD69-783F-4025-B8F7-612CCA767EB9} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8fdea1ab-41e3-405a-8bd4-877f7043a256 => c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-06-05] (Lenovo Group Limited)
Task: {E8F61430-4297-43A3-892E-F4E338A95BD2} - System32\Tasks\{6F20E16E-4EBB-90E1-1649-58CEA584431B} => C:\Users\Caroline\AppData\Local\6f20e16e4ebb90e1164958cea584431b\synhelper.exe [2013-04-23] () <==== ACHTUNG
Task: {EA0C5711-B996-4BAA-B76C-939CAFB13363} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2015-08-07] (Lenovo)
Task: {F0649318-8E1C-483E-8BD1-B66DF1460964} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\remsh.exe [2017-08-17] (Microsoft Corporation)
Task: {FDB634DC-96FB-4D45-BD39-7840CA1CC50A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => %windir%\system32\sc.exe START ImControllerService

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Yahoo! Powered litom.job => Wscript.exe  C:\ProgramData\{05C8C0AB-8F8A-4A6D-094C-D42F930E5FE1}\dide.txt <==== ACHTUNG
Task: C:\WINDOWS\Tasks\{4C163C37-2A77-1B61-DB2E-195CB105048D}.job => C:\PROGRA~2\COMMON~1\UPDATE~1\synctask.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\{6F20E16E-4EBB-90E1-1649-58CEA584431B}.job => C:\Users\Caroline\AppData\Local\6F20E1~1\SYNHEL~1.EXE <==== ACHTUNG

==================== VerknÃ¼pfungen & WMI ========================

(Die EintrÃ¤ge kÃ¶nnen gelistet werden, um sie zurÃ¼ckzusetzen oder zu entfernen.)


==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2017-09-09 19:01 - 2017-03-04 07:31 - 000185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-10-17 19:26 - 2015-07-20 19:19 - 000121560 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2017-06-26 15:24 - 2017-09-09 18:34 - 000302920 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
2017-09-09 18:58 - 2017-07-29 20:31 - 002656960 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2017-06-26 15:23 - 2017-09-09 18:34 - 000620872 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
2015-07-10 17:40 - 2015-07-10 17:40 - 000048544 _____ () C:\Program Files\Lenovo\QuickOptimizer\LNBPrismAssistInf.dll
2015-12-29 15:54 - 2015-12-29 15:54 - 000093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-13 14:57 - 2016-07-01 05:48 - 000472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2017-09-09 18:57 - 2017-03-04 05:19 - 007992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-09-09 18:58 - 2017-03-04 05:14 - 000591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-09-09 18:57 - 2017-04-28 01:46 - 002483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-09-09 18:57 - 2017-07-29 20:03 - 004089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-10-17 18:16 - 2015-02-12 16:02 - 000224696 _____ () C:\Program Files (x86)\Lenovo\CCSDK\SDKClient.dll
2017-09-11 19:47 - 2017-09-11 19:47 - 000329728 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Foundation\1dd6caefd2a4dabad06461f142fa6ce1\Windows.Foundation.ni.dll
2017-06-26 15:05 - 2016-09-22 08:24 - 000884504 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\Kernel\Boomerang\UNO.dll
2017-06-26 15:01 - 2016-09-22 08:11 - 000081920 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\koan\_ctypes.pyd
2015-10-17 18:20 - 2014-07-04 06:35 - 000627672 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMediaLibrary.dll
2014-07-04 12:35 - 2014-07-04 12:35 - 000016856 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll
2017-01-29 21:30 - 2016-03-18 13:32 - 002160128 _____ () C:\Users\Caroline\AppData\Local\chromium\Application\51.0.2683.0\libglesv2.dll
2017-01-29 21:30 - 2016-03-18 13:32 - 000075776 _____ () C:\Users\Caroline\AppData\Local\chromium\Application\51.0.2683.0\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== VerknÃ¼pfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurÃ¼ckgesetzt oder entfernt.)


==================== Internet Explorer VertrauenswÃ¼rdig/EingeschrÃ¤nkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ==========================

(Wenn benÃ¶tigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurÃ¼ckzusetzen.)

2015-07-10 13:04 - 2017-09-14 16:47 - 000002103 _____ C:\WINDOWS\system32\Drivers\etc\hosts

0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix fÃ¼r diesen Bereich.)

HKU\S-1-5-21-3052078447-1551124749-911916405-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Caroline\Pictures\2015-07\IMG_0176.PNG
DNS Servers: DatentrÃ¤ger ist nicht mit dem Internet verbunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte EintrÃ¤ge ==

HKLM\...\StartupApproved\Run: => "RtHDVBg_LENOVO_DOLBYDRAGON"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\StartupApproved\Run: => "PowerDVD12"
HKU\S-1-5-21-3052078447-1551124749-911916405-1001\...\StartupApproved\Run: => "Skype"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{DE955567-D6D1-4AB8-A34D-1C6C8F1412CB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{BBFF9AFF-2D2C-4AD0-A650-D40706810D0E}] => (Allow) C:\Users\Caroline\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{494B61D7-3101-41DB-A25F-38655ED75B3C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{CE512D64-6FDC-45BB-8818-967AF5D3796B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{265B42B1-F028-43EE-A69A-D628759BEB21}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{7AE23E22-4DF0-4896-92C4-832B022506E6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

==================== Wiederherstellungspunkte =========================

10-09-2017 16:42:13 Geplanter PrÃ¼fpunkt

==================== Fehlerhafte GerÃ¤te im GerÃ¤temanager =============


==================== FehlereintrÃ¤ge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (09/14/2017 03:13:19 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2328797

Error: (09/14/2017 03:13:19 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2328797

Error: (09/14/2017 03:13:19 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/13/2017 06:27:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5422

Error: (09/13/2017 06:27:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5422

Error: (09/13/2017 06:27:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/13/2017 06:05:23 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.147) TYPE: ERROR

DPTF Build Version:  8.1.10600.147
DPTF Build Date:  May 26 2015 13:35:22
Source File:  ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function:  DptfEvent
Message:  Received unexpected event
Framework Event:  DptfResume [3]

Error: (09/13/2017 06:05:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-6DVRLBBN)
Description: Bei der Aktivierung der App â€žMicrosoft.Windows.Photos_8wekyb3d8bbwe!Appâ€œ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll â€žMicrosoft-Windows-TWinUI/Betriebsbereitâ€œ.

Error: (09/13/2017 06:05:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1172

Error: (09/13/2017 06:05:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1172


Systemfehler:
=============
Error: (09/14/2017 04:48:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "ByteFenceService" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (09/14/2017 04:48:16 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst ByteFenceService erreicht.

Error: (09/14/2017 04:47:29 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am â€Ž14.â€Ž09.â€Ž2017 um 16:33:20 unerwartet heruntergefahren.

Error: (09/14/2017 04:08:22 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Synchronisierungshost_b8a320 erreicht.

Error: (09/14/2017 04:08:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Benutzerdatenspeicher _b8a320 erreicht.

Error: (09/14/2017 04:08:21 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Benutzerdatenspeicher _b8a320" KorrekturmaÃŸnahmen (Neustart des Diensts) durchzufÃ¼hren, ist fehlgeschlagen. Fehler: 
Es wird bereits eine Instanz des Dienstes ausgefÃ¼hrt.

Error: (09/14/2017 04:08:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_b8a320" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende KorrekturmaÃŸnahmen werden in 10000 Millisekunden durchgefÃ¼hrt: Neustart des Diensts.

Error: (09/14/2017 04:08:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _b8a320" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende KorrekturmaÃŸnahmen werden in 10000 Millisekunden durchgefÃ¼hrt: Neustart des Diensts.

Error: (09/14/2017 04:08:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_b8a320" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende KorrekturmaÃŸnahmen werden in 10000 Millisekunden durchgefÃ¼hrt: Neustart des Diensts.

Error: (09/14/2017 04:08:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_b8a320" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende KorrekturmaÃŸnahmen werden in 10000 Millisekunden durchgefÃ¼hrt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2017-09-13 17:07:51.547
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-09-12 16:25:25.234
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-09-10 20:04:13.089
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-09-10 20:02:16.081
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-09-09 20:07:30.293
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-09-09 18:51:31.238
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-01-30 17:13:34.581
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-01-29 15:57:07.810
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-09-13 19:16:15.267
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-07-18 19:04:11.664
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Celeron(R) CPU N2840 @ 2.16GHz
Prozentuale Nutzung des RAM: 56%
Installierter physikalischer RAM: 3977.2 MB
VerfÃ¼gbarer physikalischer RAM: 1722.07 MB
Summe virtueller Speicher: 4681.2 MB
VerfÃ¼gbarer virtueller Speicher: 2418 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:420.88 GB) (Free:362.6 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.27 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 56F098AA)

Partition: GPT.

==================== Ende von Addition.txt ============================

Awadu03

cosinus · 14.09.2017, 21:14

Lade Dir bitte von hier

Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.

Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
Klicke auf Optionen und wähle als Sprache Deutsch.
Suche im Uninstallerfeld nach den Programmen:

ByteFence Anti-Malware

Java 8 Update 66

QuickTime

Search the Web

Yahoo Search Set
Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
Wähle anschließend den Modus "Moderat" aus.
Reste löschen:
Klicke auf dann auf und dann auf .

Awadu03 · 15.09.2017, 08:33

Alles entfernt.

Awadu03

14.09.2017, 12:48	#2
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Antivirensoftware hat sich installiert und blockiert über 40% des Arbeitsspeichers Das Teil hat keinen Namen? Der Rechner hat kein OS und auch keine Hardware? __________________ __________________

14.09.2017, 13:36	#4
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Antivirensoftware hat sich installiert und blockiert über 40% des Arbeitsspeichers Gab es bisher schon irgendwelche Schädlingsfunde? Bitte keine neuen Scans machen, nur die Frage beantorten und falls es welche gab die Logs dazu posten. __________________ Logfiles bitte immer in CODE-Tags posten

14.09.2017, 14:37	#9
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Antivirensoftware hat sich installiert und blockiert über 40% des Arbeitsspeichers Oje zuerst mal muss dieser Blödsinn von McAfee runter siehe --> https://service.mcafee.com/webcenter...cleId=TS101331 Melde dich wenn das geschafft ist oder wenn du Probleme dabei hast __________________ Logfiles bitte immer in CODE-Tags posten

14.09.2017, 15:28	#11
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Antivirensoftware hat sich installiert und blockiert über 40% des Arbeitsspeichers Ich brauche neue FRST-Logs . Haken setzen bei addition.txt dann auf Untersuchen klicken. __________________ Logfiles bitte immer in CODE-Tags posten

Antivirensoftware hat sich installiert und blockiert über 40% des Arbeitsspeichers

Log-Analyse und Auswertung: Antivirensoftware hat sich installiert und blockiert über 40% des Arbeitsspeichers