Trojaner-Board
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Alles rund um Windows (https://www.trojaner-board.de/alles-rund-um-windows/)
-   -   Merkwürdige Systemauslastung (https://www.trojaner-board.de/215086-merkwuerdige-systemauslastung.html)

steaf 05.04.2025 09:18
Merkwürdige Systemauslastung
 
Hallo liebes Forum,

zuerst einmal, irgendwie kam nicht auf die Seite hier, weil meine IP irgendwie gesperrt ist. Ich verstehe nicht wirklich warum. Ich habe dann meine Mobildatenvervbindung genutzt, deshalb kann ich hier posten. Finde ich merkwürdig...

Zu meinem eigenltichen Anliegen. Ich beobachte im Leerlauf und bei leichter Nutzung merkwürdig hohe CPU Auslastung und laute Lüfter auf meinem Laptop. Wenn ich das im Taskmanager checken will dann hört das urplötzlich auf, und die Auslastung ist wieder im normalen Bereich. Bin nun etwas verunsichert und bräuchte mal Hilfe um das abzuklären.

viele Grüße
steaf

cosinus 05.04.2025 12:45
Zitat:
Bin nun etwas verunsichert und bräuchte mal Hilfe um das abzuklären.
Dann poste die notwendigen Logfiles. Ohne die kann niemand was dazu sagen.

steaf 05.04.2025 13:05
Welche Logs braucht ihr denn?

cosinus 05.04.2025 13:14
Du bist nicht das erste mal hier. Du weißt genau was zu tun ist.
Und der Hinweisthread ist auch nicht nur zur Dekoration da.

steaf 05.04.2025 20:39
Hier der erste Teil von FRST.txt

Code:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-04-2025
Ran by SYSTEM on MININT-5HKF1M2 (05-04-2025 20:59:16)
Running from E:\tools\FRST64.exe
Platform: Windows 11 Version 24H2 26100.3624 (X64) Language: Deutsch (Deutschland) -> Deutsch (Deutschland)
Boot Mode: Recovery
Default: ControlSet001
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.


==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e9f6c354061743a4\RtkAudUService64.exe [1270344 2021-07-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [643584 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3952720 2022-06-01] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
HKLM-x32\...\Run: [XPE] => C:\Program Files (x86)\XPE Windows 10 DPI Fix\XPEWindows10_DPI.exe [28672 2015-08-21] (XPExplorer.com - 2015)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [2044576 2023-12-13] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6597048 2025-01-17] (Acronis International GmbH -> )
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [443472 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Policies\Explorer: [HideSCAMeetNow] 1
HKLM\Software\Policies\...\system: [EnableActivityFeed] 0
HKLM\Software\Policies\...\system: [PublishUserActivities] 0
HKLM\Software\Policies\...\system: [UploadUserActivities] 0
HKLM\Software\Policies\...\system: [AllowCrossDeviceClipboard] 0
HKU\quart\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\106.0.4.0\GoogleDriveFS.exe [65444448 2025-04-02] (Google LLC -> Google LLC.)
HKU\quart\...\Run: [LenovoVantageToolbar] => C:\ProgramData\Lenovo\Vantage\AddinData\LenovoBatteryGaugeAddin\x64\QSHelper.exe [87960 2025-01-22] (Lenovo -> Lenovo)
HKU\quart\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4412512 2024-11-05] (Valve Corp. -> Valve Corporation)
HKU\quart\...\Run: [EEDSpeedLauncher] => rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher [1866560 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKU\quart\...\Run: [Xvid] => WScript "C:\Program Files (x86)\Xvid\CheckUpdateLauncher.vbs" "C:\Program Files (x86)\Xvid\CheckUpdate.ps1" [16457 2016-10-17] ()
HKU\quart\...\Run: [MicrosoftEdgeAutoLaunch_E9243080242DEBA1E75581223067271D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4418088 2025-04-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\quart\...\Run: [CiscoMeetingDaemon] => C:\Users\quart\AppData\Local\WebEx\WebexHost.exe [8077920 2023-10-12] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\quart\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [12307864 2025-03-13] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\quart\...\Run: [Mozilla-Firefox-308046B0AF4A39CB] => "C:\Program Files\Mozilla Firefox\firefox.exe" -os-autostart [694848 2025-04-02] (Mozilla Corporation -> Mozilla Corporation)
HKU\quart\...\Run: [Mathworks Service Host] => C:\Users\quart\AppData\Local\MathWorks\ServiceHost\v2024.6.0.6\bin\win64\MathWorksServiceHost.exe [579944 2024-06-12] (The MathWorks, Inc. -> The MathWorks Inc.)
HKU\quart\...\Run: [WingetUI] => C:\Program Files\UniGetUI\UniGetUI.exe [726672 2025-03-13] (Marti Climent Lopez -> )
HKU\quart\...\Run: [Claude] => C:\Users\quart\AppData\Local\AnthropicClaude\claude.exe [363112 2025-04-02] (Anthropic, PBC -> Anthropic)
HKU\quart\...\Run: [CiscoSpark] => C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webex\Webex.lnk [1454 2025-03-25] ()
HKU\quart\...\Policies\Explorer: [HideSCAMeetNow] 1
HKLM\...\Windows x64\Print Processors\ssi5mPC: C:\Windows\System32\spool\prtprocs\x64\ssi5mpc.dll [61760 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\ssi5m Langmon: C:\Windows\system32\ssi5mlm.dll [40744 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\Virtual Port Monitor: C:\Windows\system32\VirtualMon.dll [229376 2025-03-27] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{2135f72a-90b5-4ed3-a7f1-8bb705ac276a}] -> C:\Windows\system32\credprovslegacy.dll [2025-03-27] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{25CBB996-92ED-457e-B28C-4774084BD562}] -> C:\Windows\system32\credprovs.dll [2025-03-27] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{27FBDB57-B613-4AF2-9D7E-4FA7A66C21AD}] -> C:\Windows\system32\TrustedSignalCredProv.dll [2025-02-17] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{3dd6bec0-8193-4ffe-ae25-e08e39ea4063}] -> C:\Windows\system32\credprovs.dll [2025-03-27] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{60b78e88-ead8-445c-9cfd-0b87f74ea6cd}] -> C:\Windows\system32\credprovs.dll [2025-03-27] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{cb82ea12-9f71-446d-89e1-8d0924e1256e}] -> C:\Windows\system32\credprovslegacy.dll [2025-03-27] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Provider Filters: [{DDC0EED2-ADBE-40b6-A217-EDE16A79A0DE}] -> C:\Windows\system32\credprovs.dll [2025-03-27] (Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (All) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {F28DBFC1-845D-403F-AA29-AF3C0E592637} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2024-12-18] (Adobe Inc. -> Adobe Inc.)
Task: {ADF2830A-3E11-4897-AF95-F4214CD35328} - System32\Tasks\Agent Activation Runtime\S-1-5-21-2000400401-3484457797-169236058-1001 => C:\Windows\System32\AgentActivationRuntimeStarter.exe [40960 2025-02-17] (Microsoft Corporation)
Task: {C5FA56C4-114A-4B1F-80FB-1A70CE257079} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{D2488D7A-9D57-41AD-8C7C-0885E62196B0} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {C6B6C1B3-96CA-4A85-8585-4960E7EAE84F} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{7C7A04CD-46B5-4C7B-8AEF-DC7085F74298} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {E9E39C08-A2D7-4704-8030-3FD5355B3113} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{5B197E40-F00D-4649-9A67-216542AAE245} => C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe [5745760 2025-02-19] (Google LLC -> Google LLC)
Task: {E51E8C67-56C0-49C1-AAEF-B3EB7FB68702} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem136.0.7079.0{FCF82DD6-43F8-476A-A3D8-D7EB32CBFD4E} => C:\Program Files (x86)\Google\GoogleUpdater\136.0.7079.0\updater.exe [7017568 2025-03-20] (Google LLC -> Google LLC)
Task: {90D34E82-5716-4386-9389-78C61EC5569F} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4910680 2024-02-21] (Intel Corporation -> Intel Corporation)
Task: {F86A761E-B638-4BC3-ACE9-E0B12EB6D2C2} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4910680 2024-02-21] (Intel Corporation -> Intel Corporation)
Task: {37629D91-0995-4290-989C-E64FFA0AA11A} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe  --automatic (No File)
Task: {CD9AC1AF-8D1D-4D9E-AA6D-8BE3158971EA} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\Windows\system32\ImController.InfInstaller.exe [94496 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {D67EAF74-2B81-48CB-BC99-2973FA3B2D97} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\Windows\system32\sc.exe [102400 2025-02-17] (Microsoft Corporation) -> START ImControllerService
Task: {0221F0B0-5BFE-4895-BC93-8FFE996B4545} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\Windows\System32\reg.exe [110592 2025-02-17] (Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {58A8F2CC-605B-40D8-9543-BFED12BBE7DC} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\088ed578-88a5-4010-abb0-8a4135293196 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {827BE85A-016C-4426-9399-E470DCAC8D5D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4324d6b3-39dc-4880-b33c-97d289671996 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {DC62B6E8-BC47-41DB-BA79-EAA43F4D804D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\5af650c5-798b-4a08-9254-2d4327ae1090 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {64DEC80D-2185-4B3E-BBF3-C99D9E096DDC} - System32\Tasks\Lenovo\LenovoNowLauncher => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.exe [3560352 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\/task
Task: {122268C4-674D-4516-ADA7-719D57E5F230} - System32\Tasks\Lenovo\LenovoNowQuarterlyLaunch => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe [2360224 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\/QuarterlyLaunch
Task: {837A090B-8B54-40EB-9D66-4B1331C318F7} - System32\Tasks\Lenovo\LenovoNowTask => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe [2360224 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\$(EventData)
Task: {09B20D0E-4632-4D5C-90B6-E2358F9137F6} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\Windows\system32\sc.exe [102400 2025-02-17] (Microsoft Corporation) -> start LenovoVantageService
Task: {73867FD1-223D-4AD9-9316-D553BAD38361} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {88D7F9AA-C1AE-4A90-AAD3-913C6A7E4C62} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {1F505D02-1A55-4560-B546-A2E45DC59DEB} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {5700D973-91B7-4B8D-BE55-4FA35DAC3049} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {28204DA8-098B-46E8-A844-B437068C67B1} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {1CCCB5F4-8DD9-4380-9103-1BE21D0B931E} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {0A2E4A5C-81C4-4DE2-9534-AA0B6DF1FD78} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.SScan => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {A74004C8-0FBE-4ECE-ABE2-51215BE8E2E0} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoBatteryPartSalesMonthlyToast => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {AE09B461-EFAE-4C95-8A6A-9090E8831B52} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {971A0E71-1251-4A40-8DE6-988969E91583} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {30413647-12C0-4A47-96A7-1E29DBACBAF6} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe  NotificationCenter (No File)
Task: {D387E6B7-1177-4008-9060-3FF7585B666C} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {FB72D4FB-6DF1-484F-898E-712886AC3405} - System32\Tasks\Lenovo\Vantage\Schedule\SmartLock.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {D3F5F34F-AB56-41C6-B122-E12629789AE6} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {1003B98D-FB86-469D-951D-438187668E4D} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinIdleScheduleTask => C:\ProgramData\Lenovo\Vantage\Addins\VantageCoreAddin\1.0.0.190\x64\IdleScheduleEventAction.exe [143768 2025-01-17] (Lenovo -> )
Task: {7F0B23C5-33EE-418B-926B-F8200E839E19} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {967DB92F-F546-42B5-9341-941EE90C947E} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.2.24.0\\uninstall.exe  /repair (No File)
Task: {F6DEAFE2-797A-4C3E-9B40-0E2147F49EA5} - System32\Tasks\MATLAB R2023a Startup Accelerator => C:\Program Files\MATLAB\R2023a\bin\win64\MATLABStartupAccelerator.exe [98816 2022-11-20] ()
Task: {FD71EEA2-9873-4F8F-A2D8-E2705D309943} - System32\Tasks\MATLAB R2024a Startup Accelerator => C:\Program Files\MATLAB\R2024a\bin\win64\MATLABStartupAccelerator.exe  (No File)
Task: {D67AA71A-10E5-4C44-80A8-01F063D49BB4} - System32\Tasks\Microsoft\Office\Office Apps Prewarm => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [315512 2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {6F340DD0-CD28-44BD-9D31-DFECBA8E0014} - System32\Tasks\Microsoft\Office\Office Apps Prewarm Recurring => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [315512 2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {E084DAB4-EBB2-4B36-AAD5-BB250D38A632} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29106392 2025-04-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {FFCF75D9-0AB5-4E32-B8EC-30AECF7268DD} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE16\opushutil.exe [68304 2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {32968922-A999-4546-BF17-A808B455FE26} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29106392 2025-04-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {72612C00-0213-431F-BDEA-AC0D612E039A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [315512 2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {56BA5686-C54F-4BCF-81B5-D15B421F51E2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [315512 2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {7A932A07-5FFC-4A34-BA38-B413999793CD} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [204400 2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {09B75BFE-4FDF-47B3-A7FD-899A092F9899} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 => {84F0FAE1-C27B-4F6F-807B-28CF6F96287D} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23968 2024-04-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {01612C27-6C74-4BA7-A9FC-F7D32415C0D4} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 => {429BC048-379E-45E0-80E4-EB1977941B5C} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23968 2024-04-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {A089E292-F4B9-4EB5-A09E-0C4BF448E005} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical => {613FBA38-A3DF-4AB8-9674-5604984A299A} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23968 2024-04-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {C4BB3D7E-BF6E-42EE-B532-1E0832DA3EA9} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical => {DE434264-8FE9-4C0B-A83B-89EBEEBFF78E} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23968 2024-04-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {8A6F4F38-0B3C-44E5-83C3-65C2A444B2EA} - System32\Tasks\Microsoft\Windows\AccountHealth\RecoverabilityToastTask => {B7F5B442-EBF8-46CD-9F0B-D8E45ED43492} C:\Windows\system32\AccountHealth.dll [258048 2025-03-27] (Microsoft Corporation)
Task: {1A8080D1-F23D-4CF3-9F59-A4578B9D9E19} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated) => {CF2CF428-325B-48D3-8CA8-7633E36E5A32} C:\Windows\system32\msdrm.dll [593920 2025-02-17] (Microsoft Corporation)
Task: {F98BFCBD-867D-4734-B2CD-E9D72A80F093} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual) => {BF5CB148-7C77-4D8A-A53E-D81C70CF743C} C:\Windows\system32\msdrm.dll [593920 2025-02-17] (Microsoft Corporation)
Task: {37077CCA-5981-49D0-8EAD-5A328E208C61} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager => {DECA92E0-AF85-439E-9204-86679978DA08} C:\Windows\System32\AppLockerCsp.dll [368640 2025-03-27] (Microsoft Corporation)
Task: {CD644B8B-7297-4AA8-96A4-F4EC1FD24615} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter => C:\Windows\system32\appidpolicyconverter.exe [155648 2025-02-17] (Microsoft Corporation)
Task: {F65E78D2-6CBA-464C-921F-C03CAD0A1A91} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck => C:\Windows\system32\appidcertstorecheck.exe [49152 2025-02-17] (Microsoft Corporation)
Task: {61012F9B-FFD6-4E36-BD45-42CE5AC83FC1} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(1): %windir%\system32\compattelrunner.exe -> -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc
Task: {61012F9B-FFD6-4E36-BD45-42CE5AC83FC1} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(2): %windir%\system32\compattelrunner.exe -> -m:appraiser.dll -f:DoScheduledTelemetryRun
Task: {61012F9B-FFD6-4E36-BD45-42CE5AC83FC1} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(3): %windir%\system32\compattelrunner.exe -> -m:aemarebackup.dll -f:BackupMareData
Task: {3047C197-66F1-4523-BA92-6C955FEF9E4E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\sc.exe [102400 2025-02-17] (Microsoft Corporation) -> start InventorySvc
Task: {A0C71CB8-E8F0-498A-901D-4EDA09E07FF4} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser Exp => C:\Windows\system32\compattelrunner.exe [190016 2025-03-27] (Microsoft Corporation -> Microsoft Corporation) -> -m:appraiser.dll -f:DoScheduledTelemetryRun express
Task: {6A48CEFF-9D60-4665-83B4-881C60F0658E} - System32\Tasks\Microsoft\Windows\Application Experience\PcaPatchDbTask => C:\Windows\system32\rundll32.exe [90112 2025-03-27] (Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaPatchSdbTask
Task: {B86F17B7-0298-4679-9BEA-3567E58A7D51} - System32\Tasks\Microsoft\Windows\Application Experience\SdbinstMergeDbTask => C:\Windows\system32\sdbinst.exe [299008 2025-03-27] (Microsoft Corporation)
Task: {DB351805-180A-4A8A-A7FB-048D230942B2} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\Windows\system32\rundll32.exe [90112 2025-03-27] (Microsoft Corporation) -> Startupscan.dll,SusRunTask
Task: {2D5F15D5-9A58-444A-B969-DE789BD44978} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\Windows\system32\AppHostRegistrationVerifier.exe [139264 2025-02-17] (Microsoft Corporation)
Task: {9C8F22F7-E6C2-403A-B779-9125A0AA4159} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\Windows\system32\AppHostRegistrationVerifier.exe [139264 2025-02-17] (Microsoft Corporation)
Task: {BEBB7728-850C-4618-BB88-D50757EB0EB4} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\Windows\system32\rundll32.exe [90112 2025-03-27] (Microsoft Corporation) -> Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {1734B5C2-376F-40C4-9E48-E0284BFF7450} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [40960 2025-02-17] (Microsoft Corporation)
Task: {C5B41A1D-9B4A-40B1-90E2-576692C9043D} - System32\Tasks\Microsoft\Windows\AppListBackup\Backup => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\Windows\system32\AppListBackupLauncher.dll [118784 2025-03-27] (Microsoft Corporation)
Task: {8D51FC39-7A4E-40C3-BA08-FD4D2289F857} - System32\Tasks\Microsoft\Windows\AppListBackup\BackupNonMaintenance => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\Windows\system32\AppListBackupLauncher.dll [118784 2025-03-27] (Microsoft Corporation)
Task: {6B00C177-C019-4C00-B0B6-C74E993BC9AA} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => C:\Windows\system32\rundll32.exe [90112 2025-03-27] (Microsoft Corporation) -> %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {4C15DAD2-FCFA-40CF-8C21-3E6BB41CB2AC} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\Windows\system32\UCPDMgr.exe [177664 2025-03-27] (Microsoft Corporation)
Task: {30E6DB3D-C3AA-44DA-8E88-9DB52D84975E} - System32\Tasks\Microsoft\Windows\Autochk\Proxy => C:\Windows\system32\rundll32.exe [90112 2025-03-27] (Microsoft Corporation) -> /d acproxy.dll,PerformAutochkOperations
Task: {F449940A-F863-4436-87DD-962B5295EB2F} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [135168 2025-03-27] (Microsoft Corporation)
Task: {730947A5-753E-4D67-8F64-4AC1FEA62B46} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [135168 2025-03-27] (Microsoft Corporation)
Task: {D8F53FD3-75B7-4BCB-AFC9-EFCDE6268034} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\system32\BthUdTask.exe [69632 2024-04-01] (Microsoft Corporation)
Task: {61014571-FEE0-459A-99D6-DE84F00D0DF9} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask => {E984D939-0E00-4DD9-AC3A-7ACA04745521}
Task: {B8DEC486-8231-41C5-9109-D7ACDA5A5692} - System32\Tasks\microsoft\windows\capabilityaccessmanager\maintenancetasks => C:\Windows\system32\rundll32.exe [90112 2025-03-27] (Microsoft Corporation) -> %windir%\system32\CapabilityAccessManager.dll,CapabilityAccessManagerDoStoreMaintenance
Task: {E72F1464-A3F9-406D-BF09-57DE4D764406} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\Windows\system32\ngctasks.dll [233472 2025-03-27] (Microsoft Corporation)
Task: {44CF38D1-7912-4AF5-85E0-B5B6A8A8709F} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\CryptoPolicyTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\Windows\system32\ngctasks.dll [233472 2025-03-27] (Microsoft Corporation)
Task: {7235AFD9-C139-458E-AA61-F6FD579A198F} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\Windows\system32\ngctasks.dll [233472 2025-03-27] (Microsoft Corporation)
Task: {3821ECEF-67ED-4990-95B6-50C6DF64719D} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\SystemTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\Windows\system32\dimsjob.dll [143360 2025-03-27] (Microsoft Corporation)
Task: {24D897BB-FCA1-4D52-B199-9254D8D47895} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\Windows\system32\dimsjob.dll [143360 2025-03-27] (Microsoft Corporation)
Task: {2A8B3A75-27C9-41C5-935E-5B4575E6E059} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask-Roam => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\Windows\system32\dimsjob.dll [143360 2025-03-27] (Microsoft Corporation)
Task: {DFDFAAE9-EA5E-4F25-ADD2-A3FE05CBE085} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan => {CF4270F5-2E43-4468-83B3-A8C45BB33EA1} C:\Windows\System32\pstask.dll [40960 2024-04-01] (Microsoft Corporation)
Task: {2273CC53-20C0-46E1-87CE-1DA662FDABDB} - System32\Tasks\Microsoft\Windows\Chkdsk\SyspartRepair => C:\Windows\system32\bcdboot.exe [290816 2025-03-27] (Microsoft Corporation) -> %windir% /sysrepair
Task: {663DC9C2-27C5-406B-AC21-14E3725608CB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [1125432 2025-03-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0A60B943-20F8-485C-B933-154316B56B29} - System32\Tasks\Microsoft\Windows\Clip\LicenseImdsIntegration => C:\Windows\system32\fclip.exe [472536 2025-03-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {72242617-4783-4FB8-A5CF-51FA4B2C1B76} - System32\Tasks\Microsoft\Windows\CloudExperienceHost\CreateObjectTask => {E4544ABA-62BF-4C54-AAB2-EC246342626C} C:\Windows\System32\CloudExperienceHostBroker.exe [95648 2025-02-17] (Microsoft Windows -> Microsoft Corporation)
Task: {218C5E34-9A9C-4A09-89A8-EF691C6CD6D9} - System32\Tasks\Microsoft\Windows\CloudRestore\Backup => {722D0F89-B69C-4700-AE8C-4A44350E4876} C:\Windows\System32\CloudRestoreLauncher.dll [1675264 2025-03-27] (Microsoft Corporation)
Task: {2D98373F-6E68-4F34-A886-F8C22FB73C1B} - System32\Tasks\Microsoft\Windows\CloudRestore\Restore => {B4BCFA6F-948D-46B8-BF27-E8B1117E23B3} C:\Windows\system32\CloudRestoreLauncher.dll [1675264 2025-03-27] (Microsoft Corporation)
Task: {867CBA06-B3A3-430B-AD06-56AA3F5F2E7F} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82AA0895-198A-4C1B-B2D1-C16894218AFB} C:\Windows\System32\unifiedconsent.dll [376832 2025-03-27] (Microsoft Corporation)
Task: {8AAC1993-911A-40E3-A870-4265186807FF} - System32\Tasks\Microsoft\Windows\Containers\CmCleanup => {F50E9363-6BC8-4DC5-8CAB-7D9F8C1B81B4} C:\Windows\System32\cmcleanup.dll [87352 2025-02-17] (Microsoft Windows -> Microsoft Corporation)
Task: {E4FED5BC-D567-4044-9642-2EDADF7DE108} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator => C:\Windows\System32\wsqmcons.exe [86016 2024-04-01] (Microsoft Corporation)
Task: {FD607F42-4541-418A-B812-05C32EBA8626} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\UsbCeip => {C27F6B1D-FE0B-45E4-9257-38799FA69BC8} C:\Windows\System32\usbceip.dll [135168 2025-02-17] (Microsoft Corporation)
Task: {0A18F0F5-0A91-4636-A2B5-0D88BFC4B1C3} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Check And Scan => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [356352 2025-03-27] (Microsoft Corporation)
Task: {1EA5FD1B-E4CF-4471-A78C-2FF0BFD6554F} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [356352 2025-03-27] (Microsoft Corporation)
Task: {058FF498-213D-4A09-88C1-001C8A8FF1DB} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [356352 2025-03-27] (Microsoft Corporation)
Task: {7CAECD5D-8C73-4F04-B755-8E12502BD5A9} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag => C:\Windows\system32\defrag.exe [241664 2025-02-17] (Microsoft Corp.)
Task: {E0897054-7E67-42E8-A5C0-290FE1BDB0BA} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\Windows\system32\devicecensus.exe [148936 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {1AC60082-C248-420C-9CBC-FCD612BDA90F} - System32\Tasks\Microsoft\Windows\Device Information\Device User => C:\Windows\system32\devicecensus.exe [148936 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {23713248-F0F1-436C-9DFF-BABCB2879EFC} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh => {23C1F3CF-C110-4512-ACA9-7B6174ECE888} C:\Windows\System32\DeviceSetupManagerAPI.dll [77824 2025-02-17] (Microsoft Corporation)
Task: {68766063-A2C4-4B25-ABBD-0F2131DFA45C} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [327680 2025-03-27] (Microsoft Corporation)
Task: {A5B0F702-FE3C-4E59-9261-DF5381421B49} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [327680 2025-03-27] (Microsoft Corporation)
Task: {69268C01-9811-426E-8087-4433A05BF16B} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\IntegrityCheck => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [327680 2025-03-27] (Microsoft Corporation)
Task: {96E05586-64F9-4006-8269-B67332D73115} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [327680 2025-03-27] (Microsoft Corporation)
Task: {F374D396-6F94-4A15-AF12-7E1990515D48} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceAccountChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [327680 2025-03-27] (Microsoft Corporation)
Task: {59AEFCC9-9F0A-438A-9DCE-05BECFF49233} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [327680 2025-03-27] (Microsoft Corporation)
Task: {0F9B213A-8671-4C1E-A5C7-A9E22E67FEE9} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic24 => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [327680 2025-03-27] (Microsoft Corporation)
Task: {5D3FCEA5-5A78-46A1-9AE7-582AEBFE47AF} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [327680 2025-03-27] (Microsoft Corporation)
Task: {222B1E40-DFB7-4001-B965-BB6BFDB425F9} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [327680 2025-03-27] (Microsoft Corporation)
Task: {B63B8F61-C8B2-4891-A366-119945CAA236} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceSettingChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [327680 2025-03-27] (Microsoft Corporation)
Task: {EA217884-456A-41B4-9B8C-6A9455E64E35} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [327680 2025-03-27] (Microsoft Corporation)
Task: {8C5F073D-4391-4D09-B411-560B09F3228B} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterUserDevice => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [327680 2025-03-27] (Microsoft Corporation)
Task: {E9FDE5C7-06DA-4076-AEC7-02A5487C4DA3} - System32\Tasks\Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner => {AD08DCC2-4E35-4486-9D49-547CBD30942D} C:\Windows\System32\MitigationClient.dll [577536 2025-03-27] (Microsoft Corporation)
Task: {F38F5944-B27C-41ED-8DC0-2A828A68B1A0} - System32\Tasks\Microsoft\Windows\Diagnosis\Scheduled => {C1F85EF8-BCC2-4606-BB39-70C523715EB3} C:\Windows\System32\sdiagschd.dll [102400 2025-02-17] (Microsoft Corporation)
Task: {D1211565-C8D3-4652-94F0-E7177DB88C70} - System32\Tasks\Microsoft\Windows\Diagnosis\UnexpectedCodepath => C:\Windows\system32\UCConfigTask.exe [90112 2025-03-27] ()
Task: {DB668C31-1324-4A15-85EA-0405D4E765DD} - System32\Tasks\Microsoft\Windows\DirectX\DirectXDatabaseUpdater => C:\Windows\system32\directxdatabaseupdater.exe [176128 2025-03-27] (Microsoft Corporation)
Task: {F49854D8-60F3-475E-8F40-E85C4EC04138} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\Windows\system32\dxgiadaptercache.exe [131072 2025-03-27] (Microsoft Corporation)
Task: {46C68EA4-F9F7-40E2-84D3-FCE5F3AEBE31} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [327680 2025-03-27] (Microsoft Corporation) -> /autocleanstoragesense /d %systemdrive%
Task: {36A1CD88-920A-4A62-BEF3-68538A8ACF6B} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector => C:\Windows\system32\rundll32.exe [90112 2025-03-27] (Microsoft Corporation) -> dfdts.dll,DfdGetDefaultPolicyAndSMART
Task: {A01CBA68-8954-4C51-BEFF-37A017DAA227} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver => C:\Windows\system32\DFDWiz.exe [77824 2025-02-17] (Microsoft Corporation)
Task: {065878B2-62BA-48EC-9033-06E00B0E3945} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\Windows\system32\disksnapshot.exe [98304 2025-02-17] (Microsoft Corporation)
Task: {32B4915D-E6EF-432D-BD9C-D3FE6F9B3A69} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense => {AB2A519B-03B0-43CE-940A-A73DF850B49A} C:\Windows\system32\StorageUsage.dll [331776 2025-03-27] (Microsoft Corporation)
Task: {A4059604-7FC9-4F69-9ADD-7D66F2CD2A1F} - System32\Tasks\Microsoft\Windows\DUSM\dusmtask => C:\Windows\System32\dusmtask.exe [77824 2025-02-17] (Microsoft Corporation)
Task: {FEE6FEFC-0124-4367-8B6E-CF4E8671FCD7} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [135168 2025-03-27] (Microsoft Corporation)
Task: {75CFEFFD-AD00-4CA7-9271-F710151BCFA2} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [135168 2025-03-27] (Microsoft Corporation)
Task: {5B059E26-35C9-42E7-A9B2-80B5AFFE86B7} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [135168 2025-03-27] (Microsoft Corporation)
Task: {A00416EE-51A9-4A19-845A-5E6B88662E70} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [135168 2025-03-27] (Microsoft Corporation)
Task: {B99FC784-B1E6-4A24-8751-39985E56C794} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\Windows\system32\MDMAgent.exe [172032 2025-03-27] (Microsoft Corporation)
Task: {0EEE7F7C-5414-4CA7-A534-C2F2E0A8738F} - System32\Tasks\Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh => {711001CD-CC1D-4470-9B7E-1EF73849C79E} C:\Windows\System32\MitigationConfiguration.dll [131072 2025-02-17] (Microsoft Corporation)
Task: {4D8B7A8B-0E1C-45A9-8A64-27E4DFD546BE} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [172032 2025-03-27] (Microsoft Corporation)
Task: {7285636E-5715-48F0-A8FF-3CFB5893A966} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload => C:\Windows\system32\dmclient.exe [172032 2025-03-27] (Microsoft Corporation)
Task: {BD505E6E-E08E-4B9B-A5F5-58B113FB7212} - System32\Tasks\Microsoft\Windows\File Classification Infrastructure\Property Definition Sync => {2AE64751-B728-4D6B-97A0-B2DA2E7D2A3B} C:\Windows\System32\srmclient.dll [1179648 2025-02-17] (Microsoft Corporation)
Task: {385EB27E-5315-4FC5-8EF9-ED1851D7A49C} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode) => {89917B7C-A1A6-11DF-8BF6-18A90531A85A} C:\Windows\System32\fhtask.dll [81920 2025-02-17] (Microsoft Corporation)
Task: {BBCEE0CF-A3B0-4A8A-A906-9115881A152E} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\BootstrapUsageDataReporting => {D759C938-B375-41CB-A2A2-E6D866A767F4} C:\Windows\System32\fcon.dll [704512 2025-03-27] (Microsoft Corporation)
Task: {E3506C85-C377-4031-A8ED-FD6FB09F4EC3} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileConfigs => {15F5ECE1-4550-4A92-8E26-984FD1DA54FA} C:\Windows\System32\fcon.dll [704512 2025-03-27] (Microsoft Corporation)
Task: {6D56D5C7-205E-46EF-950E-CB2F492B8952} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures => {59EECBFE-C2F5-4419-9B99-13FE05FF2675} C:\Windows\System32\fcon.dll [704512 2025-03-27] (Microsoft Corporation)
Task: {69389B13-EDAE-4EB2-9FC9-C209953FE100} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataFlushing => {99EFDAD1-0F11-4A6B-A702-4E1C37D1A3EF} C:\Windows\System32\fcon.dll [704512 2025-03-27] (Microsoft Corporation)
Task: {FC3F98E1-5B5D-4BB3-ADA7-257D7D832E6B} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataReceiver => {D4C0420F-76BD-4F66-A91F-918A93ABEBEB} C:\Windows\System32\fcon.dll [704512 2025-03-27] (Microsoft Corporation)
Task: {5335D4FD-89A9-4842-A77B-2689A9EA438D} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataReporting => {BBFCD054-8AAC-45DE-A1EB-7B246C9028AF} C:\Windows\System32\fcon.dll [704512 2025-03-27] (Microsoft Corporation)
Task: {E5DAFE8A-DA05-457C-8C66-DB5A71445323} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache => {E07647F7-AED2-48D9-9720-939BC24A8A3C} C:\Windows\System32\wosc.dll [425984 2025-03-27] (Microsoft Corporation)
Task: {F62E4020-1D8C-4EE0-98E6-F4AF2BB47922} - System32\Tasks\Microsoft\Windows\Input\InputSettingsRestoreDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [344064 2025-03-27] (Microsoft Corporation)
Task: {1A74C99D-4630-4805-9A9C-16F3772296E8} - System32\Tasks\Microsoft\Windows\Input\LocalUserSyncDataAvailable => {8E7C2AFB-72B9-415C-9AC2-5037693309B7} C:\Windows\System32\InputCloudStore.dll [344064 2025-03-27] (Microsoft Corporation)
Task: {D7F90B35-56B6-4632-A050-5B4838D0CCDC} - System32\Tasks\Microsoft\Windows\Input\MouseSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [344064 2025-03-27] (Microsoft Corporation)
Task: {36E56054-1EFC-4D83-94CA-73B61936C2DD} - System32\Tasks\Microsoft\Windows\Input\PenSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [344064 2025-03-27] (Microsoft Corporation)
Task: {9B3F02E7-BB34-4887-8435-DEA09F36A357} - System32\Tasks\Microsoft\Windows\Input\RemoteMouseSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [344064 2025-03-27] (Microsoft Corporation)
Task: {C1273043-288C-4DC6-A29A-0D2E20E424EE} - System32\Tasks\Microsoft\Windows\Input\RemotePenSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [344064 2025-03-27] (Microsoft Corporation)
Task: {8455FD90-8F57-4055-A628-EB84BD7F5314} - System32\Tasks\Microsoft\Windows\Input\RemoteTouchpadSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [344064 2025-03-27] (Microsoft Corporation)
Task: {386A631A-CAE3-48DE-ACFE-3137D4CD1C61} - System32\Tasks\microsoft\windows\input\syncpensettings => {3ECEE215-83F5-4123-A592-74F1FE4C3D59} C:\Windows\System32\SettingsHandlers_Pen.dll [507904 2025-03-27] (Microsoft Corporation)
Task: {71E9856C-647F-4E27-947E-B52B3598C405} - System32\Tasks\Microsoft\Windows\Input\TouchpadSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [344064 2025-03-27] (Microsoft Corporation)
Task: {497E1A38-F975-4158-A775-2A3EB053F644} - System32\Tasks\Microsoft\Windows\InstallService\RestoreDevice => {7F019157-05C8-473F-8664-2BA04A090DC8} C:\Windows\System32\InstallServiceTasks.dll [417792 2025-03-27] (Microsoft Corporation)
Task: {B2301A61-DA96-4438-AF41-9B8864D59F67} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates => {A558C6A5-B42B-4C98-B610-BF9559143139} C:\Windows\System32\InstallServiceTasks.dll [417792 2025-03-27] (Microsoft Corporation)
Task: {53F72FF9-4DB7-4FAB-BB8A-A635EB34E10F} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser => {DDAFAEA2-8842-4E96-BADE-D44A8D676FDB} C:\Windows\System32\InstallServiceTasks.dll [417792 2025-03-27] (Microsoft Corporation)
Task: {086B6188-FDC7-406C-9AC7-C9B32B6E7716} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry => {F3A219C3-2698-4CBF-9C07-037EDB8E72E6} C:\Windows\System32\InstallServiceTasks.dll [417792 2025-03-27] (Microsoft Corporation)
Task: {D4CAFB46-93D5-4E18-AA3D-20DE8826C425} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates => {0DC331EE-8438-49D5-A721-E10B937CE459} C:\Windows\System32\InstallServiceTasks.dll [417792 2025-03-27] (Microsoft Corporation)
Task: {053354A1-BDC4-419C-89B7-EC01731AF165} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates => {D5A04D91-6FE6-4FE4-A98A-FEB4500C5AF7} C:\Windows\System32\InstallServiceTasks.dll [417792 2025-03-27] (Microsoft Corporation)
Task: {824A786C-8D14-4BD5-AE7C-61CCDB4CEEFE} - System32\Tasks\Microsoft\Windows\International\Synchronize Language Settings => {10D62541-90D0-42FE-848C-0DBC1AC42EDA} C:\Windows\System32\CoreGlobConfig.dll [228752 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {863CD78A-0758-4D73-9995-73195045DAEE} - System32\Tasks\Microsoft\Windows\Kernel\La57Cleanup => C:\Windows\system32\la57setup.exe [40960 2025-02-17] (Microsoft Corporation)
Task: {8B909FCF-7BD6-4374-98B7-F5E4513BB8EB} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [237568 2025-03-27] (Microsoft Corporation)
Task: {023A6A90-6810-4BBD-8F9E-AFF9981BD6A4} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\ReconcileLanguageResources => {D0582E3B-3126-4CAA-9155-AC37C912A489}
Task: {3268D6FE-574B-44F4-816D-BBDCA47D058E} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [237568 2025-03-27] (Microsoft Corporation)
Task: {1D65E5D8-2D83-4025-B8B3-0FC2192972B2} - System32\Tasks\Microsoft\Windows\License Manager\TempSignedLicenseExchange => {77646A68-AD14-4D53-897D-7BE4DDE5F929} C:\Windows\System32\TempSignedLicenseExchangeTask.dll [98304 2025-02-17] (Microsoft Corporation)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe  (No File)
Task: {D65186C7-C4E4-43DF-A485-050BBF1DBBF0} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [143360 2025-03-27] (Microsoft Corporation)
Task: {731E952A-D01C-4D49-A37F-C8F1396F13B7} - System32\Tasks\Microsoft\Windows\Maintenance\WinSAT => {A9A33436-678B-4C9C-A211-7CC38785E79D} C:\Windows\system32\WinSATAPI.dll [417792 2025-03-27] (Microsoft Corporation)
Task: {EA454F25-D763-42A3-B501-5F741CAA5BB8} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [221184 2025-03-27] (Microsoft Corporation)
Task: {B385CC07-5D33-4329-847E-1231807E3A1A} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [221184 2025-03-27] (Microsoft Corporation)
Task: {0F79111A-3C39-48C3-9A5E-B9BD89E8D385} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Cellular => C:\Windows\system32\ProvTool.exe [114688 2025-03-11] (Microsoft Corporation)
Task: {17C2E7E1-51B3-4F45-8EA8-3D8334DB66CF} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Logon => C:\Windows\system32\ProvTool.exe [114688 2025-03-11] (Microsoft Corporation)
Task: {33633593-08C9-463E-B57F-0DABB42098C5} - System32\Tasks\Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup => C:\Windows\system32\MdmDiagnosticsTool.exe [90112 2025-03-04] (Microsoft Corporation)
Task: {BAA6BFA5-88F3-4108-BD13-401B4C431121} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Retry => C:\Windows\system32\ProvTool.exe [114688 2025-03-11] (Microsoft Corporation)
Task: {D1B5BFAC-8670-441D-9D56-45F4AFAD548E} - System32\Tasks\Microsoft\Windows\Management\Provisioning\RunOnReboot => C:\Windows\system32\ProvTool.exe [114688 2025-03-11] (Microsoft Corporation)
Task: {D52A78FD-0791-4BF2-8602-D6C4777A145D} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask => {9885AEF2-BD9F-41E0-B15E-B3141395E803} C:\Windows\System32\mapstoasttask.dll [81920 2025-02-17] (Microsoft Corporation)
Task: {3618F5DB-17E6-4B70-BD4A-D3F82EC3B63E} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask => {B9033E87-33CF-4D77-BC9B-895AFBBA72E4} C:\Windows\System32\mapsupdatetask.dll [77824 2025-02-17] (Microsoft Corporation)
Task: {A6FDA70F-1538-4C40-87F6-F6C425C7B582} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents => {8168E74A-B39F-46D8-ADCD-7BED477B80A3} C:\Windows\System32\MemoryDiagnostic.dll [61440 2025-02-17] (Microsoft Corporation)
Task: {98F829B4-2C58-4F4A-B514-12BBD25B769D} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic => {8168E74A-B39F-46D8-ADCD-7BED477B80A3} C:\Windows\System32\MemoryDiagnostic.dll [61440 2025-02-17] (Microsoft Corporation)
Task: {8974D66A-7871-4688-9C1C-161573A419A4} - System32\Tasks\Microsoft\Windows\MUI\LPRemove => C:\Windows\system32\lpremove.exe [94208 2025-03-27] (Microsoft Corporation)
Task: {1C88B08F-C544-4B23-869D-D5050316AC18} - System32\Tasks\Microsoft\Windows\Multimedia\SystemSoundsService => {2DEA658F-54C1-4227-AF9B-260AB5FC3543} C:\Windows\System32\PlaySndSrv.dll [147456 2025-03-27] (Microsoft Corporation)
Task: {B8AE930D-D1A3-4BE8-A42B-51308A375CB8} - System32\Tasks\Microsoft\Windows\Network Connectivity Status Indicator\NcsiIdentifyUserProxies => {706B965A-8308-4CD4-9900-87C2D79C121B} C:\Windows\System32\netprofm.dll [409600 2025-02-17] (Microsoft Corporation)
Task: {5B35F89B-B670-40F3-8121-E0D9D51579A6} - System32\Tasks\Microsoft\Windows\NlaSvc\WiFiTask => C:\Windows\System32\WiFiTask.exe [185776 2025-02-17] (Microsoft Windows -> Microsoft Corporation)
Task: {CED5DEDA-F8B9-44B2-AEF0-0279B4A4D827} - System32\Tasks\Microsoft\Windows\Offline Files\Background Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\Windows\System32\cscui.dll [835584 2025-03-27] (Microsoft Corporation)
Task: {41316A69-F568-4620-82E2-A3BDA6BC7113} - System32\Tasks\Microsoft\Windows\Offline Files\Logon Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\Windows\System32\cscui.dll [835584 2025-03-27] (Microsoft Corporation)

steaf 05.04.2025 20:52
Code:

Task: {EC4E1419-ADE4-4C7B-B3E1-C4DE54F3DBA8} - System32\Tasks\Microsoft\Windows\PerformanceTrace\RequestTrace => {9EFEB182-2EE3-4AF9-AFFA-521410D110D1} C:\Windows\system32\PerformanceTraceHandler.dll [114688 2025-02-17] (Microsoft Corporation)
Task: {D3E91CFD-3F77-4E69-8792-74DA3072DF53} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\Windows\system32\TpmTasks.dll [516096 2025-03-27] (Microsoft Corporation)
Task: {13C8E3C8-EBDB-40A5-BF15-9E2FFB1D19CE} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\Windows\system32\TpmTasks.dll [516096 2025-03-27] (Microsoft Corporation)
Task: {32223710-817E-4F06-B592-FC3E9148C7B6} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy => {60400283-B242-4FA8-8C25-CAF695B88209} C:\Windows\System32\pnppolicy.dll [90112 2025-02-17] (Microsoft Corporation)
Task: {C37138D9-47FB-429C-B098-33C5BE461E3E} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required => {48794782-6A1F-47B9-BD52-1D5F95D49C1B} C:\Windows\System32\pnpui.dll [77824 2024-04-01] (Microsoft Windows -> Microsoft Corporation)
Task: {BC910DFC-AF38-44AE-80B7-36504BAE7749} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\Windows\System32\drvinst.exe [458752 2025-03-27] (Microsoft Corporation)
Task: {F3475DC3-625B-48EA-B471-DDB64F03977D} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem => {927EA2AF-1C54-43D5-825E-0074CE028EEE} C:\Windows\System32\energytask.dll [53248 2024-04-01] (Microsoft Corporation)
Task: {89CB1F37-7249-46BB-8136-2A842FD64BCE} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProv => C:\Windows\system32\eduprintprov.exe [143360 2025-03-27] (Microsoft Corporation)
Task: {5297A9C1-50B4-4FAF-B986-96493046DA3F} - System32\Tasks\Microsoft\Windows\Printing\PrinterCleanupTask => {C56F065E-DE49-4E42-BE7C-305C45609D25} C:\Windows\System32\PrinterCleanupTask.dll [163840 2025-03-27] (Microsoft Corporation)
Task: {694CFE9E-EF92-4F44-880A-613DBB5A32F1} - System32\Tasks\Microsoft\Windows\Printing\PrintJobCleanupTask => {8ABCE260-32B6-476C-AE13-B34D0C91292D} C:\Windows\System32\PrinterCleanupTask.dll [163840 2025-03-27] (Microsoft Corporation)
Task: {B1148F18-8331-42C8-BDF4-036D6F18EEEC} - System32\Tasks\Microsoft\Windows\PushToInstall\LoginCheck => C:\Windows\system32\sc.exe [102400 2025-02-17] (Microsoft Corporation) -> start pushtoinstall login
Task: {140C2740-0C12-4327-B5FA-ABD338B4076D} - System32\Tasks\Microsoft\Windows\PushToInstall\Registration => C:\Windows\system32\sc.exe [102400 2025-02-17] (Microsoft Corporation) -> start pushtoinstall registration
Task: {C90F18E7-745C-44E7-9D02-463B6BE97450} - System32\Tasks\Microsoft\Windows\Ras\MobilityManager => {C463A0FC-794F-4FDF-9201-01938CEACAFA} C:\Windows\system32\rasmbmgr.dll [90112 2024-04-01] (Microsoft Windows -> Microsoft Corporation)
Task: {35F07B74-3228-49B0-AFAA-1AAA5AD480A7} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE => {89D1D0C2-A3CF-490C-ABE3-B86CDE34B047} C:\Windows\System32\ReAgentTask.dll [40960 2025-02-17] (Microsoft Corporation)
Task: {FD953D65-B217-4C79-946C-40F34EA51665} - System32\Tasks\Microsoft\Windows\ReFsDedupSvc\Initialization => {DCFF735B-64F7-45F3-B39C-6C66BBE2120F} C:\Windows\System32\ReFsDedupSvc.exe [2228224 2025-03-27] (Microsoft Corporation)
Task: {81A02E60-1890-47D6-AA36-4416EDF073FE} - System32\Tasks\Microsoft\Windows\Registry\RegIdleBackup => {CA767AA8-9157-4604-B64B-40747123D5F2} C:\Windows\System32\regidle.dll [40960 2024-04-01] (Microsoft Corporation)
Task: {76BDF487-DB81-45B2-8D85-7BE3A77647B9} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\Windows\system32\RAServer.exe [159744 2025-02-17] (Microsoft Corporation) -> %windir%\/offerraupdate
Task: {27CE9D59-9D48-4D29-99BC-64657AEBA494} - System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask => {8702A841-D5CA-47C3-812D-9CEDC304C200}
Task: {7518AA78-ED94-4CF6-B647-DE555E01768A} - System32\Tasks\Microsoft\Windows\Servicing\OOBEFodSetup => C:\Windows\system32\OOBEFodSetup.exe [40960 2025-02-17] (Microsoft Corporation)
Task: {3103A74F-970C-4D84-A348-24D2450F72A3} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => {752073A1-23F2-4396-85F0-8FDB879ED0ED} C:\Windows\servicing\TrustedInstaller.exe [271776 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {6E9522D4-5ECB-478B-90ED-91561B8D4524} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => {7750564D-D61C-4557-8A9D-7DF56BDCFF96}
Task: {9E61170E-82C0-4506-9499-699611AE7BF9} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask => {990A9F8F-301F-45F7-8D0E-68C5952DBA43} C:\Windows\system32\shell32.dll [7554800 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {1577E872-F23F-41CA-9935-97CC72D6A015} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\Windows\System32\wpcmon.exe [1224576 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {3F29C71B-509E-45C9-B4B0-CC08875EA007} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask => {C844C79D-AED8-4DCE-AB25-4D359BED84F8} C:\Windows\System32\WpcRefreshTask.dll [1073152 2025-03-27] (Microsoft Corporation)
Task: {CB3FE234-86FD-480D-B99F-8D64B8CD2FCA} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance => {3FBA60A6-7BF5-4868-A2CA-6623B3DFFEA6} C:\Windows\System32\srchadmin.dll [323584 2025-03-27] (Microsoft Corporation)
Task: {BAAD3A4A-D43E-4282-8FF8-DB4C1FE0D633} - System32\Tasks\Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState => {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} C:\Windows\System32\Windows.UI.Immersive.dll [1355776 2025-03-27] (Microsoft Corporation)
Task: {623E8262-63F5-4D54-B90B-09D21A347C4B} - System32\Tasks\Microsoft\Windows\Shell\ThemesSyncedImageDownload => {79F8E185-4E45-4B74-8182-02AA430661E4} C:\Windows\System32\Themes.SsfDownload.ScheduledTask.dll [184320 2025-03-27] (Microsoft Corporation)
Task: {1ADC697A-24A7-4976-BDF2-26642DD9EDFF} - System32\Tasks\Microsoft\Windows\Shell\UpdateUserPictureTask => {09C5DD34-009D-40FA-BCB9-0165AD0C15D4} C:\Windows\System32\Windows.UI.Immersive.dll [1355776 2025-03-27] (Microsoft Corporation)
Task: {EBBD491B-D054-4669-AB31-07F0B5970A6F} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\Windows\System32\sppcext.dll [659456 2025-03-27] (Microsoft Corporation)
Task: {5FFBF5D5-77BD-42D7-A505-01FCE106375A} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\Windows\System32\sppcext.dll [659456 2025-03-27] (Microsoft Corporation)
Task: {9B410F40-12C4-4D00-9590-9F7837C2FE4E} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\Windows\System32\sppcext.dll [659456 2025-03-27] (Microsoft Corporation)
Task: {5D30627B-A7A3-4C57-9B4D-05976FBC73CF} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\Windows\system32\SpaceAgent.exe [245760 2025-03-27] (Microsoft Corporation)
Task: {DB50AD04-05BC-474F-93EB-C341D19BC4DB} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceManagerTask => C:\Windows\system32\spaceman.exe [112072 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {E6C7550D-E55B-4429-B9DF-F0802C7E96F1} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\Windows\system32\speech_onecore\common\SpeechModelDownload.exe [217088 2025-03-27] (Microsoft Corporation)
Task: {E514D19D-6BC0-4298-A90D-AA41B59396A1} - System32\Tasks\Microsoft\Windows\StateRepository\MaintenanceTasks => C:\Windows\system32\rundll32.exe [90112 2025-03-27] (Microsoft Corporation) -> %windir%\system32\Windows.StateRepositoryClient.dll,StateRepositoryDoMaintenanceTasks
Task: {D8BCE74A-1F26-46E6-9D24-84BF4ABBA4D3} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Management Initialization => {5C9AB547-345D-4175-9AF6-65133463A100} C:\Windows\System32\TieringEngineService.exe [348160 2025-02-17] (Microsoft Corporation)
Task: {8937A0CF-1957-42EF-BC56-4A45225A53CB} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization => C:\Windows\system32\defrag.exe [241664 2025-02-17] (Microsoft Corp.)
Task: {1F521760-5D6E-4F13-9513-6B60E16B038C} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\Windows\system32\ClipRenew.exe [169376 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {4620F382-47BE-45D9-A8A0-3B89E97C977B} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\Windows\system32\ClipRenew.exe [169376 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {6B549F30-9F73-486A-9FFB-D9A4B9B0B516} - System32\Tasks\Microsoft\Windows\Sustainability\PowerGridForecastTask => {251E5B1F-E370-4E12-B5BD-B7AD2A8EE810} C:\Windows\system32\PowerGridForecastTask.dll [352256 2025-03-27] (Microsoft Corporation)
Task: {022B140D-3C16-4F00-A41D-F9E2BB726D3A} - System32\Tasks\Microsoft\Windows\Sustainability\SustainabilityTelemetry => {6EE41D75-D091-4FB7-9AD5-018760DD25D4} C:\Windows\system32\EcoScoreTask.dll [90112 2025-03-27] (Microsoft Corporation)
Task: {A6CC9955-DA1C-40A6-AADF-620FAF810BA6} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate => {17C82257-654E-4C47-8E23-DCA24EAA76A0} C:\Windows\system32\sysmain.dll [1007616 2025-03-27] (Microsoft Corporation)
Task: {7793D1DA-8479-4F54-9C92-B8A43BDF293F} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance => {D44377B8-1F2F-4FAA-9C8E-6C4AD2928E47} C:\Windows\system32\sysmain.dll [1007616 2025-03-27] (Microsoft Corporation)
Task: {0A3D2698-8228-462D-A139-FA1DD68CE37D} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync => {297EE78C-BA95-4E94-81D3-D6E7F089C7B5} C:\Windows\system32\sysmain.dll [1007616 2025-03-27] (Microsoft Corporation)
Task: {A49BC374-394E-43D1-A5A7-2B1EE849351E} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\Windows\system32\rundll32.exe [90112 2025-03-27] (Microsoft Corporation) -> sysmain.dll,PfSvWsSwapAssessmentTask
Task: {B757E9B6-9B2B-44AF-B8AD-2BBD5CFB1671} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe [81920 2024-04-01] (Microsoft Corporation)
Task: {B9DBE743-6F45-488B-AF39-2CD4016D60A7} - System32\Tasks\Microsoft\Windows\Task Manager\Interactive => {855FEC53-D2E4-4999-9E87-3414E9CF0FF4} C:\Windows\system32\wdc.dll [835584 2025-03-27] (Microsoft Corporation)
Task: {6E2FF6C7-5CB1-44F3-B28F-54ED797AC95B} - System32\Tasks\Microsoft\Windows\TextServicesFramework\MsCtfMonitor => {01575CFE-9A55-4003-A5E1-F38D1EBDCBE1} C:\Windows\system32\MsCtfMonitor.dll [102400 2025-03-27] (Microsoft Corporation)
Task: {BE34C44D-1192-446D-AE35-7C9214A07A0A} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime => {A31AD6C2-FF4C-43D4-8E90-7101023096F9} C:\Windows\system32\TimeSyncTask.dll [45056 2025-02-17] (Microsoft Corporation)
Task: {B4EC4778-2619-41D7-A0EF-A5558FFF1ADC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => C:\Windows\system32\sc.exe [102400 2025-02-17] (Microsoft Corporation) -> start w32time task_started
Task: {2A17D950-8899-44EB-89E5-405C0B59D9C2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [215552 2025-03-27] (Microsoft Corporation)
Task: {00EBF875-BF53-4541-9B62-424E1EAAD810} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\Windows\system32\TpmTasks.dll [516096 2025-03-27] (Microsoft Corporation)
Task: {B7386614-31B6-4630-8E64-59FBE50E0B30} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\Windows\system32\TpmTasks.dll [516096 2025-03-27] (Microsoft Corporation)
Task: {13DED528-A9B4-43B4-9F05-3F174A151966} - System32\Tasks\Microsoft\Windows\TPM\Tpm-PreAttestationHealthCheck => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\Windows\system32\TpmTasks.dll [516096 2025-03-27] (Microsoft Corporation)
Task: {87555B29-C0C2-44E3-87F3-A0BD06278F9E} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => C:\Windows\System32\UNP\UpdateNotificationMgr.exe [402864 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {EC2A03E8-2F81-4030-A3A7-53DAC1DB0E2D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Report policies => C:\Windows\system32\usoclient.exe [86016 2025-02-17] (Microsoft Corporation)
Task: {C568DBD8-A664-490F-BE1B-E8D732853080} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work => C:\Windows\system32\usoclient.exe [86016 2025-02-17] (Microsoft Corporation)
Task: {F4C10EBD-AF88-4BBC-8D69-DC39F8A4C3DE} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\Windows\system32\usoclient.exe [86016 2025-02-17] (Microsoft Corporation)
Task: {0F95DB85-8F35-4B2A-93DE-E4A31A713F54} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan Static Task => C:\Windows\system32\usoclient.exe [86016 2025-02-17] (Microsoft Corporation)
Task: {13DEA84D-867F-46C7-A184-ABE3D6B6A635} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work => C:\Windows\system32\usoclient.exe [86016 2025-02-17] (Microsoft Corporation)
Task: {32F49353-DA49-4BBF-B940-B928C744D0BB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Work => C:\Windows\system32\usoclient.exe [86016 2025-02-17] (Microsoft Corporation)
Task: {0AF6A994-1B3A-4B10-B485-9753CE6DF6A4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Start Oobe Expedite Work => C:\Windows\system32\usoclient.exe [86016 2025-02-17] (Microsoft Corporation)
Task: {EDC62534-48CF-4D30-A263-32780ED68B57} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\StartOobeAppsScan_LicenseAccepted => C:\Windows\system32\usoclient.exe [86016 2025-02-17] (Microsoft Corporation)
Task: {DD6E2608-767B-4449-BB55-45CAD83FADA4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\StartOobeAppsScanAfterUpdate => C:\Windows\system32\usoclient.exe [86016 2025-02-17] (Microsoft Corporation)
Task: {E9D364A3-AB0B-4A8E-AB6B-26976932A494} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UIEOrchestrator => C:\Windows\system32\UIEOrchestrator.exe [336816 2025-02-17] (Microsoft Windows -> )
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (No File)
Task: {AE889AF2-B6E2-4941-8C89-FCD4EB658F9B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UUS Failover Task => C:\Windows\System32\MLEngineStub.exe [86016 2025-02-17] (Microsoft Corporation)
Task: {6CA8B686-3177-4FF3-86AB-EA5ECCAE64E3} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => C:\Windows\system32\sc.exe [102400 2025-02-17] (Microsoft Corporation) -> config upnphost start= auto
Task: {C4976E90-6B5C-45B9-ACA5-7F5CC2044584} - System32\Tasks\Microsoft\Windows\USB\Usb-Notifications => {E05BE1C8-92A8-4757-B575-ACAECB4E6A40} C:\Windows\System32\UsbTask.dll [90112 2025-02-17] (Microsoft Corporation)
Task: {25D10847-F3F9-4477-8F94-B56D3179716D} - System32\Tasks\Microsoft\Windows\User Profile Service\HiveUploadTask => {BA677074-762C-444B-94C8-8C83F93F6605} C:\Windows\system32\profsvc.dll [589824 2025-03-27] (Microsoft Corporation)
Task: {A91D9E09-D584-45C3-BED9-3CA4749CCCBB} - System32\Tasks\Microsoft\Windows\WaaSMedic\DeferredWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {D2E8BEB4-6AC1-4881-8DAD-33150CE72101} - System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {2C0B586A-AC15-4863-A89E-664DEF94EC3F} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\Windows\System32\WiFiTask.exe [185776 2025-02-17] (Microsoft Windows -> Microsoft Corporation)
Task: {4C63A334-2548-434D-8B00-16514798798F} - System32\Tasks\Microsoft\Windows\WDI\ResolutionHost => {900BE39D-6BE8-461A-BC4D-B0FA71F5ECB1} C:\Windows\System32\wdi.dll [118784 2024-04-01] (Microsoft Corporation)
Task: {03688314-22A9-4886-8748-B24C90606E5D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8A2EF93B-FB60-45B5-ACF9-A4577CFCFB90} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6D28973A-4569-408A-9CBF-46C5371F88D9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DEB5E3EE-0205-4784-8BFE-0C8694AAC879} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6FD85B93-7A13-4DCA-B793-1D7D18FEAC39} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting => C:\Windows\system32\wermgr.exe [292256 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {70EA4628-714E-4EA6-A8A7-FA417104A9CA} - System32\Tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange => C:\Windows\system32\rundll32.exe [90112 2025-03-27] (Microsoft Corporation) -> bfe.dll,BfeOnServiceStartTypeChange
Task: {D391DC07-240D-4F93-9599-64C727DCC2D5} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe [98304 2025-02-17] (Microsoft Corporation)
Task: {47280794-6FA6-4302-8DA5-F7AD59555015} - System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader => {B210D694-C8DF-490D-9576-9E20CDBC20BD} C:\Windows\System32\mscms.dll [832032 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {95425085-1A14-4B85-9028-E50D0FC160B4} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [154056 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {A0FB6F87-FEC5-46F8-843B-B58DD5E06AD6} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start => C:\Windows\System32\sc.exe [102400 2025-02-17] (Microsoft Corporation) -> start wuauserv
Task: {624E1293-9271-4BE0-B2E5-41A4A5154081} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask => {0358B920-0AC7-461F-98F4-58E32CD89148} C:\Windows\system32\wininet.dll [2650120 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {0C9E24B1-FA69-4154-B7F3-041454657229} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync => {B0D2B535-12E1-439F-86B3-BADA289510F0} C:\Windows\System32\WiFiCloudStore.dll [376832 2025-03-27] (Microsoft Corporation)
Task: {67121E94-8B59-4246-A2CE-D5C90ED9C316} - System32\Tasks\Microsoft\Windows\WlanSvc\MoProfileManagement => {085EDA12-CF4A-4944-8222-8ADCADE137CB} C:\Windows\System32\WlanMediaManager.dll [864256 2025-03-27] (Microsoft Corporation)
Task: {A9CF92E8-55AE-4F6C-902C-CDD3D508ADF1} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\Windows\system32\WofTasks.dll [57344 2025-02-17] (Microsoft Corporation)
Task: {B0CCA046-F56C-428C-9757-142B00CB85C3} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\Windows\system32\WofTasks.dll [57344 2025-02-17] (Microsoft Corporation)
Task: {D52E4D54-C543-4C19-B06C-B9411C742A3D} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization => {97D47D56-3777-49FB-8E8F-90D7E30E1A1E} C:\Windows\System32\WorkFoldersShell.dll [237568 2025-02-17] (Microsoft Corporation)
Task: {CD1B7A49-CAE5-4580-88A1-E40C34CFF87F} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work => {63260BCE-A3FB-4A34-AA51-D4D8E877B62B} C:\Windows\System32\WorkFoldersShell.dll [237568 2025-02-17] (Microsoft Corporation)
Task: {ABE99E23-4D6E-4AB2-B67C-0E57C1BC2D10} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [520192 2025-03-27] (Microsoft Corporation)
Task: {34302CB6-1B34-4AC0-B652-672CDD164780} - System32\Tasks\Microsoft\Windows\Workplace Join\Device-Sync => {C662D912-E4D6-44A3-89A0-20550514951D} C:\Windows\System32\dsregtask.dll [77824 2025-03-27] (Microsoft Corporation)
Task: {A47C623F-DBF2-42C4-887A-4BFE7AAAEC6D} - System32\Tasks\Microsoft\Windows\Workplace Join\Recovery-Check => C:\Windows\System32\dsregcmd.exe [520192 2025-03-27] (Microsoft Corporation)
Task: {73EA68AF-816A-4184-9D0D-BD9F95777E69} - System32\Tasks\Microsoft\Windows\WwanSvc\NotificationTask => C:\Windows\System32\WiFiTask.exe [185776 2025-02-17] (Microsoft Windows -> Microsoft Corporation)
Task: {D6202CD9-DA83-4CCD-8770-2D23C3500179} - System32\Tasks\Microsoft\Windows\WwanSvc\OobeDiscovery => {C93CF9D5-031B-4AAA-AB0B-EF802347B381} C:\Windows\System32\MBMediaManager.dll [581632 2025-03-27] (Microsoft Corporation)
Task: {08096759-0895-4572-A56D-BF687397A9DF} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\Windows\System32\XblGameSaveTask.exe [61440 2025-02-17] (Microsoft Corporation)
Task: {EFC237A4-EC58-4492-B315-8CFE0A0F0E54} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [215992 2022-04-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {8105BA52-EF82-47E7-A000-096258F1FDA9} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [215992 2022-04-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {DAF7B40B-1472-4A4F-907A-23D72FADF874} - System32\Tasks\MonitorMicroKey => C:\Program Files\GamingIntelligence\MonitorMicroKeyDetector.exe [101520 2024-02-21] (Micro-Star International CO., LTD. -> MSI)
Task: {6EB7AE91-E6AB-479F-A64A-F11094905B0A} - System32\Tasks\MonitorMysticLight => C:\Program Files\GamingIntelligence\MysticLight\MysticLightController.exe [31376 2024-02-21] (Micro-Star International CO., LTD. -> )
Task: {8ADAB363-5D76-4B0D-B0D4-EBD8AAE311EB} - System32\Tasks\MonitorWeatherDetector => C:\Program Files\GamingIntelligence\WeatherDetector.exe [43664 2024-02-21] (Micro-Star International CO., LTD. -> MSI)
Task: {2891745E-4241-4CA6-85ED-11BA4B1E4AF8} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34880 2025-04-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {FE1AF715-36DE-4CB3-BA73-3D297E36DC9B} - System32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe [3287072 2025-02-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2275554B-E300-4107-99E7-142401404A95} - System32\Tasks\OSDAppAutoStartUp => C:\Program Files\GamingIntelligence\GamingIntelligence.exe [15056528 2024-02-21] (Micro-Star International CO., LTD. -> MICRO-STAR INT'L,.LTD.)
Task: {273ABDB9-B3FA-437E-A609-C43CFB1A5238} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\System32\Wscript.exe [200704 2025-03-27] (Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {5614B5AF-8C46-4FFC-A108-7A2B14E9B39A} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2000400401-3484457797-169236058-1001 => C:\Users\quart\AppData\Roaming\Zoom\bin\Zoom.exe [436024 2025-04-02] (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\MATLAB R2023a Startup Accelerator.job => C:\Program Files\MATLAB\R2023a\bin\win64\MATLABStartupAccelerator.exe C:\Program Files\MATLAB\R2023aCORTEX\quart.Sta

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 aakore; C:\Program Files (x86)\Common Files\Acronis\Agent\aakore.exe [18738640 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
S2 AcronisActiveProtectionService; C:\Program Files\Common Files\Acronis\ActiveProtection\active_protection_service.exe [13032744 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
S2 AcronisCyberProtectionService; C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe [1429240 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
S2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1871296 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2024-12-18] (Adobe Inc. -> Adobe Inc.)
S2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6354456 2025-01-27] (Acronis International GmbH -> Acronis International GmbH)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\135.1.77.95\elevation_service.exe [3520528 2025-04-02] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
S2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13860056 2025-04-01] (Microsoft Corporation -> Microsoft Corporation)
S2 DolbyDAXAPI; C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_d59c8b8a329853e4\DAX3API.exe [1906648 2020-09-23] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [47000 2025-02-19] (Intel Corporation -> Intel)
S2 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [330136 2025-02-19] (Intel Corporation -> Intel)
S3 EpicGamesUpdater; C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesUpdater.exe [3064848 2025-04-04] (Epic Games Inc. -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [368088 2025-01-31] (Epic Games Inc. -> Epic Games, Inc.)
S2 FMAPOService; C:\Windows\System32\FMService64.exe [343928 2020-09-04] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S2 ImControllerService; C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
S2 LenovoFnAndFunctionKeys; C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_fa50a878363b0cec\LenovoUtilityService.exe [182272 2025-02-20] (Lenovo -> Lenovo)
S2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe [34816 2025-02-20] (Lenovo -> Lenovo)
S2 LITSSVC; C:\Windows\System32\LNBITSSvc.exe [1831672 2022-08-17] (Lenovo -> Lenovo(beijing) Limited)
S2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe [2009608 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4896488 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3087408 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [2256424 2025-01-17] (Acronis International GmbH -> )
S2 NIHostIntegrationAgent; C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe [27580128 2024-05-07] (Native Instruments GmbH -> Native Instruments GmbH)
S2 NTKDaemonService; C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe [16895200 2024-09-09] (Native Instruments GmbH -> Native Instruments GmbH)
S2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_071505319ec619da\Display.NvContainer\NVDisplay.Container.exe [1275560 2025-03-04] (NVIDIA Corporation -> NVIDIA Corporation)
S2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [22443400 2025-03-28] (Logitech Inc -> Logitech, Inc.)
S2 PCManager Service Store; C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.16.2.0_x64__8wekyb3d8bbwe\PCManager\MSPCManagerService.exe [87584 2025-03-21] (MSPCManagerService)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [5209072 2024-02-09] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559328 2025-03-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 SmartSense; C:\Windows\System32\DriverStore\FileRepository\lnvsst.inf_amd64_f352f4254b85e733\SmartSense.exe [209768 2024-06-19] (Lenovo -> Lenovo)
S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [550912 2025-03-04] ()
S2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2022-10-04] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2022-10-04] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7377624 2024-12-12] (Acronis International GmbH -> )
S2 TbtP2pShortcutService; C:\Windows\TbtP2pShortcutService.exe [252296 2021-03-17] (Intel Thunderbolt(TM) Technology -> )
S3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [5921232 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
S2 TISmartAmpService; C:\Windows\System32\TISmartAmpService.exe [537072 2020-06-17] (Texas Instruments Inc. -> Texas Instuments)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe [4538400 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe [278320 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WsaService; C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForAndroid_2407.40000.4.0_x64__8wekyb3d8bbwe\WsaService\WsaService.exe [320512 2024-12-18] ()

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 1394ohci; C:\Windows\System32\drivers\1394ohci.sys [294912 2025-02-17] (Microsoft Corporation)
S3 AcpiDev; C:\Windows\System32\drivers\AcpiDev.sys [65536 2025-03-27] (Microsoft Corporation)
S3 acpipagr; C:\Windows\System32\DriverStore\FileRepository\acpipagr.inf_amd64_d1093347a27ff89c\acpipagr.sys [49152 2025-02-17] (Microsoft Corporation)
S3 AcpiPmi; C:\Windows\System32\DriverStore\FileRepository\acpipmi.inf_amd64_3ced06eb61dcc792\acpipmi.sys [53248 2025-02-17] (Microsoft Corporation)
S3 acpitime; C:\Windows\System32\drivers\acpitime.sys [57344 2025-02-17] (Microsoft Corporation)
S3 acsock; C:\Windows\system32\DRIVERS\acsock64.sys [310216 2023-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Cisco Systems, Inc.)
S3 Acx01000; C:\Windows\System32\drivers\Acx01000.sys [745472 2025-03-27] (Microsoft Corporation)
S1 afunix; C:\Windows\system32\drivers\afunix.sys [81920 2025-02-17] (Microsoft Corporation)
S1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [32256 2024-04-01] (Microsoft Corporation)
S1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [368640 2025-03-27] (Microsoft Corporation)
S3 applockerfltr; C:\Windows\System32\drivers\applockerfltr.sys [49152 2025-02-17] (Microsoft Corporation)
S3 AsyncMac; C:\Windows\System32\drivers\asyncmac.sys [61440 2025-02-17] (Microsoft Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [9728 2024-04-01] (Windows (R) Win 7 DDK provider)
S2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [800672 2024-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S1 Beep; C:\Windows\System32\Drivers\Beep.sys [40960 2024-04-01] (Microsoft Corporation)
S3 bomebus; C:\Windows\System32\drivers\bomebus.sys [56376 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
S3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [159744 2025-03-04] (Microsoft Corporation)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [573440 2025-03-27] (Microsoft Corporation)
S3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [143360 2025-03-27] (Microsoft Corporation)
S3 BthHFAud; C:\Windows\System32\drivers\BthHfAud.sys [126976 2025-03-27] (Microsoft Corporation)
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [204800 2025-03-27] (Microsoft Corporation)
S3 BthLEEnum; C:\Windows\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [151552 2025-03-27] (Microsoft Corporation)
S3 BthMini; C:\Windows\System32\drivers\BTHMINI.sys [86016 2025-03-27] (Microsoft Corporation)
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [110592 2025-02-17] (Microsoft Corporation)
S3 BthPan; C:\Windows\System32\drivers\bthpan.sys [159744 2025-02-17] (Microsoft Corporation)
S3 BTHPORT; C:\Windows\System32\drivers\BTHport.sys [2289664 2025-03-27] (Microsoft Corporation)
S3 BTHUSB; C:\Windows\System32\drivers\BTHUSB.sys [139264 2025-03-27] (Microsoft Corporation)
S3 buttonconverter; C:\Windows\System32\drivers\buttonconverter.sys [90112 2025-02-17] (Microsoft Corporation)
S3 CDD; C:\Windows\System32\cdd.dll [335872 2025-03-27] (Microsoft Corporation)
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [131072 2025-02-17] (Microsoft Corporation)
S1 cdrom; C:\Windows\System32\drivers\cdrom.sys [221184 2025-02-17] (Microsoft Corporation)
S3 circlass; C:\Windows\System32\drivers\circlass.sys [90112 2025-02-17] (Microsoft Corporation)
S2 CldFlt; C:\Windows\System32\drivers\cldflt.sys [585728 2025-03-27] (Microsoft Corporation)
S3 CmBatt; C:\Windows\System32\drivers\CmBatt.sys [94208 2025-03-27] (Microsoft Corporation)
S3 devmap; C:\Windows\System32\DriverStore\FileRepository\devmap.inf_amd64_1993197f4612e967\devmap.sys [53248 2025-02-17] (Microsoft Corporation)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-10-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 DisplayMux; C:\Windows\System32\DriverStore\FileRepository\displaymux.inf_amd64_da65a70f0c3ce0f3\DisplayMux.sys [57344 2025-02-17] (Microsoft Corporation)
S3 droidvcam0_aud0; C:\Windows\System32\DriverStore\FileRepository\droidcamaudio.inf_amd64_f08960db84657665\droidcamaudio.sys [33808 2022-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 droidvcam0_vid0; C:\Windows\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_b02e702c2d1e7e03\droidcamvideo.sys [136360 2025-01-28] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 ErrDev; C:\Windows\System32\drivers\errdev.sys [53248 2025-02-17] (Microsoft Corporation)
S3 fdc; C:\Windows\System32\drivers\fdc.sys [69632 2025-02-17] (Microsoft Corporation)
S1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [94208 2025-02-17] (Microsoft Corporation)
S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [73728 2025-02-17] (Microsoft Corporation)
S2 file_protector; C:\Windows\System32\DRIVERS\file_protector.sys [944648 2025-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [389616 2025-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S0 fltsrv; C:\Windows\System32\DRIVERS\fltsrv.sys [179200 2025-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S0 fse; C:\Windows\System32\drivers\fse.sys [222528 2025-02-17] (Microsoft Windows -> Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_7c70b7fb8f0e88ff\genericusbfn.sys [61440 2025-02-17] (Microsoft Corporation)
S2 googledrivefs31626; C:\Program Files\Google\Drive File Stream\Drivers\31626\googledrivefs31626.sys [384096 2024-07-25] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 HdAudAddService; C:\Windows\System32\drivers\HdAudio.sys [532480 2025-03-27] (Microsoft Corporation)
S3 HDAudBus; C:\Windows\System32\drivers\HDAudBus.sys [200704 2025-03-27] (Microsoft Corporation)
S3 HidBth; C:\Windows\System32\drivers\hidbth.sys [155648 2025-02-17] (Microsoft Corporation)
S3 hidi2c; C:\Windows\System32\drivers\hidi2c.sys [118784 2025-02-17] (Microsoft Corporation)
S3 HidIr; C:\Windows\System32\drivers\hidir.sys [81920 2025-02-17] (Microsoft Corporation)
S3 hidspi; C:\Windows\System32\drivers\hidspi.sys [139264 2025-02-17] (Microsoft Corporation)
S3 HidSpiCx; C:\Windows\System32\drivers\HidSpiCx.sys [131072 2025-02-17] (Microsoft Corporation)
S3 HidUsb; C:\Windows\System32\drivers\hidusb.sys [81920 2025-03-27] (Microsoft Corporation)
S3 HwNClx0101; C:\Windows\System32\Drivers\mshwnclx.sys [61440 2025-02-17] (Microsoft Corporation)
S3 i8042prt; C:\Windows\System32\drivers\i8042prt.sys [155648 2025-02-17] (Microsoft Corporation)
S3 IndirectKmd; C:\Windows\System32\drivers\IndirectKmd.sys [86016 2025-02-17] (Microsoft Corporation)
S3 intelpmax; C:\Windows\System32\drivers\intelpmax.sys [65536 2025-02-17] (Microsoft Corporation)
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [118784 2025-02-17] (Microsoft Corporation)
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [253952 2025-02-17] (Microsoft Corporation)
S3 kbdhid; C:\Windows\System32\drivers\kbdhid.sys [77824 2025-02-17] (Microsoft Corporation)
S3 KslD; C:\Windows\System32\drivers\wd\KslD.sys [331168 2025-03-31] (Microsoft Windows -> Microsoft Corporation)
S3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [73728 2025-03-27] (Microsoft Corporation)
S2 l1vhlwf; C:\Windows\System32\drivers\l1vhlwf.sys [144840 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
S2 lltdio; C:\Windows\System32\drivers\lltdio.sys [106496 2025-03-27] (Microsoft Corporation)
S2 luafv; C:\Windows\system32\drivers\luafv.sys [184320 2025-03-27] (Microsoft Corporation)
S3 MbbCx; C:\Windows\System32\drivers\MbbCx.sys [491520 2025-03-27] (Microsoft Corporation)
S3 mc2avs; C:\Windows\System32\Drivers\mc2avs.sys [358520 2012-06-06] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 mc2usb_svc; C:\Windows\System32\Drivers\mc2usb.sys [81016 2012-06-06] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 Microsoft_Bluetooth_AvrcpTransport; C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [122880 2025-03-27] (Microsoft Corporation)
S2 MMCSS; C:\Windows\system32\drivers\mmcss.sys [90112 2025-02-17] (Microsoft Corporation)
S3 Modem; C:\Windows\System32\drivers\modem.sys [81920 2025-02-17] (Microsoft Corporation)
S3 monitor; C:\Windows\System32\drivers\monitor.sys [122880 2025-03-27] (Microsoft Corporation)
S3 mouhid; C:\Windows\System32\drivers\mouhid.sys [69632 2025-02-17] (Microsoft Corporation)
S3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [114688 2025-02-17] (Microsoft Corporation)
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [196608 2025-02-17] (Microsoft Corporation)
S3 MsBridge; C:\Windows\System32\drivers\bridge.sys [163840 2025-02-17] (Microsoft Corporation)
S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [49152 2025-02-17] (Microsoft Corporation)
S3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [49152 2025-02-17] (Microsoft Corporation)
S3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [81920 2025-03-27] (Microsoft Corporation)
S2 MsLldp; C:\Windows\System32\drivers\mslldp.sys [106496 2025-02-17] (Microsoft Corporation)
S3 MSTEE; C:\Windows\System32\drivers\MSTEE.sys [57344 2025-02-17] (Microsoft Corporation)
S3 MTConfig; C:\Windows\System32\drivers\MTConfig.sys [53248 2025-02-17] (Microsoft Corporation)
S3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [868352 2025-03-27] (Microsoft Corporation)
S1 NdisCap; C:\Windows\System32\drivers\ndiscap.sys [86016 2025-02-17] (Microsoft Corporation)
S3 NdisImPlatform; C:\Windows\System32\drivers\NdisImPlatform.sys [163840 2025-02-17] (Microsoft Corporation)
S3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [65536 2025-02-17] (Microsoft Corporation)
S3 Ndisuio; C:\Windows\System32\drivers\ndisuio.sys [102400 2025-02-17] (Microsoft Corporation)
S3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [57344 2025-02-17] (Microsoft Corporation)
S3 NdisWan; C:\Windows\System32\drivers\ndiswan.sys [249856 2025-02-17] (Microsoft Corporation)
S3 ndiswanlegacy; C:\Windows\System32\DRIVERS\ndiswan.sys [249856 2025-02-17] (Microsoft Corporation)
S3 ndproxy; C:\Windows\System32\DRIVERS\NDProxy.sys [122880 2025-02-17] (Microsoft Corporation)
S2 Ndu; C:\Windows\System32\drivers\Ndu.sys [192512 2025-03-27] (Microsoft Corporation)
S1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [348160 2025-02-17] (Microsoft Corporation)
S2 NetworkPrivacyPolicy; C:\Windows\System32\DriverStore\FileRepository\networkprivacypolicy.inf_amd64_36df9257e06c3c02\NetworkPrivacyPolicy.sys [118784 2025-03-27] ()
S3 ng-netfilter; C:\Windows\system32\DRIVERS\ng-netfilter.sys [164352 2025-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S0 ngelam; C:\Windows\System32\drivers\ngelam.sys [32272 2024-12-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Acronis International GmbH)
S1 ngscan; C:\Windows\System32\DRIVERS\ngscan.sys [281584 2024-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S3 nikz1audio; C:\Windows\System32\Drivers\nikz1audio.sys [383928 2015-09-09] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 nikz1usb; C:\Windows\system32\DRIVERS\nikz1usb.sys [100200 2015-09-09] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 NovationUsbMidi; C:\Windows\system32\DRIVERS\NovationUsbMidi.sys [71384 2023-02-23] (Focusrite Audio Engineering Ltd -> Novation DMS, Ltd.)
S1 npsvctrig; C:\Windows\System32\drivers\npsvctrig.sys [61440 2025-02-17] (Microsoft Corporation)
S1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [77824 2025-02-17] (Microsoft Corporation)
S3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-13] (Nvidia Corporation -> NVIDIA Corporation)
S3 Parport; C:\Windows\System32\drivers\parport.sys [135168 2025-02-17] (Microsoft Corporation)
S2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [868352 2025-02-17] (Microsoft Corporation)
S3 PktMonApi; C:\Windows\System32\drivers\PktMonApi.sys [57344 2025-02-17] (Microsoft Corporation)
S3 PNPMEM; C:\Windows\System32\drivers\pnpmem.sys [53248 2025-02-17] (Microsoft Corporation)
S3 portcfg; C:\Windows\System32\drivers\portcfg.sys [61440 2025-02-17] (Microsoft Corporation)
S3 PptpMiniport; C:\Windows\System32\drivers\raspptp.sys [147456 2025-02-17] (Microsoft Corporation)
S0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [86016 2025-03-04] (Microsoft Corporation)
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [57344 2025-02-17] (Microsoft Corporation)
S3 RasAgileVpn; C:\Windows\System32\drivers\AgileVpn.sys [147456 2025-02-17] (Microsoft Corporation)
S3 Rasl2tp; C:\Windows\System32\drivers\rasl2tp.sys [147456 2025-02-17] (Microsoft Corporation)
S3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [122880 2025-02-17] (Microsoft Corporation)
S3 RasSstp; C:\Windows\System32\drivers\rassstp.sys [122880 2025-02-17] (Microsoft Corporation)
S3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [57344 2025-02-17] (Microsoft Corporation)
S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [212992 2025-03-27] (Microsoft Corporation)
S3 RFCOMM; C:\Windows\System32\drivers\rfcomm.sys [249856 2025-03-04] (Microsoft Corporation)
S3 rhproxy; C:\Windows\System32\drivers\rhproxy.sys [143360 2025-02-17] (Microsoft Corporation)
S3 RoutePolicy; C:\Windows\System32\drivers\RoutePolicy.sys [118784 2025-02-17] (Microsoft Corporation)
S3 rspLLL; C:\Windows\System32\DRIVERS\rspLLL64.sys [27744 2021-03-09] (Daniel Terhell -> Resplendence Software Projects Sp.)

steaf 05.04.2025 21:03
Code:

S2 rspndr; C:\Windows\System32\drivers\rspndr.sys [126976 2025-03-27] (Microsoft Corporation)
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [77824 2025-03-11] (Microsoft Corporation)
S0 secnvme; C:\Windows\System32\drivers\secnvme.sys [133944 2020-01-20] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
S3 Serenum; C:\Windows\System32\drivers\serenum.sys [65536 2025-02-17] (Microsoft Corporation)
S3 Serial; C:\Windows\System32\drivers\serial.sys [122880 2025-02-17] (Microsoft Corporation)
S3 sermouse; C:\Windows\System32\drivers\sermouse.sys [65536 2025-02-17] (Microsoft Corporation)
S3 smbdirect; C:\Windows\System32\DRIVERS\smbdirect.sys [274432 2025-03-27] (Microsoft Corporation)
S0 snapman; C:\Windows\System32\DRIVERS\snapman.sys [392640 2025-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S3 SoundcraftUSBAudio; C:\Windows\System32\drivers\SoundcraftUSBAudio_x64.sys [269312 2015-09-03] ()
S3 SoundcraftUSBAudioks; C:\Windows\System32\drivers\SoundcraftUSBAudioks_x64.sys [50688 2015-09-03] ()
S3 spaceparser; C:\Windows\System32\drivers\spaceparser.sys [81920 2025-02-17] (Microsoft Corporation)
S3 Spyder5; C:\Windows\System32\drivers\dccmtr.sys [15360 2015-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Datacolor)
S3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [1003520 2025-03-27] (Microsoft Corporation)
S3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [401408 2025-03-27] (Microsoft Corporation)
S2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [14224 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-10-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-10-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S1 steamxbox; C:\Windows\System32\drivers\steamxbox.sys [278208 2023-02-21] (Valve Corp. -> Valve Corporation)
S2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [86016 2025-03-27] (Microsoft Corporation)
S3 ThermalFilter; C:\Windows\System32\DriverStore\FileRepository\c_thermal.inf_amd64_732a53ed1662b707\ThermalFilter.sys [75376 2025-03-27] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S2 tib_mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [171080 2025-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [98304 2025-02-17] (Microsoft Corporation)
S3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [69632 2025-02-17] (Microsoft Corporation)
S3 tsusbhub; C:\Windows\System32\drivers\tsusbhub.sys [163840 2025-02-17] (Microsoft Corporation)
S3 tunnel; C:\Windows\System32\drivers\tunnel.sys [167936 2025-02-17] (Microsoft Corporation)
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [204800 2025-02-17] (Microsoft Corporation)
S3 UcmTcpciCx0101; C:\Windows\System32\Drivers\UcmTcpciCx.sys [217088 2025-02-17] (Microsoft Corporation)
S3 UcmUcsiAcpiClient; C:\Windows\System32\drivers\UcmUcsiAcpiClient.sys [77824 2025-02-17] (Microsoft Corporation)
S3 UcmUcsiCx0101; C:\Windows\System32\Drivers\UcmUcsiCx.sys [200704 2025-03-27] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [90112 2025-02-17] (Microsoft Corporation)
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [401408 2025-02-17] (Microsoft Corporation)
S1 uiomap; C:\Windows\System32\DriverStore\FileRepository\uiomap.inf_amd64_993ffff560f5d68c\uiomap.sys [73728 2025-03-27] (Microsoft Corporation)
S3 umbus; C:\Windows\System32\DriverStore\FileRepository\umbus.inf_amd64_914dd46b4b013b1b\umbus.sys [90112 2025-02-17] (Microsoft Corporation)
S3 UmPass; C:\Windows\System32\DriverStore\FileRepository\umpass.inf_amd64_06e016c9ffecbf73\umpass.sys [53248 2025-02-17] (Microsoft Corporation)
S3 usbaudio; C:\Windows\system32\drivers\usbaudio.sys [303104 2025-03-27] (Microsoft Corporation)
S3 usbaudio2; C:\Windows\System32\drivers\usbaudio2.sys [401408 2025-02-17] (Microsoft Corporation)
S3 usbcir; C:\Windows\System32\drivers\usbcir.sys [147456 2025-02-17] (Microsoft Corporation)
S3 usbohci; C:\Windows\System32\drivers\usbohci.sys [69632 2025-03-04] (Microsoft Corporation)
S3 usbprint; C:\Windows\System32\drivers\usbprint.sys [110592 2025-03-27] (Microsoft Corporation)
S3 usbser; C:\Windows\System32\drivers\usbser.sys [126976 2025-02-17] (Microsoft Corporation)
S3 usbuhci; C:\Windows\System32\drivers\usbuhci.sys [73728 2025-03-04] (Microsoft Corporation)
S3 VBAudioVMVAIOMME; C:\Windows\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2023-05-03] (Vincent Burel -> Windows (R) Win 7 DDK provider)
S1 VfpExt; C:\Windows\System32\drivers\vfpext.sys [1671168 2025-03-27] (Microsoft Corporation)
S3 vhf; C:\Windows\System32\drivers\vhf.sys [90112 2025-02-17] (Microsoft Corporation)
S3 VirtualRender; C:\Windows\System32\DriverStore\FileRepository\vrd.inf_amd64_4dd0e6d66a75bb7e\vrd.sys [53248 2025-02-17] (Microsoft Corporation)
S2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [335760 2025-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [98304 2025-02-17] (Microsoft Corporation)
S0 volume_tracker; C:\Windows\System32\DRIVERS\volume_tracker.sys [246320 2025-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S3 vpnva; C:\Windows\System32\drivers\vpnva64-6.sys [74064 2023-12-13] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S3 vwifibus; C:\Windows\System32\DriverStore\FileRepository\netvwifibus.inf_amd64_ab4e111fe8221178\vwifibus.sys [65536 2025-02-17] (Microsoft Corporation)
S1 vwififlt; C:\Windows\System32\drivers\vwififlt.sys [122880 2025-02-17] (Microsoft Corporation)
S3 vwifimp; C:\Windows\System32\DriverStore\FileRepository\netvwifimp.inf_amd64_9ee16c0576a2a688\vwifimp.sys [90112 2025-03-27] (Microsoft Corporation)
S3 WacomPen; C:\Windows\System32\drivers\wacompen.sys [65536 2025-02-17] (Microsoft Corporation)
S2 wanarp; C:\Windows\System32\DRIVERS\wanarp.sys [126976 2025-02-17] (Microsoft Corporation)
S3 wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [126976 2025-02-17] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20016 2025-03-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [605576 2025-03-31] (Microsoft Windows -> Microsoft Corporation)
S3 wdiwifi; C:\Windows\System32\DRIVERS\wdiwifi.sys [1122304 2025-03-27] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [100744 2025-03-31] (Microsoft Windows -> Microsoft Corporation)
S3 Wificx; C:\Windows\System32\drivers\WifiCx.sys [1134592 2025-03-27] (Microsoft Corporation)
S3 wini3ctarget; C:\Windows\System32\DriverStore\FileRepository\wini3ctarget.inf_amd64_bdb09ebda2834009\wini3ctarget.sys [75168 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
S3 WINUSB; C:\Windows\System32\drivers\WinUsb.sys [139264 2025-02-17] (Microsoft Corporation)
S3 WmiAcpi; C:\Windows\System32\drivers\wmiacpi.sys [57344 2025-02-17] (Microsoft Corporation)
S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [61440 2025-03-27] (Microsoft Corporation)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [409600 2025-03-27] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [90112 2025-03-27] (Microsoft Corporation)
UpperFilters: [{4D36E967-E325-11CE-BFC1-08002BE10318}] -> [partmgr fltsrv]
UpperFilters: [{71A27CDD-812A-11D0-BEC7-08002BE2092F}] -> [volsnap fltsrv]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (All) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-04-05 20:58 - 2025-04-05 20:58 - 000000000 ____D C:\FRST
2025-04-05 20:56 - 2025-04-05 20:56 - 000065536 _____ C:\BitLockerWinRELog.etl
2025-04-05 19:50 - 2025-04-05 19:50 - 000000866 __RSH C:\ProgramData\ntuser.pol
2025-04-05 18:44 - 2025-04-05 18:44 - 000748376 _____ C:\Windows\System32\perfh007.dat
2025-04-05 18:44 - 2025-04-05 18:44 - 000159426 _____ C:\Windows\System32\perfc007.dat
2025-04-05 14:18 - 2025-04-05 14:18 - 002404864 _____ (Farbar) C:\Users\quart\Downloads\FRST64.exe
2025-04-05 09:41 - 2025-04-05 09:41 - 002834160 _____ (Malwarebytes) C:\Users\quart\Downloads\MBSetup.exe
2025-04-05 09:39 - 2025-04-05 09:39 - 000192952 _____ (Malwarebytes) C:\Windows\System32\Drivers\mbamchameleon.sys
2025-04-05 09:39 - 2025-04-05 09:39 - 000000000 ____D C:\Users\quart\Desktop\mbar
2025-04-05 09:39 - 2025-04-05 09:39 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2025-04-04 22:03 - 2025-04-04 22:03 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-04-04 20:32 - 2025-04-04 20:32 - 000000000 ____D C:\Users\quart\AppData\Roaming\The Witcher 3
2025-04-04 20:31 - 2025-04-04 20:31 - 000000000 ____D C:\Users\quart\AppData\Local\REDEngine
2025-04-04 15:52 - 2025-04-04 15:52 - 001042012 _____ C:\Users\quart\Downloads\STEFAN_BECKER_Mietzuschuss_Erstantrag_20250404.pdf
2025-04-04 15:52 - 2025-04-04 15:52 - 001042012 _____ C:\Users\quart\Downloads\Antrag auf Wohngeld_unterschrieben.pdf
2025-04-03 11:21 - 2025-04-03 11:28 - 000000000 ____D C:\Users\quart\OneDrive
2025-04-02 11:22 - 2025-04-05 18:37 - 000000000 ____D C:\Users\quart\Downloads\STG-backups-FF-137.0
2025-04-02 09:58 - 2025-04-05 18:40 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-04-02 09:42 - 2025-04-02 09:42 - 000000000 ____D C:\Windows\System32\Tasks\Mozilla
2025-04-02 09:34 - 2025-04-02 09:34 - 000004250 _____ C:\Windows\System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2000400401-3484457797-169236058-1001
2025-04-02 09:34 - 2025-04-02 09:34 - 000002318 _____ C:\Users\quart\Desktop\Claude.lnk
2025-03-29 09:21 - 2025-03-29 15:52 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2025-03-28 06:16 - 2025-04-02 09:21 - 000000000 ____D C:\Users\quart\Downloads\STG-backups-FF-136.0.4
2025-03-27 23:08 - 2025-03-27 23:08 - 000000000 ____D C:\Windows\System32\AccountHealthAssets
2025-03-27 21:01 - 2025-04-05 19:50 - 000000000 ____D C:\Windows\CbsTemp
2025-03-27 20:58 - 2025-03-27 20:58 - 000000000 ____D C:\Windows\Panther
2025-03-27 20:26 - 2025-03-27 20:26 - 005273896 _____ (Microsoft Corporation) C:\Windows\System32\Windows.StateRepository.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 004662504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 003469312 _____ (Microsoft Corporation) C:\Windows\System32\tquery.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 002908160 _____ (Microsoft Corporation) C:\Windows\System32\mssrch.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 002846208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 002433536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 002035712 _____ (Microsoft Corporation) C:\Windows\System32\wlidsvc.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 001592304 _____ (Microsoft Corporation) C:\Windows\System32\Windows.System.Launcher.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 001414560 _____ (Microsoft Corporation) C:\Windows\System32\SecurityHealthAgent.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 001340832 _____ (Microsoft Corporation) C:\Windows\System32\SecurityHealthCore.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 001232968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Launcher.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 001114112 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Networking.Vpn.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000974848 _____ (Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe
2025-03-27 20:26 - 2025-03-27 20:26 - 000951864 _____ (Microsoft Corporation) C:\Windows\System32\AppContracts.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000929792 _____ (Microsoft Corporation) C:\Windows\System32\SearchIndexerCore.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000881624 _____ (Microsoft Corporation) C:\Windows\System32\Windows.ApplicationModel.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000870912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Vpn.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000827392 _____ (Microsoft Corporation) C:\Windows\System32\WSDApi.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000807208 _____ (Microsoft Corporation) C:\Windows\System32\StructuredQuery.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000780024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000778240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2025-03-27 20:26 - 2025-03-27 20:26 - 000713376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000688128 _____ (Microsoft Corporation) C:\Windows\System32\wlidcli.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000680960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexerCore.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000655360 _____ (Microsoft Corporation) C:\Windows\System32\wlidprov.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000647168 _____ (Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe
2025-03-27 20:26 - 2025-03-27 20:26 - 000626176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000544768 _____ (Microsoft Corporation) C:\Windows\System32\WSAIFabricHost.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000539648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000515584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2025-03-27 20:26 - 2025-03-27 20:26 - 000483328 _____ (Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe
2025-03-27 20:26 - 2025-03-27 20:26 - 000451896 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Storage.ApplicationData.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000419272 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mssecflt.sys
2025-03-27 20:26 - 2025-03-27 20:26 - 000397312 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Gaming.Preview.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000393216 _____ (Microsoft Corporation) C:\Windows\System32\Search.ProtocolHandler.MAPI2.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000384512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2025-03-27 20:26 - 2025-03-27 20:26 - 000372736 _____ (Microsoft Corporation) C:\Windows\System32\mssvp.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000364544 _____ (Microsoft Corporation) C:\Windows\System32\Windows.StateRepositoryUpgrade.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000333784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000321536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000319488 _____ (Microsoft Corporation) C:\Windows\System32\wlidcredprov.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000319488 _____ (Microsoft Corporation) C:\Windows\System32\MicrosoftAccountTokenProvider.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000307200 _____ (Microsoft Corporation) C:\Windows\System32\windowslivelogin.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000301056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000298984 _____ (Microsoft Corporation) C:\Windows\System32\Windows.StateRepositoryClient.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000293888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryUpgrade.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000279552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Preview.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000278528 _____ (Microsoft Corporation) C:\Windows\System32\PresentationHost.exe
2025-03-27 20:26 - 2025-03-27 20:26 - 000267680 _____ (Microsoft Corporation) C:\Windows\System32\SecurityHealthUdk.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000266240 _____ (Microsoft Corporation) C:\Windows\System32\mssph.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe
2025-03-27 20:26 - 2025-03-27 20:26 - 000242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcredprov.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000237568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windowslivelogin.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000220120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000200704 _____ (Microsoft Corporation) C:\Windows\System32\dssvc.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000192512 _____ (Microsoft Corporation) C:\Windows\System32\mssprxy.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000167936 _____ (Microsoft Corporation) C:\Windows\System32\msscntrs.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000146128 _____ (Microsoft Corporation) C:\Windows\System32\SecurityHealthService.exe
2025-03-27 20:26 - 2025-03-27 20:26 - 000126976 _____ (Microsoft Corporation) C:\Windows\System32\SenseSubAuth.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000126976 _____ (Microsoft Corporation) C:\Windows\System32\mssitlb.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000124320 _____ (Microsoft Corporation) C:\Windows\System32\SecurityHealthSsoUdk.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000120240 _____ (Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
2025-03-27 20:26 - 2025-03-27 20:26 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000114688 _____ (Microsoft Corporation) C:\Windows\System32\Windows.System.UserProfile.DiagnosticsSettings.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000090112 _____ (Microsoft Corporation) C:\Windows\System32\SubAuthLoader.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000071096 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\msseccore.sys
2025-03-27 20:26 - 2025-03-27 20:26 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.UserProfile.DiagnosticsSettings.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000067600 _____ C:\Windows\System32\SfSEnclave.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000067016 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mssecwfp.sys
2025-03-27 20:26 - 2025-03-27 20:26 - 000058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000026032 _____ (Microsoft Corporation) C:\Windows\System32\3bc29097-7317-41d3-93b9-38a48f99d48a_mssrch.dll
2025-03-27 20:26 - 2025-03-27 20:26 - 000013256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\3bc29097-7317-41d3-93b9-38a48f99d48a_mssrch.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 036238776 _____ (Microsoft Corporation) C:\Windows\System32\vmfirmwarehcl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 026038272 _____ (Microsoft Corporation) C:\Windows\System32\edgehtml.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 024109056 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 020140544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 018715136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 017874944 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Xaml.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 014862336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 012760496 _____ (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 011691464 _____ (Microsoft Corporation) C:\Windows\System32\ntkrla57.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 010563584 _____ (Microsoft Corporation) C:\Windows\System32\wmp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 009494016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 009310208 _____ (Microsoft Corporation) C:\Windows\System32\twinui.pcshell.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 009240576 _____ (Microsoft Corporation) C:\Windows\System32\mstscax.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 008786128 _____ (Microsoft Corporation) C:\Windows\System32\windows.storage.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 008316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 008020320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 007554800 _____ (Microsoft Corporation) C:\Windows\System32\shell32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 007517624 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Media.Protection.PlayReady.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 007462912 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 007176864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 007063224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 006918496 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Media.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 006632448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 006616840 _____ (Microsoft Corporation) C:\Windows\System32\OneCoreUAPCommonProxyStub.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 006587888 _____ (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 006488064 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Data.Pdf.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 006361792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005922640 _____ (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005910528 _____ (Microsoft Corporation) C:\Windows\System32\AppXDeploymentServer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005849088 _____ (Microsoft Corporation) C:\Windows\System32\cdp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005813248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005648384 _____ (Microsoft Corporation) C:\Windows\System32\SRH.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005627392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005612736 _____ (Microsoft Corporation) C:\Windows\System32\StartTileData.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005595136 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Cred.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005530120 _____ (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 005496832 _____ (Microsoft Corporation) C:\Windows\System32\windowsudk.shellcommon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005357712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005298688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthFWSnapin.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005298688 _____ (Microsoft Corporation) C:\Windows\System32\AuthFWSnapin.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005257048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005170632 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 005156864 _____ (Microsoft Corporation) C:\Windows\System32\twinui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005143552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005136384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Cred.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005021696 _____ (Microsoft Corporation) C:\Windows\System32\InputService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005013504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windowsudk.shellcommon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 005001216 _____ (Microsoft Corporation) C:\Windows\System32\tellib.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004960256 _____ (Microsoft Corporation) C:\Windows\System32\bootux.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004849664 _____ (Microsoft Corporation) C:\Windows\System32\diagtrack.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004820992 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004794624 _____ (Microsoft Corporation) C:\Windows\System32\sppsvc.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 004790456 _____ (Microsoft Corporation) C:\Windows\System32\setupapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004669440 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_47.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004628480 _____ (Microsoft Corporation) C:\Windows\System32\FrameServerCore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004599480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 004551992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004472832 _____ (Microsoft Corporation) C:\Windows\System32\HostNetSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004440064 _____ (Microsoft Corporation) C:\Windows\System32\dwmcore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004382720 _____ (Microsoft Corporation) C:\Windows\System32\UIAutomationCore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004370432 _____ (Microsoft Corporation) C:\Windows\System32\MFMediaEngine.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004363680 _____ (Microsoft Corporation) C:\Windows\System32\vmcompute.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 004327936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004313088 _____ (Microsoft Corporation) C:\Windows\System32\esent.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004296704 _____ (Microsoft Corporation) C:\Windows\System32\jscript9Legacy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004286376 _____ (Microsoft Corporation) C:\Windows\System32\mfcore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004247552 _____ (Microsoft Corporation) C:\Windows\System32\win32kfull.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 004190208 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Logon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004184064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9Legacy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 004005456 _____ (Microsoft Corporation) C:\Windows\System32\KernelBase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003950024 _____ (Microsoft Corporation) C:\Windows\System32\UpdateAgent.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003893248 _____ (Microsoft Corporation) C:\Windows\System32\SystemSettingsThresholdAdminFlowUI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003825664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003820032 _____ C:\Windows\System32\ControlCenter.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003789824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003780384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003747840 _____ (Microsoft Corporation) C:\Windows\System32\Microsoft.Bluetooth.Service.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003707896 _____ (Microsoft Corporation) C:\Windows\System32\combase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003691384 _____ (Microsoft Corporation) C:\Windows\System32\vmwp.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 003678208 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_nt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003671472 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\refs.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 003646920 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 003607552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003487160 _____ (Microsoft Corporation) C:\Windows\System32\mispace.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003461120 _____ (Microsoft Corporation) C:\Windows\System32\NetworkMobileSettings.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003460608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Controls.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003458504 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 003442120 _____ (Microsoft Corporation) C:\Windows\System32\msi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003440640 _____ (Microsoft Corporation) C:\Windows\System32\FluencyDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003435008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003420160 _____ (Microsoft Corporation) C:\Windows\System32\AppXDeploymentExtensions.onecore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003403776 _____ (Microsoft Corporation) C:\Windows\System32\EdgeContent.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003342336 _____ (Microsoft Corporation) C:\Windows\System32\win32kbase.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 003325952 _____ (Microsoft Corporation) C:\Windows\System32\msftedit.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003321856 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Xaml.Controls.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003205008 _____ (Microsoft Corporation) C:\Windows\System32\Taskbar.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003145728 _____ (Microsoft Corporation) C:\Windows\System32\wlansvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 003120848 _____ (Microsoft Corporation) C:\Windows\System32\winload.efi
2025-03-27 20:25 - 2025-03-27 20:25 - 003031968 _____ (Microsoft Corporation) C:\Windows\System32\CoreUIComponents.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002947608 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002942880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002940928 _____ (Microsoft Corporation) C:\Windows\System32\InstallService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002936832 _____ (Microsoft Corporation) C:\Windows\System32\Windows.CloudStore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002908160 _____ (Microsoft Corporation) C:\Windows\System32\CertEnroll.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002881536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002864584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002864584 _____ (Microsoft Corporation) C:\Windows\System32\ResetEngine.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002856720 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 002813992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002813952 _____ (Microsoft Corporation) C:\Windows\System32\cdprt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002768896 _____ (Microsoft Corporation) C:\Windows\System32\WinSAT.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 002765816 ____R (The ICU Project) C:\Windows\System32\icu.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002745136 _____ (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002744320 _____ (Microsoft Corporation) C:\Windows\System32\ExplorerFrame.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002715648 _____ (Microsoft Corporation) C:\Windows\System32\AppXDeploymentExtensions.desktop.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002707104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreUIComponents.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002696152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002686976 _____ (Microsoft Corporation) C:\Windows\System32\xpsservices.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002666496 _____ (Microsoft Corporation) C:\Windows\System32\ISM.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002663880 _____ (Microsoft Corporation) C:\Windows\System32\appraiser.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002661600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002652792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002650120 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002650112 _____ (Microsoft Corporation) C:\Windows\System32\MSVidCtl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002621288 _____ (Microsoft Corporation) C:\Windows\System32\Windows.ApplicationModel.Store.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002616216 _____ (Microsoft Corporation) C:\Windows\System32\winresume.efi
2025-03-27 20:25 - 2025-03-27 20:25 - 002596864 _____ (Microsoft Corporation) C:\Windows\System32\MdmDiagnostics.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002567440 _____ (Microsoft Corporation) C:\Windows\System32\D3D12Core.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002565552 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vmswitch.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 002535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 002534424 _____ (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002529408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcGenral.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002524160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceFlows.DataModel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002519040 _____ (Microsoft Corporation) C:\Windows\System32\WindowManagement.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002510848 _____ (Microsoft Corporation) C:\Windows\System32\WebRuntimeManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002494464 _____ (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002493128 _____ (Microsoft Corporation) C:\Windows\System32\ntdll.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002486200 _____ (Microsoft Corporation) C:\Windows\System32\SecConfig.efi
2025-03-27 20:25 - 2025-03-27 20:25 - 002475448 _____ (Microsoft Corporation) C:\Windows\System32\AppxPackaging.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002460672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002445312 _____ (Microsoft Corporation) C:\Windows\System32\enterprisecsps.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002442672 _____ (Microsoft Corporation) C:\Windows\System32\ServicingUAPI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002430464 _____ (Microsoft Corporation) C:\Windows\System32\DeviceFlows.DataModel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002418712 _____ (Microsoft Corporation) C:\Windows\System32\mfmp4srcsnk.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002385408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdprt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002385352 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\storport.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 002376560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002356744 _____ (Microsoft Corporation) C:\Windows\System32\twinapi.appcore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002344328 _____ (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002336200 _____ (Microsoft Corporation) C:\Windows\System32\rdpserverbase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002311280 _____ (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002289664 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\bthport.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 002257536 _____ (Microsoft Corporation) C:\Windows\System32\dcomp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002249216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002228224 _____ (Microsoft Corporation) C:\Windows\System32\ReFsDedupSvc.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 002215936 _____ (Microsoft Corporation) C:\Windows\System32\LocationFramework.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002208120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002199728 _____ (Microsoft Corporation) C:\Windows\System32\mfplat.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002192384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002183856 ____R (The ICU Project) C:\Windows\SysWOW64\icu.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002147208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12Core.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002139056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002138112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002088168 _____ (Microsoft Corporation) C:\Windows\System32\cryptoss.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002084864 _____ (Microsoft Corporation) C:\Windows\System32\mmcndmgr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002077184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002068920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002053704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002049480 _____ (Microsoft Corporation) C:\Windows\System32\hvix64.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 002031616 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Devices.Bluetooth.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002009656 _____ (Microsoft Corporation) C:\Windows\System32\AudioEng.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002007040 _____ (Microsoft Corporation) C:\Windows\System32\CoreShell.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 002004400 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\http.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 001984840 _____ (Microsoft Corporation) C:\Windows\System32\InputHost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001982464 _____ (Microsoft Corporation) C:\Windows\System32\audiosrv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001974272 _____ (Microsoft Corporation) C:\Windows\System32\netprofmsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001966384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001966080 _____ (Microsoft Corporation) C:\Windows\System32\OpcServices.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001963816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001957776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001951808 _____ (Microsoft Corporation) C:\Windows\System32\sppobjs.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001951136 _____ (Microsoft Corporation) C:\Windows\System32\hvax64.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001950344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001946112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001937408 _____ (Microsoft Corporation) C:\Windows\System32\WpcDesktopMonSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001921024 _____ (Microsoft Corporation) C:\Windows\System32\refsutil.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001921024 _____ (Microsoft Corporation) C:\Windows\System32\GdiPlus.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001904640 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001902184 _____ (Microsoft Corporation) C:\Windows\System32\user32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001889736 _____ (Microsoft Corporation) C:\Windows\System32\rdpbase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001885616 _____ (Microsoft Corporation) C:\Windows\System32\workfolderssvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001869240 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 001865000 _____ (Microsoft Corporation) C:\Windows\System32\WMALFXGFXDSP.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001861560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001847296 _____ (Microsoft Corporation) C:\Windows\System32\mmc.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001843200 _____ (Microsoft Corporation) C:\Windows\System32\Microsoft.Bluetooth.Audio.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001840248 _____ (Microsoft Corporation) C:\Windows\System32\AudioSes.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001835008 _____ (Microsoft Corporation) C:\Windows\System32\rdpcorets.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001834720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001824408 _____ (Microsoft Corporation) C:\Windows\System32\winload.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001820784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001819584 _____ (Microsoft Corporation) C:\Windows\System32\WindowManagementAPI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001803224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001783808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001777664 _____ (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001753456 _____ (Microsoft Corporation) C:\Windows\System32\d3d9.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001748992 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.BioFeedback.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001748992 _____ (Microsoft Corporation) C:\Windows\System32\APMon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001738144 _____ (Microsoft Corporation) C:\Windows\System32\wsp_fs.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001732608 _____ (Microsoft Corporation) C:\Windows\System32\uReFS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001719512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001705392 _____ (Microsoft Corporation) C:\Windows\System32\AppVEntSubsystems64.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001701304 _____ (Microsoft Corporation) C:\Windows\System32\doclient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001699840 _____ (Microsoft Corporation) C:\Windows\System32\localspl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001683224 _____ (Microsoft Corporation) C:\Windows\System32\mfsvr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001680304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001679080 _____ (Microsoft Corporation) C:\Windows\System32\ole32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001675264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001675264 _____ (Microsoft Corporation) C:\Windows\System32\CloudRestoreLauncher.dll

cosinus 05.04.2025 21:09
Zitat:
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.
Bitte die Hinweise richtig lesen. Das Log im abgesicherten Modus zu erstellen wurde nicht instruiert. Oder hat es einen anderen Grund, dass du das so gemacht hast?

M-K-D-B 05.04.2025 21:11
Zitat:
Boot Mode: Recovery
Warum wird FRST in der Wiederherstellungsumgebung ausgeführt und nicht im normalen Modus?

Funktioniert der normale und auch der abgesicherte Modus denn nicht?

steaf 05.04.2025 21:17
Code:

2025-03-27 20:25 - 2025-03-27 20:25 - 001671168 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vfpext.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 001668536 _____ (Microsoft Corporation) C:\Windows\System32\ContentDeliveryManager.Utilities.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001667072 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Globalization.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001667072 _____ (Microsoft Corporation) C:\Windows\System32\webauthn.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001667072 _____ (Microsoft Corporation) C:\Windows\System32\pla.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001662976 _____ (Microsoft Corporation) C:\Windows\System32\TpmCoreProvisioning.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001654784 _____ (Microsoft Corporation) C:\Windows\System32\TokenBroker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001650840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001650688 _____ (Microsoft Corporation) C:\Windows\System32\MusUpdateHandlers1.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001641872 _____ (Microsoft Corporation) C:\Windows\System32\mfAACEnc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001639400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptoss.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001635768 _____ (Microsoft Corporation) C:\Windows\System32\AppVEntVirtualization.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001634304 _____ (Microsoft Corporation) C:\Windows\System32\wpncore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001631688 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_StorageSense.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001630208 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Input.Inking.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001613824 _____ (Microsoft Corporation) C:\Windows\System32\IKEEXT.DLL
2025-03-27 20:25 - 2025-03-27 20:25 - 001612800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001604696 _____ (Microsoft Corporation) C:\Windows\System32\mfasfsrcsnk.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001601536 _____ (Microsoft Corporation) C:\Windows\System32\certutil.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001593344 _____ (Microsoft Corporation) C:\Windows\System32\UserDataService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001585152 _____ (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001575784 _____ (Microsoft Corporation) C:\Windows\System32\drvstore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001564672 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Storage.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001564672 _____ (Microsoft Corporation) C:\Windows\System32\lpasvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001563136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001552384 _____ (Microsoft Corporation) C:\Windows\System32\wwansvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001552384 _____ (Microsoft Corporation) C:\Windows\System32\MSPhotography.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001549040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001544192 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Graphics.Printing.3D.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001543680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001540096 _____ (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001540096 _____ (Microsoft Corporation) C:\Windows\System32\wbengine.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001534464 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Devices.Sensors.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001534440 _____ (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001523712 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Graphics.Printing.Workflow.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001521208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001519616 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Devices.PointOfService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001518592 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.FileExplorer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001515520 _____ (Microsoft Corporation) C:\Windows\System32\rdpsharercom.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001512888 _____ (Microsoft Corporation) C:\Windows\System32\wsp_health.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001505672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputHost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001504768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001496576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001495552 _____ (Microsoft Corporation) C:\Windows\System32\aadtb.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001490944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001474560 _____ (Microsoft Corporation) C:\Windows\System32\qmgr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001472496 _____ (Microsoft Corporation) C:\Windows\System32\AppXDeploymentClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001472456 _____ (Microsoft Corporation) C:\Windows\System32\webservices.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001470464 _____ (Microsoft Corporation) C:\Windows\System32\Wpc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001458176 _____ (Microsoft Corporation) C:\Windows\System32\tsf3gip.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001455968 _____ (Microsoft Corporation) C:\Windows\System32\dsreg.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001454080 _____ (Microsoft Corporation) C:\Windows\System32\usermgr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001450928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001443576 _____ (Microsoft Corporation) C:\Windows\System32\msctf.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001441792 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Management.Service.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001439440 _____ (Microsoft Corporation) C:\Windows\System32\ShellAppRuntime.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001437696 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Core.TextInput.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001437464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfAACEnc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001435136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001433600 _____ (Microsoft Corporation) C:\Windows\System32\rpcss.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001425408 _____ (Microsoft Corporation) C:\Windows\System32\wcmsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001421312 _____ (Microsoft Corporation) C:\Windows\System32\MPSSVC.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001418784 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001417216 _____ (Microsoft Corporation) C:\Windows\System32\bcastdvruserservice.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001413120 _____ (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001409024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webauthn.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001404928 _____ (Microsoft Corporation) C:\Windows\System32\wpnapps.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001396736 _____ (Microsoft Corporation) C:\Windows\System32\CustomShellHost.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001395192 _____ (Microsoft Corporation) C:\Windows\System32\winresume.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001392640 _____ (Microsoft Corporation) C:\Windows\System32\usbmon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001392640 _____ (Microsoft Corporation) C:\Windows\System32\kerberos.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001392640 _____ (Microsoft Corporation) C:\Windows\System32\CapabilityAccessManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001389424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001388544 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Web.Http.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001387464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContentDeliveryManager.Utilities.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001384448 _____ (Microsoft Corporation) C:\Windows\System32\ConstraintIndex.Search.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001380352 _____ (Microsoft Corporation) C:\Windows\System32\mstsc.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001377280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpsharercom.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001373352 _____ (Microsoft Corporation) C:\Windows\System32\ucrtbase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001371648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001365056 _____ (Microsoft Corporation) C:\Windows\System32\TextInputFramework.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001355776 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Immersive.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001349048 _____ (Microsoft Corporation) C:\Windows\System32\CloudExperienceHostCommon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001347584 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Shell.Internal.AdaptiveCards.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001347584 _____ (Microsoft Corporation) C:\Windows\System32\gpsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001335296 _____ (Microsoft Corporation) C:\Windows\System32\NotificationController.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001335296 _____ (Microsoft Corporation) C:\Windows\System32\GamePanel.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001331200 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001319720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001318912 _____ (Microsoft Corporation) C:\Windows\System32\SEMgrSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001316256 _____ (Microsoft Corporation) C:\Windows\System32\securekernel.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001316096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001311352 _____ (Microsoft Corporation) C:\Windows\System32\ttdrecordcpu.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001311328 _____ (Microsoft Corporation) C:\Windows\System32\ApplyTrustOffline.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001306624 _____ (Microsoft Corporation) C:\Windows\System32\DmOsConfig.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001298432 _____ (Microsoft Corporation) C:\Windows\System32\windowsperformancerecordercontrol.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001298432 _____ (Microsoft Corporation) C:\Windows\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001297408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001294808 _____ (Microsoft Corporation) C:\Windows\System32\msvproc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001294336 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Xaml.Maps.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001290832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowManagementAPI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001290240 _____ (Microsoft Corporation) C:\Windows\System32\clusapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001283504 _____ (Microsoft Corporation) C:\Windows\System32\RdpShellExt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001282488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001275320 _____ (Microsoft Corporation) C:\Windows\System32\dcntel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001275312 _____ (Microsoft Corporation) C:\Windows\System32\AppVEntSubsystemController.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001273856 _____ (Microsoft Corporation) C:\Windows\System32\uDWM.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001267712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001266176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001265664 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Xaml.Phone.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001263048 _____ (Microsoft Corporation) C:\Windows\System32\securekernella57.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001261728 _____ (Microsoft Corporation) C:\Windows\System32\mfmpeg2srcsnk.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001258272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsreg.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001257472 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001257472 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_IME.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001253480 _____ (Microsoft Corporation) C:\Windows\System32\gdi32full.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001250720 _____ (Microsoft Corporation) C:\Windows\System32\efscore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001244592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001241088 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Storage.Search.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001241088 _____ (Microsoft Corporation) C:\Windows\System32\wevtsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001241088 _____ (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001236992 _____ (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001236992 _____ (Microsoft Corporation) C:\Windows\System32\fveapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001232896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001232896 _____ (Microsoft Corporation) C:\Windows\System32\termsrv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001228288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001226184 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms2.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 001226160 _____ (Microsoft Corporation) C:\Windows\System32\clipwinrt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001224576 _____ (Microsoft Corporation) C:\Windows\System32\WpcMon.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001222656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001222088 _____ (Microsoft Corporation) C:\Windows\System32\rdpshell.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001220608 _____ (Microsoft Corporation) C:\Windows\System32\sdengin2.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001220608 _____ (Microsoft Corporation) C:\Windows\System32\ngcsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001220432 _____ (Microsoft Corporation) C:\Windows\System32\CoreMessaging.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001214904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001212416 _____ (Microsoft Corporation) C:\Windows\System32\ShellCommonCommonProxyStub.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001212184 _____ (Microsoft Corporation) C:\Windows\System32\DolbyDecMFT.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001212144 _____ (Microsoft Corporation) C:\Windows\System32\dnsapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001208320 _____ (Microsoft Corporation) C:\Windows\System32\webplatstorageserver.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001205688 _____ (Microsoft Corporation) C:\Windows\System32\pcasvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001201568 _____ (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001201080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001197056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001196032 _____ (Microsoft Corporation) C:\Windows\System32\MbaeApiPublic.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001195656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ttdrecordcpu.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001192960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.FileExplorer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001191936 _____ (Microsoft Corporation) C:\Windows\System32\Unistore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001187840 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Media.Streaming.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001187840 _____ (Microsoft Corporation) C:\Windows\System32\dcsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001186816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001183256 _____ (Microsoft Corporation) C:\Windows\System32\winhttp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001177016 _____ (Microsoft Corporation) C:\Windows\System32\vmchipset.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001175552 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.Shell.XamlInputViewHost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001175552 _____ (Microsoft Corporation) C:\Windows\System32\agentactivationruntimewindows.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001174968 _____ (Microsoft Corporation) C:\Windows\System32\PCPKsp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001174968 _____ (Microsoft Corporation) C:\Windows\System32\MrmCoreR.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001172992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Management.Service.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001169392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001167360 _____ (Microsoft Corporation) C:\Windows\System32\diagperf.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001159168 _____ (Microsoft Corporation) C:\Windows\System32\TSWorkspace.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001155072 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Language.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001150976 _____ (Microsoft Corporation) C:\Windows\System32\NaturalLanguage6.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001146880 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.Management.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001146152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001142784 _____ (Microsoft Corporation) C:\Windows\System32\TaskFlowDataEngine.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001142784 _____ (Microsoft Corporation) C:\Windows\System32\FrameServer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001136048 _____ (Microsoft Corporation) C:\Windows\System32\Facilitator.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001134592 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WifiCx.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 001130496 _____ (Microsoft Corporation) C:\Windows\System32\daxexec.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001129544 _____ (Microsoft Corporation) C:\Windows\System32\FlightSettings.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001129528 _____ (Microsoft Corporation) C:\Windows\System32\mfaudiocnv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001126400 _____ (Microsoft Corporation) C:\Windows\System32\BTAGService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001125432 _____ (Microsoft Corporation) C:\Windows\System32\ClipUp.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001122304 _____ (Microsoft Corporation) C:\Windows\System32\Windows.CloudStore.Schema.Shell.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001122304 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WdiWiFi.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 001117696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001117224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001114168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001108000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001105920 _____ (Microsoft Corporation) C:\Windows\System32\rasmans.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001103288 _____ (Microsoft Corporation) C:\Windows\System32\LicenseManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001101256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001086464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001085440 _____ (Microsoft Corporation) C:\Windows\System32\BFE.DLL
2025-03-27 20:25 - 2025-03-27 20:25 - 001085440 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001079920 _____ (Microsoft Corporation) C:\Windows\System32\ci.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001078784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001078704 _____ (Microsoft Corporation) C:\Windows\System32\dpx.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001077248 _____ (Microsoft Corporation) C:\Windows\System32\rasapi32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001073152 _____ (Microsoft Corporation) C:\Windows\System32\WpcRefreshTask.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001067560 _____ (Microsoft Corporation) C:\Windows\System32\pkeyhelper.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001067520 _____ (Microsoft Corporation) C:\Windows\System32\ServicingCommon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001065608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001064960 _____ (Microsoft Corporation) C:\Windows\System32\spoolsv.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001062304 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vhdmp.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 001062304 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ClipSp.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 001062008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001060864 _____ (Microsoft Corporation) C:\Windows\System32\tapi3.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001056768 _____ (Microsoft Corporation) C:\Windows\System32\netlogon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001048576 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Media.Audio.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001046920 _____ (Microsoft Corporation) C:\Windows\System32\propsys.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001036288 _____ (Microsoft Corporation) C:\Windows\System32\fontext.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001036288 _____ (Microsoft Corporation) C:\Windows\System32\conhost.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001033072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001032192 _____ (Microsoft Corporation) C:\Windows\System32\dmenrollengine.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001028096 _____ (Microsoft Corporation) C:\Windows\System32\spoolsvworker.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 001024000 _____ (Microsoft Corporation) C:\Windows\System32\XblAuthManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001021952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001020416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001019904 _____ (Microsoft Corporation) C:\Windows\System32\aadcloudap.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001016072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001015808 _____ (Microsoft Corporation) C:\Windows\System32\PsmServiceExtHost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001013448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001007616 _____ (Microsoft Corporation) C:\Windows\System32\WebcamUi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001007616 _____ (Microsoft Corporation) C:\Windows\System32\sysmain.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001007616 _____ (Microsoft Corporation) C:\Windows\System32\agentactivationruntime.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001005568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Search.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001003520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001003520 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 001001408 _____ (Microsoft Corporation) C:\Windows\System32\ClipSVC.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 001000888 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\spaceport.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000999984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000997280 _____ (Microsoft Corporation) C:\Windows\System32\wer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000995328 _____ C:\Windows\System32\appfootprint.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000992712 _____ (Microsoft Corporation) C:\Windows\System32\computecore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000991232 _____ (Microsoft Corporation) C:\Windows\System32\DispBroker.Desktop.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000989016 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Media.Devices.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000988616 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Wdf01000.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000985600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000983040 _____ (Microsoft Corporation) C:\Windows\System32\opengl32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000982528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windowsperformancerecordercontrol.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000978944 _____ (Microsoft Corporation) C:\Windows\System32\samsrv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000978944 _____ (Microsoft Corporation) C:\Windows\System32\comdlg32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000974336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000972512 _____ (Microsoft Corporation) C:\Windows\System32\SHCore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000970752 _____ (Microsoft Corporation) C:\Windows\System32\mfmkvsrcsnk.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000967168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000966656 _____ (Microsoft Corporation) C:\Windows\System32\bisrv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000965120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Phone.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000964368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000964000 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Services.TargetedContent.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000963072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000962560 _____ (Microsoft Corporation) C:\Windows\System32\wbiosrvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000959488 _____ (Microsoft Corporation) C:\Windows\System32\SystemSettings.Handlers.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000954544 _____ (Microsoft Corporation) C:\Windows\System32\tcblaunch.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000953856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000953544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FlightSettings.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000952832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000952832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000950272 _____ (Microsoft Corporation) C:\Windows\System32\winlogon.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000950272 _____ (Microsoft Corporation) C:\Windows\System32\SensorService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000950272 _____ (Microsoft Corporation) C:\Windows\System32\Narrator.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000946176 _____ (Microsoft Corporation) C:\Windows\System32\schedsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000944128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000942080 _____ (Microsoft Corporation) C:\Windows\System32\adtschema.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000941568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontext.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000937984 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Media.Playback.MediaPlayer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000937984 _____ (Microsoft Corporation) C:\Windows\System32\StorSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000936368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000935336 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.Shell.Broker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000933888 _____ (Microsoft Corporation) C:\Windows\System32\CBDHSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000932864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000931840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000931256 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000929792 _____ (Microsoft Corporation) C:\Windows\System32\ActivationManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000927176 _____ (Microsoft Corporation) C:\Windows\System32\NetSetupEngine.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000927160 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\fvevol.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000925696 _____ (Microsoft Corporation) C:\Windows\System32\devmgr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000925696 _____ (Microsoft Corporation) C:\Windows\System32\assignedaccessmanagersvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000923040 _____ (Microsoft Corporation) C:\Windows\System32\WWAHost.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000922112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000918800 _____ (Microsoft Corporation) C:\Windows\System32\services.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000917504 _____ (Microsoft Corporation) C:\Windows\System32\lsm.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000917504 _____ (Microsoft Corporation) C:\Windows\System32\LogonController.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000913288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000910768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000910544 _____ (Microsoft Corporation) C:\Windows\System32\ttdrecord.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000909312 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000909312 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Devices.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000907080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfaudiocnv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000906656 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Vid.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000905216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BTAGService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000905216 _____ (Microsoft Corporation) C:\Windows\System32\Windows.CloudStore.EarlyDownloader.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000902264 _____ (Microsoft Corporation) C:\Windows\System32\NgcIso.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapi3.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000901120 _____ (Microsoft Corporation) C:\Windows\System32\windows.immersiveshell.serviceprovider.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000901120 _____ (Microsoft Corporation) C:\Windows\System32\UiaManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000899816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000898480 _____ (Microsoft Corporation) C:\Windows\System32\wimgapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000898480 _____ (Microsoft Corporation) C:\Windows\System32\aemarebackup.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000898464 _____ (Microsoft Corporation) C:\Windows\System32\devinv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000897024 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Networking.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000894632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000894632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000892928 _____ (Microsoft Corporation) C:\Windows\System32\energy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000892600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000888832 _____ (Microsoft Corporation) C:\Windows\System32\fvewiz.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000886784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000885752 _____ (Microsoft Corporation) C:\Windows\System32\oleaut32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000885712 _____ (Microsoft Corporation) C:\Windows\System32\audiodg.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000884736 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Graphics.Printing.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000884736 _____ (Microsoft Corporation) C:\Windows\System32\Bubbles.scr
2025-03-27 20:25 - 2025-03-27 20:25 - 000884224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmkvsrcsnk.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000883712 _____ C:\Windows\System32\TaskManagerDataLayer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000876544 _____ (Microsoft Corporation) C:\Windows\System32\iphlpsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000875520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000874496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000873912 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\acpi.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000873336 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000872448 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000872448 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Media.BackgroundMediaPlayback.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000872448 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_PCDisplay.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000868352 _____ (Microsoft Corporation) C:\Windows\System32\InputSwitch.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000868352 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\nwifi.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000865280 _____ (Microsoft Corporation) C:\Windows\System32\WindowsInternal.ComposableShell.Display.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000864256 _____ (Microsoft Corporation) C:\Windows\System32\WlanMediaManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000864256 _____ (Microsoft Corporation) C:\Windows\System32\certca.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000864256 _____ (Microsoft Corporation) C:\Windows\System32\cdpsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000863232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devmgr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000861992 _____ C:\Windows\SysWOW64\locale.nls
2025-03-27 20:25 - 2025-03-27 20:25 - 000861992 _____ C:\Windows\System32\locale.nls
2025-03-27 20:25 - 2025-03-27 20:25 - 000860160 _____ (Microsoft Corporation) C:\Windows\System32\nshwfp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000857520 _____ (Microsoft Corporation) C:\Windows\System32\vmcompute.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000854944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ServicingCommon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000851968 _____ (Microsoft Corporation) C:\Windows\System32\NgcIsoCtnr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000850432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000848552 _____ (Microsoft Corporation) C:\Windows\System32\dmcmnutils.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000847872 _____ (Microsoft Corporation) C:\Windows\System32\esentutl.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000843776 _____ (Microsoft Corporation) C:\Windows\System32\WpcWebFilter.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000842240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000840272 _____ (Microsoft Corporation) C:\Windows\System32\fontdrvhost.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000839680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000837120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000837120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\agentactivationruntimewindows.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000836328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000836192 _____ (Microsoft Corporation) C:\Windows\System32\WUDFx02000.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000835584 _____ (Microsoft Corporation) C:\Windows\System32\wdc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000835584 _____ (Microsoft Corporation) C:\Windows\System32\SettingsEnvironment.Desktop.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000835584 _____ (Microsoft Corporation) C:\Windows\System32\cscui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000833536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000832032 _____ (Microsoft Corporation) C:\Windows\System32\mscms.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000831488 _____ (Microsoft Corporation) C:\Windows\System32\NgcCtnrSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000831488 _____ (Microsoft Corporation) C:\Windows\System32\localkdcsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000831488 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000830408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpx.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000827912 _____ (Microsoft Corporation) C:\Windows\System32\kernel32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000827392 _____ (Microsoft Corporation) C:\Windows\System32\SpaceControl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000823896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000820664 _____ (Microsoft Corporation) C:\Windows\System32\LicensingWinRT.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000815104 _____ (Microsoft Corporation) C:\Windows\System32\schannel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000811368 _____ (Microsoft Corporation) C:\Windows\System32\ipnathlp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000811008 _____ (Microsoft Corporation) C:\Windows\System32\RDXService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000807216 _____ (Microsoft Corporation) C:\Windows\System32\webio.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000807216 _____ (Microsoft Corporation) C:\Windows\System32\policymanager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000806912 _____ (Microsoft Corporation) C:\Windows\System32\wiaservc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000806912 _____ (Microsoft Corporation) C:\Windows\System32\msctfuimanager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000803128 _____ (Microsoft Corporation) C:\Windows\System32\windows.applicationmodel.datatransfer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000802816 _____ (Microsoft Corporation) C:\Windows\System32\wpnprv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000802816 _____ (Microsoft Corporation) C:\Windows\System32\printui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000800176 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000798720 _____ (Microsoft Corporation) C:\Windows\System32\w32time.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000798720 _____ (Microsoft Corporation) C:\Windows\System32\AppReadiness.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000797696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\opengl32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000796088 _____ (Microsoft Corporation) C:\Windows\System32\AboutSettingsHandlers.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000794624 _____ (Microsoft Corporation) C:\Windows\System32\sqlsrv32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000794624 _____ (Microsoft Corporation) C:\Windows\System32\PerceptionSimulationManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000794624 _____ (Microsoft Corporation) C:\Windows\System32\odbc32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000793088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\agentactivationruntime.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000790528 _____ (Microsoft Corporation) C:\Windows\System32\sdcpl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000790528 _____ (Microsoft Corporation) C:\Windows\System32\MrmIndexer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000790528 _____ (Microsoft Corporation) C:\Windows\System32\ieproxy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000786432 _____ (Microsoft Corporation) C:\Windows\System32\ngccredprov.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000785336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Services.TargetedContent.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000782440 _____ (Microsoft Corporation) C:\Windows\System32\MFCaptureEngine.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000782336 _____ (Microsoft Corporation) C:\Windows\System32\wlansec.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000782336 _____ (Microsoft Corporation) C:\Windows\System32\d3d9on12.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000778320 _____ (Microsoft Corporation) C:\Windows\System32\sppwinob.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000778240 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Networking.Connectivity.dll

steaf 05.04.2025 21:40
Code:

2025-03-27 20:25 - 2025-03-27 20:25 - 000778240 _____ (Microsoft Corporation) C:\Windows\System32\Windows.AccountsControl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000778240 _____ (Microsoft Corporation) C:\Windows\System32\SmartcardCredentialProvider.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000778240 _____ (Microsoft Corporation) C:\Windows\System32\hhctrl.ocx
2025-03-27 20:25 - 2025-03-27 20:25 - 000778240 _____ (Microsoft Corporation) C:\Windows\System32\efswrt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000774152 _____ (Microsoft Corporation) C:\Windows\System32\OneCoreCommonProxyStub.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000774144 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Search.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000774144 _____ (Microsoft Corporation) C:\Windows\System32\Magnify.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000770048 _____ (Microsoft Corporation) C:\Windows\System32\Windows.FileExplorer.Common.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000767416 _____ (Microsoft Corporation) C:\Windows\System32\WinREAgent.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000766464 _____ C:\Windows\SysWOW64\TaskManagerDataLayer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000765952 _____ (Microsoft Corporation) C:\Windows\System32\ApplicationFrame.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000762368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esentutl.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000761856 _____ (Microsoft Corporation) C:\Windows\System32\gpprefcl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000761344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000759224 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000757760 _____ (Microsoft Corporation) C:\Windows\System32\ntfsres.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000757760 _____ (Microsoft Corporation) C:\Windows\System32\AudioHandlers.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000755200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000753664 _____ (Microsoft Corporation) C:\Windows\System32\winspool.drv
2025-03-27 20:25 - 2025-03-27 20:25 - 000753664 _____ (Microsoft Corporation) C:\Windows\System32\vds.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000753152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000750080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UiaManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000749568 _____ (Microsoft Corporation) C:\Windows\System32\configmanager2.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000749056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000745472 _____ (Microsoft Corporation) C:\Windows\System32\wsecedit.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000745472 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Acx01000.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000742816 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\USBHUB3.SYS
2025-03-27 20:25 - 2025-03-27 20:25 - 000741376 _____ (Microsoft Corporation) C:\Windows\System32\lpksetup.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000741136 _____ (Microsoft Corporation) C:\Windows\System32\advapi32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000737280 _____ (Microsoft Corporation) C:\Windows\System32\FirewallAPI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000736256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000733184 _____ (Microsoft Corporation) C:\Windows\System32\Microsoft.Internal.FrameworkUdk.System.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000730552 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000729088 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Keyboard.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000729088 _____ (Microsoft Corporation) C:\Windows\System32\das.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000727040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000724992 _____ (Microsoft Corporation) C:\Windows\System32\twinui.appcore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000724992 _____ (Microsoft Corporation) C:\Windows\System32\cdpusersvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000724592 _____ (Microsoft Corporation) C:\Windows\System32\AppResolver.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000722376 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\USBXHCI.SYS
2025-03-27 20:25 - 2025-03-27 20:25 - 000722352 _____ (Microsoft Corporation) C:\Windows\System32\ReAgent.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000720896 _____ (Microsoft Corporation) C:\Windows\System32\ncsi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000716800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000716800 _____ (Microsoft Corporation) C:\Windows\System32\usercpl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000716344 _____ (Microsoft Corporation) C:\Windows\System32\TextShaping.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000708608 _____ (Microsoft Corporation) C:\Windows\System32\twinapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000708608 _____ (Microsoft Corporation) C:\Windows\System32\DevicesFlowBroker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000705624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000704512 _____ (Microsoft Corporation) C:\Windows\System32\wifinetworkmanager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000704512 _____ (Microsoft Corporation) C:\Windows\System32\uxtheme.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000704512 _____ (Microsoft Corporation) C:\Windows\System32\fcon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000703920 _____ (Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000700416 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Flights.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000700416 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Camera.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000700416 _____ (Microsoft Corporation) C:\Windows\System32\rastls.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000700416 _____ (Microsoft Corporation) C:\Windows\System32\PhotoMetadataHandler.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000700416 _____ (Microsoft Corporation) C:\Windows\System32\esevss.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000700416 _____ (Microsoft Corporation) C:\Windows\System32\CredProvDataModel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000699816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ttdrecord.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000698896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000696320 _____ (Microsoft Corporation) C:\Windows\System32\wpdshext.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000696320 _____ (Microsoft Corporation) C:\Windows\System32\MicrosoftAccountWAMExtension.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000695808 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.ShellCommon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000695640 _____ (Microsoft Corporation) C:\Windows\System32\d3d11on12.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000693664 _____ (Microsoft Corporation) C:\Windows\System32\PktMon.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000692224 _____ (Microsoft Corporation) C:\Windows\System32\WUDFx.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000692224 _____ (Microsoft Corporation) C:\Windows\System32\LockController.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000691712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlsrv32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000691560 _____ (Microsoft Corporation) C:\Windows\System32\sechost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000690176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000690176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputSwitch.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000689744 _____ (curl, hxxps://curl.se/) C:\Windows\System32\curl.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000688128 _____ (Microsoft Corporation) C:\Windows\System32\Windows.CloudStore.Schema.DesktopShell.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000688128 _____ (Microsoft Corporation) C:\Windows\System32\QuietHours.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000688128 _____ (Microsoft Corporation) C:\Windows\System32\gpedit.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000688128 _____ (Microsoft Corporation) C:\Windows\System32\cloudAP.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000687400 _____ (Microsoft Corporation) C:\Windows\System32\dnsrslvr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000687032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000684032 _____ (Microsoft Corporation) C:\Windows\System32\SettingSyncDownloadHelper.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000682440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000680264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000679936 _____ (Microsoft Corporation) C:\Windows\System32\SmsRouterSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000679936 _____ (Microsoft Corporation) C:\Windows\System32\ShareHost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000679936 _____ (Microsoft Corporation) C:\Windows\System32\printfilterpipelinesvc.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000679936 _____ (Microsoft Corporation) C:\Windows\System32\ntshrui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000679152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000677376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certca.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000676168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000675024 _____ (Microsoft Corporation) C:\Windows\System32\directmanipulation.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000669184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000668672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000667648 _____ (Microsoft Corporation) C:\Windows\System32\usodocked.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000663552 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000662648 _____ (Microsoft Corporation) C:\Windows\System32\BioIso.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000659456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000659456 _____ (Microsoft Corporation) C:\Windows\System32\sppcext.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000659456 _____ (Microsoft Corporation) C:\Windows\System32\licensingdiag.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000659456 _____ (Microsoft Corporation) C:\Windows\System32\fveapibase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000656824 _____ (Microsoft Corporation) C:\Windows\System32\acmigration.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000655360 _____ (Microsoft Corporation) C:\Windows\System32\zipfldr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000655360 _____ (Microsoft Corporation) C:\Windows\System32\PhoneOm.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000653824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000652704 _____ (Microsoft Corporation) C:\Windows\System32\CloudExperienceHost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000651264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2025-03-27 20:25 - 2025-03-27 20:25 - 000651264 _____ (Microsoft Corporation) C:\Windows\System32\tdhres.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000651264 _____ (Microsoft Corporation) C:\Windows\System32\facecredentialprovider.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000650232 _____ (Microsoft Corporation) C:\Windows\System32\apphelp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000648264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextShaping.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000648192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000647168 _____ (Microsoft Corporation) C:\Windows\System32\AssignedAccessManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000646112 _____ (Microsoft Corporation) C:\Windows\System32\wininit.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000646104 _____ (Microsoft Corporation) C:\Windows\System32\ucrtbase_enclave.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000646072 _____ (Microsoft Corporation) C:\Windows\System32\aepic.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000645632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000643072 _____ (Microsoft Corporation) C:\Windows\System32\EnterpriseAppMgmtSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000641936 _____ (Microsoft Corporation) C:\Windows\System32\mfsensorgroup.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000641024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000640600 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\intelpep.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000640456 _____ (Microsoft Corporation) C:\Windows\System32\WerFault.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000640416 _____ (Microsoft Corporation) C:\Windows\System32\wimserv.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000640416 _____ (Microsoft Corporation) C:\Windows\System32\invagent.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000640064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000638976 _____ (Microsoft Corporation) C:\Windows\System32\WFDSConMgrSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000638976 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000638976 _____ (Microsoft Corporation) C:\Windows\System32\appwiz.cpl
2025-03-27 20:25 - 2025-03-27 20:25 - 000637792 _____ (Microsoft Corporation) C:\Windows\System32\MMDevAPI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000630784 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_SpeechPrivacy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000630784 _____ (Microsoft Corporation) C:\Windows\System32\rdbui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000630784 _____ (Microsoft Corporation) C:\Windows\System32\ddraw.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000624072 _____ (Microsoft Corporation) C:\Windows\System32\microsoft-windows-system-events.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000624032 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\fltMgr.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000623616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esevss.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000622592 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Devices.Lights.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000622592 _____ (Microsoft Corporation) C:\Windows\System32\FrameServerClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000622592 _____ (Microsoft Corporation) C:\Windows\System32\AudioEndpointBuilder.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000618496 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.OpenWithHost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000617888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000617472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000615880 _____ (Microsoft Corporation) C:\Windows\System32\vmuidevices.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000614400 _____ (Microsoft Corporation) C:\Windows\System32\TileDataRepository.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000614400 _____ (Microsoft Corporation) C:\Windows\System32\msra.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000614400 _____ (Microsoft Corporation) C:\Windows\System32\mbsmsapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000614400 _____ (Microsoft Corporation) C:\Windows\System32\laps.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000610304 _____ (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000610304 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_UserAccount.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000610304 _____ (Microsoft Corporation) C:\Windows\System32\netshell.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000608672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000607232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000606208 _____ (Microsoft Corporation) C:\Windows\System32\NgcCtnr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000606208 _____ (Microsoft Corporation) C:\Windows\System32\LanguageOverlayServer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000606208 _____ (Microsoft Corporation) C:\Windows\System32\bdesvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000604768 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Media.MediaControl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000602112 _____ (Microsoft Corporation) C:\Windows\System32\themeui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000602112 _____ (Microsoft Corporation) C:\Windows\System32\PrintRenderAPIHost.DLL
2025-03-27 20:25 - 2025-03-27 20:25 - 000602112 _____ (Microsoft Corporation) C:\Windows\System32\Microsoft.Bluetooth.UserService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000601656 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000601032 _____ (Microsoft Corporation) C:\Windows\System32\domiprov.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000600576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Internal.FrameworkUdk.System.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000600272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.applicationmodel.datatransfer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000599472 _____ (Microsoft Corporation) C:\Windows\System32\msv1_0.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000599176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000598016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000598016 _____ (Microsoft Corporation) C:\Windows\System32\nltest.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000598016 _____ (Microsoft Corporation) C:\Windows\System32\dsound.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000596992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9on12.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000595384 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\pci.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000595072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppResolver.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000593920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000593920 _____ (Microsoft Corporation) C:\Windows\System32\SessEnv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000592384 _____ (Microsoft Corporation) C:\Windows\System32\wlanapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000592352 _____ (Microsoft Corporation) C:\Windows\System32\DMRServer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000590336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.FileExplorer.Common.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000589824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000589824 _____ (Microsoft Corporation) C:\Windows\System32\WinBioDataModel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000589824 _____ (Microsoft Corporation) C:\Windows\System32\slui.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000589824 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_OptionalFeatures.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000589824 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_BatteryUsage.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000589824 _____ (Microsoft Corporation) C:\Windows\System32\profsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000589824 _____ (Microsoft Corporation) C:\Windows\System32\PrintWorkflowService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000589824 _____ (Microsoft Corporation) C:\Windows\System32\osk.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000589824 _____ (Microsoft Corporation) C:\Windows\System32\omadmclient.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000589824 _____ (Microsoft Corporation) C:\Windows\System32\fstx.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000589824 _____ (Microsoft Corporation) C:\Windows\System32\DispBroker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000589312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000588800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000588288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000588232 _____ (Microsoft Corporation) C:\Windows\System32\MFPlay.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000585728 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cldflt.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000584704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000584624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000582200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000581632 _____ (Microsoft Corporation) C:\Windows\System32\modernexecserver.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000581632 _____ (Microsoft Corporation) C:\Windows\System32\MBMediaManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000581120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngccredprov.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000579584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000577536 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Data.Activities.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000577536 _____ (Microsoft Corporation) C:\Windows\System32\ncryptprov.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000577536 _____ (Microsoft Corporation) C:\Windows\System32\MitigationClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000577536 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2025-03-27 20:25 - 2025-03-27 20:25 - 000577536 _____ (Microsoft Corporation) C:\Windows\regedit.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000576000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2025-03-27 20:25 - 2025-03-27 20:25 - 000574904 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2025-03-27 20:25 - 2025-03-27 20:25 - 000573440 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.Devices.Bluetooth.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000573440 _____ (Microsoft Corporation) C:\Windows\System32\TextInputMethodFormatter.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000573440 _____ (Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000573440 _____ (Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000573440 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\BthA2dp.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000573440 _____ (Microsoft Corporation) C:\Windows\System32\aclui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000572928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000572928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000570824 _____ (Microsoft Corporation) C:\Windows\System32\generaltel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000570800 _____ (Microsoft Corporation) C:\Windows\System32\spwizeng.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000569344 _____ (Microsoft Corporation) C:\Windows\System32\SystemSettings.UserAccountsHandlers.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000569344 _____ (Microsoft Corporation) C:\Windows\System32\scesrv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000569344 _____ (Microsoft Corporation) C:\Windows\System32\AarSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000567600 _____ (Microsoft Corporation) C:\Windows\System32\wow64win.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000565248 _____ (Microsoft Corporation) C:\Windows\System32\SearchFolder.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000565248 _____ (Microsoft Corporation) C:\Windows\System32\Print.PrintSupport.Source.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000565248 _____ (Microsoft Corporation) C:\Windows\System32\DeviceEnroller.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000561152 _____ (Microsoft Corporation) C:\Windows\System32\CoreShellAPI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000559328 _____ (Microsoft Corporation) C:\Windows\System32\mf.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000557056 _____ (Microsoft Corporation) C:\Windows\System32\shdocvw.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000552960 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Notifications.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000552960 _____ (Microsoft Corporation) C:\Windows\System32\mdmregistration.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000552960 _____ (Microsoft Corporation) C:\Windows\System32\ChxAPDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000551064 _____ (Microsoft Corporation) C:\Windows\System32\Faultrep.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000550304 _____ (Microsoft Corporation) C:\Windows\System32\rdpinit.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000548864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapibase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000548864 _____ (Microsoft Corporation) C:\Windows\System32\upnphost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000548864 _____ (Microsoft Corporation) C:\Windows\System32\ntprint.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000548864 _____ (Microsoft Corporation) C:\Windows\System32\nettrace.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000548864 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ks.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000546248 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\clfs.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000545792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fcon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000544768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000544768 _____ (Microsoft Corporation) C:\Windows\System32\FWPUCLNT.DLL
2025-03-27 20:25 - 2025-03-27 20:25 - 000543744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000542136 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000542112 _____ (Microsoft Corporation) C:\Windows\System32\UpdateCompression.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000540672 _____ (Microsoft Corporation) C:\Windows\System32\mprapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000539840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000539648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddraw.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000539136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintRenderAPIHost.DLL
2025-03-27 20:25 - 2025-03-27 20:25 - 000536576 _____ (Microsoft Corporation) C:\Windows\System32\spaceutil.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000536576 _____ (Microsoft Corporation) C:\Windows\System32\ResourceMapper.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000536576 _____ (Microsoft Corporation) C:\Windows\System32\Geolocation.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000536576 _____ (Microsoft Corporation) C:\Windows\System32\BthAvctpSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000532480 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\HdAudio.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000531888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000530376 _____ (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000529528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000528384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2025-03-27 20:25 - 2025-03-27 20:25 - 000528384 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_InputPersonalization.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000527872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncDownloadHelper.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000525768 _____ (Microsoft Corporation) C:\Windows\System32\bcdedit.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000524352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000524328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsensorgroup.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000524288 _____ (Microsoft Corporation) C:\Windows\System32\wlanmsm.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000524288 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.PredictionUnit.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000524288 _____ (Microsoft Corporation) C:\Windows\System32\SyncCenter.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000524288 _____ (Microsoft Corporation) C:\Windows\System32\ChxHAPDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000522240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000520192 _____ (Microsoft Corporation) C:\Windows\System32\windows.internal.shellcommon.shareexperience.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000520192 _____ (Microsoft Corporation) C:\Windows\System32\upnp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000520192 _____ (Microsoft Corporation) C:\Windows\System32\dsregcmd.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000520192 _____ (Microsoft Corporation) C:\Windows\System32\certreq.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000520192 _____ (Microsoft Corporation) C:\Windows\System32\actxprxy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000517552 _____ (Microsoft Corporation) C:\Windows\System32\NetMgmtIF.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000517536 _____ (Microsoft Corporation) C:\Windows\System32\gpupvdev.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000516608 _____ C:\Windows\System32\Windows.Internal.Shell.CloudDesktop.TransitionScreen.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000516096 _____ (Microsoft Corporation) C:\Windows\System32\TpmTasks.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000516096 _____ (Microsoft Corporation) C:\Windows\System32\ShellHost.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000516096 _____ (Microsoft Corporation) C:\Windows\System32\PlayToManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000515024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000513832 _____ (Microsoft Corporation) C:\Windows\System32\coml2.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000513464 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Classpnp.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000512512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000512000 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.HardwareConfirmator.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000511904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000508368 _____ (Microsoft Corporation) C:\Windows\System32\SIHClient.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000507904 _____ (Microsoft Corporation) C:\Windows\System32\vmvpci.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000507904 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Pen.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000507904 _____ (Microsoft Corporation) C:\Windows\System32\installmon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000505856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdhres.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000505712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000505344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regedit.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000505344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingDiagSpp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000505344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000503808 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Display.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000503808 _____ (Microsoft Corporation) C:\Windows\System32\mprdim.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000503808 _____ (Microsoft Corporation) C:\Windows\System32\Microsoft.Uev.Office2013CustomActions.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000503808 _____ (Microsoft Corporation) C:\Windows\System32\dxdiagn.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000503808 _____ (Microsoft Corporation) C:\Windows\System32\cryptngc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000503808 _____ (Microsoft Corporation) C:\Windows\System32\certcli.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000501760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintWorkflowService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000501168 _____ (Microsoft Corporation) C:\Windows\System32\nonarpinv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000499712 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_WorkAccess.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000499712 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_CapabilityAccess.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000499528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000495616 _____ (Microsoft Corporation) C:\Windows\System32\PeerDistSh.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000493856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11on12.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000493000 _____ (Microsoft Corporation) C:\Windows\System32\SystemSettings.DataModel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000492976 _____ (Microsoft Corporation) C:\Windows\System32\computestorage.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000491520 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.AppDefaults.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000491520 _____ (Microsoft Corporation) C:\Windows\System32\uireng.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000491520 _____ (Microsoft Corporation) C:\Windows\System32\themecpl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000491520 _____ (Microsoft Corporation) C:\Windows\System32\smbwmiv2.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000491520 _____ (Microsoft Corporation) C:\Windows\System32\ninput.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000491520 _____ (Microsoft Corporation) C:\Windows\System32\MicrosoftAccountExtension.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000491520 _____ (Microsoft Corporation) C:\Windows\System32\LicensingDiagSpp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000491520 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\MbbCx.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneOm.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000489064 _____ (Microsoft Corporation) C:\Windows\System32\AcGenral.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShellCommonCommonProxyStub.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FrameServerClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000487424 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Accessibility.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000487424 _____ (Microsoft Corporation) C:\Windows\System32\NetSetupShim.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000486832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000486400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000484864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000483328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000483328 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Region.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000483328 _____ (Microsoft Corporation) C:\Windows\System32\pairtool.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000483328 _____ (Microsoft Corporation) C:\Windows\System32\LockHostingFramework.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000483328 _____ (Microsoft Corporation) C:\Windows\System32\DesktopShellExt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000483328 _____ (Microsoft Corporation) C:\Windows\System32\credprovhost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000479232 _____ (Microsoft Corporation) C:\Windows\System32\IESettingSync.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000479232 _____ (Microsoft Corporation) C:\Windows\System32\es.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000479232 _____ (Microsoft Corporation) C:\Windows\System32\dusmsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000479232 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\portcls.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000479232 _____ (Microsoft Corporation) C:\Windows\System32\ChtCangjieDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000477696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000476688 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Graphics.Display.DisplayEnhancementOverride.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000475136 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Devices.WiFiDirect.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000475136 _____ (Microsoft Corporation) C:\Windows\System32\sysmon.ocx
2025-03-27 20:25 - 2025-03-27 20:25 - 000475136 _____ (Microsoft Corporation) C:\Windows\System32\SmartActionPlatform.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000475136 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Lighting.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000475136 _____ (Microsoft Corporation) C:\Windows\System32\ChtHkStrokeDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000475136 _____ (Microsoft Corporation) C:\Windows\System32\ChtBopomofoDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000475136 _____ (Microsoft Corporation) C:\Windows\System32\ChsStrokeDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000472576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000472536 _____ (Microsoft Corporation) C:\Windows\System32\fclip.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Lights.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000471040 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_AssignedAccess.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000471040 _____ (Microsoft Corporation) C:\Windows\System32\ChtQuickDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000468992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreShellAPI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000466944 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Cortana.Desktop.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000466944 _____ (Microsoft Corporation) C:\Windows\System32\Windows.ApplicationModel.LockScreen.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000466944 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_OneCore_PowerAndSleep.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000466944 _____ (Microsoft Corporation) C:\Windows\System32\rasdlg.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000465920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Print.PrintSupport.Source.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000464288 _____ (Microsoft Corporation) C:\Windows\System32\thumbcache.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000463872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000463872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountWAMExtension.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000462848 _____ (Microsoft Corporation) C:\Windows\System32\Wldap32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000462848 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_User.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000462848 _____ (Microsoft Corporation) C:\Windows\System32\PushToInstall.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000462312 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_DesktopTaskbar.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000461824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000460304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000460232 _____ (Microsoft Corporation) C:\Windows\System32\ThreatIntelligence.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000460192 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\fastfat.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsound.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000458752 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Fonts.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000458752 _____ (Microsoft Corporation) C:\Windows\System32\LockScreenData.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000458752 _____ (Microsoft Corporation) C:\Windows\System32\drvinst.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Devices.Bluetooth.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DispBroker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000457216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AarSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000456704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000456704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fstx.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000456024 _____ (Microsoft Corporation) C:\Windows\System32\AudioSrvPolicyManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000455680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000455584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000454656 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Shell.BlueLightReduction.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000454656 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_OneCore_BatterySaver.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000454656 _____ (Microsoft Corporation) C:\Windows\System32\ModernPrintConfigHelper.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nettrace.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000452016 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\exfat.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000452000 _____ (Microsoft Corporation) C:\Windows\System32\dhcpcore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000451896 _____ (Microsoft Corporation) C:\Windows\System32\tprtdll.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000450560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2025-03-27 20:25 - 2025-03-27 20:25 - 000450560 _____ (Microsoft Corporation) C:\Windows\System32\wpnclient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000450560 _____ (Microsoft Corporation) C:\Windows\System32\policymanagerprecheck.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000450560 _____ (Microsoft Corporation) C:\Windows\System32\DeveloperOptionsSettingsHandlers.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000447944 _____ (Microsoft Corporation) C:\Windows\System32\AppxAllUserStore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000447760 _____ (Microsoft Corporation) C:\Windows\System32\CredentialEnrollmentManager.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000446464 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.PicturePassword.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000446464 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Gpu.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000446464 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Gaming.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000446464 _____ (Microsoft Corporation) C:\Windows\System32\provplatformdesktop.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000446464 _____ (Microsoft Corporation) C:\Windows\System32\DictationManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000446464 _____ (Microsoft Corporation) C:\Windows\System32\aadauthhelper.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000446352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000443632 _____ (Microsoft Corporation) C:\Windows\System32\mswsock.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000442368 _____ (Microsoft Corporation) C:\Windows\System32\wlanui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000442368 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Devices.Picker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000442368 _____ (Microsoft Corporation) C:\Windows\System32\LockAppBroker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDistSh.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000439736 _____ (Microsoft Corporation) C:\Windows\System32\nvspinfo.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000439736 _____ (Microsoft Corporation) C:\Windows\System32\input.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000438272 _____ (Microsoft Corporation) C:\Windows\System32\SustainabilityService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000438272 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Authentication.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000438272 _____ (Microsoft Corporation) C:\Windows\System32\oleacc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000434176 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000434176 _____ (Microsoft Corporation) C:\Windows\System32\srvsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000434176 _____ (Microsoft Corporation) C:\Windows\System32\PrintScanBrokerService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000434176 _____ (Microsoft Corporation) C:\Windows\System32\credprovs.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000434176 _____ (Microsoft Corporation) C:\Windows\System32\BioCredProv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000433664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000433152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000432640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000432128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000430080 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.Signals.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000430080 _____ (Microsoft Corporation) C:\Windows\System32\RDXTaskFactory.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000430080 _____ (Microsoft Corporation) C:\Windows\System32\mscoree.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000430080 _____ (Microsoft Corporation) C:\Windows\System32\BingASDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000430000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwizeng.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000429568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcLayers.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000427584 _____ (Microsoft Corporation) C:\Windows\System32\GameInput.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000425984 _____ (Microsoft Corporation) C:\Windows\System32\wosc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000425984 _____ (Microsoft Corporation) C:\Windows\System32\vaultsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000425984 _____ (Microsoft Corporation) C:\Windows\System32\psr.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000425984 _____ (Microsoft Corporation) C:\Windows\System32\NaturalAuth.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000425984 _____ (Microsoft Corporation) C:\Windows\System32\mfmjpegdec.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000425984 _____ (Microsoft Corporation) C:\Windows\System32\DeviceSetupManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000425984 _____ (Microsoft Corporation) C:\Windows\System32\DAFIPP.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000425472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxdiagn.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000422928 _____ (Microsoft Corporation) C:\Windows\System32\winsta.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000421888 _____ (Microsoft Corporation) C:\Windows\System32\WinHvPlatform.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000421888 _____ (Microsoft Corporation) C:\Windows\System32\Phoneutil.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000421888 _____ (Microsoft Corporation) C:\Windows\System32\energyprov.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000421888 _____ (Microsoft Corporation) C:\Windows\System32\dosettings.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000418824 _____ (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000418816 _____ (Microsoft Corporation) C:\Windows\System32\shlwapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000417792 _____ (Microsoft Corporation) C:\Windows\System32\WinSATAPI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000417792 _____ (Microsoft Corporation) C:\Windows\System32\SDDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000417792 _____ (Microsoft Corporation) C:\Windows\System32\InstallServiceTasks.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000417792 _____ (Microsoft Corporation) C:\Windows\System32\fwpolicyiomgr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000417792 _____ (Microsoft Corporation) C:\Windows\System32\EthernetMediaManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000417792 _____ (Microsoft Corporation) C:\Windows\System32\BthAvrcp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000413696 _____ (Microsoft Corporation) C:\Windows\System32\wlangpui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000413696 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.BlockedShutdown.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000413696 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.UI.Shell.WindowTabManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000413696 _____ (Microsoft Corporation) C:\Windows\System32\SysFxUI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000413696 _____ (Microsoft Corporation) C:\Windows\System32\OneBackupHandler.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000411744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000411064 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbvideo.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000410536 _____ (Microsoft Corporation) C:\Windows\System32\MrmDeploy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000409600 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.CredDialogController.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000409600 _____ (Microsoft Corporation) C:\Windows\System32\WiFiDisplay.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000409600 _____ (Microsoft Corporation) C:\Windows\System32\NotificationControllerPS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000409600 _____ (Microsoft Corporation) C:\Windows\System32\ncbservice.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000409600 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\xboxgip.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000409600 _____ (Microsoft Corporation) C:\Windows\System32\AboveLockAppHost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000408608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000407552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncCenter.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000406984 _____ (Microsoft Corporation) C:\Windows\System32\InventorySvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000405504 _____ (Microsoft Corporation) C:\Windows\System32\wlancfg.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000405504 _____ (Microsoft Corporation) C:\Windows\System32\winsku.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000405504 _____ (Microsoft Corporation) C:\Windows\System32\resutils.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000405504 _____ (Microsoft Corporation) C:\Windows\System32\provengine.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000405504 _____ (Microsoft Corporation) C:\Windows\System32\ngcutils.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000405504 _____ (Microsoft Corporation) C:\Windows\System32\HeatCore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000405504 _____ (Microsoft Corporation) C:\Windows\System32\dot3svc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000405504 _____ (Microsoft Corporation) C:\Windows\System32\CertEnrollUI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000405504 _____ (Microsoft Corporation) C:\Windows\System32\AppxSip.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000405504 _____ (Microsoft Corporation) C:\Windows\System32\AcLayers.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000403456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2025-03-27 20:25 - 2025-03-27 20:25 - 000402872 _____ (Microsoft Corporation) C:\Windows\System32\offfilt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000402848 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\netvsc.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000401408 _____ (Microsoft Corporation) C:\Windows\System32\msinfo32.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000401408 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000399360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000399360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000398848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certreq.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000398168 _____ (Microsoft Corporation) C:\Windows\System32\cfgmgr32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000398136 _____ (Microsoft Corporation) C:\Windows\System32\powrprof.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000397312 _____ (Microsoft Corporation) C:\Windows\System32\stobject.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000397312 _____ (Microsoft Corporation) C:\Windows\System32\mscandui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000397312 _____ (Microsoft Corporation) C:\Windows\System32\CapabilityAccessManagerClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uireng.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000394032 _____ (Microsoft Corporation) C:\Windows\System32\BCP47Langs.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000393216 _____ (Microsoft Corporation) C:\Windows\System32\wkssvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000393216 _____ (Microsoft Corporation) C:\Windows\System32\SyncSettings.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000393216 _____ (Microsoft Corporation) C:\Windows\System32\fhcpl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000393216 _____ (Microsoft Corporation) C:\Windows\System32\ddisplay.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Geolocation.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000390600 _____ (Microsoft Corporation) C:\Windows\System32\nmscrub.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000390592 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000389920 _____ (Microsoft Corporation) C:\Windows\System32\wldp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000389896 _____ (Microsoft Corporation) C:\Windows\System32\LsaIso.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000389888 _____ (Microsoft Corporation) C:\Windows\System32\directxdatabasehelper.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000389872 _____ (Microsoft Corporation) C:\Windows\System32\ExecModelClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000389120 _____ (Microsoft Corporation) C:\Windows\System32\XpsDocumentTargetPrint.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000389120 _____ (Microsoft Corporation) C:\Windows\System32\wpr.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000389120 _____ (Microsoft Corporation) C:\Windows\System32\wcnwiz.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000389120 _____ (Microsoft Corporation) C:\Windows\System32\appinfo.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000388608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000388040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\coml2.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000385800 _____ (Microsoft Corporation) C:\Windows\System32\wscsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000385024 _____ (Microsoft Corporation) C:\Windows\System32\UserMgrProxy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000385024 _____ (Microsoft Corporation) C:\Windows\System32\prnntfy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000385024 _____ (Microsoft Corporation) C:\Windows\System32\mmsys.cpl
2025-03-27 20:25 - 2025-03-27 20:25 - 000385024 _____ (Microsoft Corporation) C:\Windows\System32\cryptui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000385024 _____ (Microsoft Corporation) C:\Windows\System32\BitLockerCsp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000382392 _____ (Microsoft Corporation) C:\Windows\System32\WUDFHost.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000382368 _____ (Microsoft Corporation) C:\Windows\System32\NetworkBindingEngineMigPlugin.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000380928 _____ (Microsoft Corporation) C:\Windows\System32\QuickActionsDataModel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000380928 _____ (Microsoft Corporation) C:\Windows\System32\ConsoleLogon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000379904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000378368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2025-03-27 20:25 - 2025-03-27 20:25 - 000378296 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\netadaptercx.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000378296 _____ (Microsoft Corporation) C:\Windows\System32\cimfs.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000376832 _____ (Microsoft Corporation) C:\Windows\System32\WiFiCloudStore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000376832 _____ (Microsoft Corporation) C:\Windows\System32\UnifiedConsent.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000376832 _____ (Microsoft Corporation) C:\Windows\System32\TpmTool.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000376832 _____ (Microsoft Corporation) C:\Windows\System32\srumsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000376832 _____ (Microsoft Corporation) C:\Windows\System32\rasmontr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000376832 _____ (Microsoft Corporation) C:\Windows\System32\pnpdiag.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000376832 _____ (Microsoft Corporation) C:\Windows\System32\pcaui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000376832 _____ (Microsoft Corporation) C:\Windows\System32\DMPushRouterCore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000376832 _____ (Microsoft Corporation) C:\Windows\System32\cmd.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000376320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000374216 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WUDFRd.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000374192 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tpm.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000373360 _____ (Microsoft Corporation) C:\Windows\System32\biwinrt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000372736 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.UI.Dialogs.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000372736 _____ (Microsoft Corporation) C:\Windows\System32\sppnp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000372736 _____ (Microsoft Corporation) C:\Windows\System32\pku2u.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000372736 _____ (Microsoft Corporation) C:\Windows\System32\jpndecoder.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000372736 _____ (Microsoft Corporation) C:\Windows\System32\eeprov.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000372736 _____ (Microsoft Corporation) C:\Windows\System32\ApplicationTargetedFeatureDatabase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000370176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000369256 _____ (Microsoft Corporation) C:\Windows\System32\wmpps.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000368640 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Devices.Usb.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000368640 _____ (Microsoft Corporation) C:\Windows\System32\tapisrv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000368640 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_HumanPresence.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000368640 _____ (Microsoft Corporation) C:\Windows\System32\RADCUI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000368640 _____ (Microsoft Corporation) C:\Windows\System32\provhandlers.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000368640 _____ (Microsoft Corporation) C:\Windows\System32\fveui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000368640 _____ (Microsoft Corporation) C:\Windows\System32\FrameServerMonitor.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000368640 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ahcache.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000368640 _____ (Microsoft Corporation) C:\Windows\System32\DAFMCP.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000368640 _____ (Microsoft Corporation) C:\Windows\System32\ChxDecoder.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000368640 _____ (Microsoft Corporation) C:\Windows\System32\AppLockerCSP.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmjpegdec.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000364544 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_PCDisplayRemote.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000364544 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Maps.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000364544 _____ (Microsoft Corporation) C:\Windows\System32\scecli.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000364544 _____ (Microsoft Corporation) C:\Windows\System32\netman.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000364544 _____ (Microsoft Corporation) C:\Windows\System32\dlnashext.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000364544 _____ (Microsoft Corporation) C:\Windows\System32\DataExchange.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000364544 _____ (Microsoft Corporation) C:\Windows\System32\dafWfdProvider.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DictationManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000363008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadauthhelper.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000361472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000360656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Display.DisplayEnhancementOverride.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000360448 _____ C:\Windows\System32\UXFrame.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000360448 _____ (Microsoft Corporation) C:\Windows\System32\wuceffects.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000360448 _____ (Microsoft Corporation) C:\Windows\System32\notepad.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000360448 _____ (Microsoft Corporation) C:\Windows\System32\eapphost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000360448 _____ (Microsoft Corporation) C:\Windows\System32\DesktopSwitcherDataModel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000360448 _____ (Microsoft Corporation) C:\Windows\System32\apisampling.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000360448 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000358832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000357816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UpdateCompression.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000356864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\difxapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000356856 _____ (Microsoft Corporation) C:\Windows\System32\wow64.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000356352 _____ C:\Windows\System32\Windows.Management.InprocObjects.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000356352 _____ (Microsoft Corporation) C:\Windows\System32\RecoveryDrive.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000356352 _____ (Microsoft Corporation) C:\Windows\System32\qwave.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000356352 _____ (Microsoft Corporation) C:\Windows\System32\msutb.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000356352 _____ (Microsoft Corporation) C:\Windows\System32\dxdiag.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000356352 _____ (Microsoft Corporation) C:\Windows\System32\discan.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000355328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdlg.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000353200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemSettings.DataModel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000352256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000352256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\es.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000352256 _____ (Microsoft Corporation) C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000352256 _____ (Microsoft Corporation) C:\Windows\System32\PowerGridForecastTask.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000352256 _____ (Microsoft Corporation) C:\Windows\System32\MBR2GPT.EXE
2025-03-27 20:25 - 2025-03-27 20:25 - 000350664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000350208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000349616 _____ (Microsoft Corporation) C:\Windows\System32\CloudExperienceHostBroker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000348160 _____ (Microsoft Corporation) C:\Windows\System32\UserDeviceRegistration.Ngc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000348160 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Cortana.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000348160 _____ (Microsoft Corporation) C:\Windows\System32\NetworkIcon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000348160 _____ (Microsoft Corporation) C:\Windows\System32\ndfapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000348160 _____ (Microsoft Corporation) C:\Windows\System32\DAFWSD.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000347136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000345544 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\sdbus.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000344064 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.Devices.Sensors.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000344064 _____ (Microsoft Corporation) C:\Windows\System32\TtlsAuth.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000344064 _____ (Microsoft Corporation) C:\Windows\System32\ssdpsrv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000344064 _____ (Microsoft Corporation) C:\Windows\System32\rastlsext.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000344064 _____ (Microsoft Corporation) C:\Windows\System32\InputCloudStore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000344064 _____ (Microsoft Corporation) C:\Windows\System32\AggregatorHost.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000343040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000342544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powrprof.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psr.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000339968 _____ (Microsoft Corporation) C:\Windows\System32\SCardSvr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000339968 _____ (Microsoft Corporation) C:\Windows\System32\newdev.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000339968 _____ (Microsoft Corporation) C:\Windows\System32\dot3gpui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000339936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000338944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollUI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000337312 _____ (Microsoft Corporation) C:\Windows\System32\wusys.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000336896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000336168 _____ (Microsoft Corporation) C:\Windows\System32\skci.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000336160 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Troubleshoot.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000335872 _____ C:\Windows\System32\EsclScan.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000335872 _____ (Microsoft Corporation) C:\Windows\System32\wc_storage.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000335872 _____ (Microsoft Corporation) C:\Windows\System32\sti.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000335872 _____ (Microsoft Corporation) C:\Windows\System32\cdd.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000335800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000333232 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_SIUF.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credprovhost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000332728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000331776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnclient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000331776 _____ (Microsoft Corporation) C:\Windows\System32\wpnservice.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000331776 _____ (Microsoft Corporation) C:\Windows\System32\StorageUsage.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000331776 _____ (Microsoft Corporation) C:\Windows\System32\provisioningcsp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000331776 _____ (Microsoft Corporation) C:\Windows\System32\prnfldr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000331776 _____ (Microsoft Corporation) C:\Windows\System32\msieftp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000331776 _____ (Microsoft Corporation) C:\Windows\System32\HttpsDataSource.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000331776 _____ (Microsoft Corporation) C:\Windows\System32\eapp3hst.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000331776 _____ (Microsoft Corporation) C:\Windows\System32\dpapisrv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000331776 _____ (Microsoft Corporation) C:\Windows\System32\CXHProvisioningServer.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000331776 _____ (Microsoft Corporation) C:\Windows\System32\container.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.CredDialogController.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000329728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000327680 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Accessibility.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000327680 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Energy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000327680 _____ (Microsoft Corporation) C:\Windows\System32\wersvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000327680 _____ (Microsoft Corporation) C:\Windows\System32\tcpmon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000327680 _____ (Microsoft Corporation) C:\Windows\System32\FirewallControlPanel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000327680 _____ (Microsoft Corporation) C:\Windows\System32\eappcfg.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000327680 _____ (Microsoft Corporation) C:\Windows\System32\DeviceDirectoryClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000327680 _____ (Microsoft Corporation) C:\Windows\System32\cscobj.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000327680 _____ (Microsoft Corporation) C:\Windows\System32\cleanmgr.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000327680 _____ (Microsoft Corporation) C:\Windows\System32\authz.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WiFiDisplay.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000326576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000325632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlancfg.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000325064 _____ (Microsoft Corporation) C:\Windows\System32\vmsif.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000325048 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rdyboost.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000325024 _____ (Microsoft Corporation) C:\Windows\System32\dhcpcore6.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000324952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shlwapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000323584 _____ (Microsoft Corporation) C:\Windows\System32\tetheringservice.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000323584 _____ (Microsoft Corporation) C:\Windows\System32\srchadmin.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000323584 _____ (Microsoft Corporation) C:\Windows\System32\MFDshowReverseBridge.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000323584 _____ (Microsoft Corporation) C:\Windows\System32\lltdsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000323584 _____ (Microsoft Corporation) C:\Windows\System32\eappcfgui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000322560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSATAPI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000322560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000321536 _____ C:\Windows\System32\CloudIdWxhExtension.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000320952 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\stornvme.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credprovs.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000319848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmDeploy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000319488 _____ (Microsoft Corporation) C:\Windows\System32\Win32CompatibilityAppraiserCSP.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000319488 _____ (Microsoft Corporation) C:\Windows\System32\wdigest.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000319488 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_SharedExperiences_Rome.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000319488 _____ (Microsoft Corporation) C:\Windows\System32\ppcsnap.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000319488 _____ (Microsoft Corporation) C:\Windows\System32\PkgMgr.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000319488 _____ (Microsoft Corporation) C:\Windows\System32\MtfDecoder.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxSip.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000317440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwpolicyiomgr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000317440 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Backup.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000315392 _____ (Microsoft Corporation) C:\Windows\System32\PhoneProviders.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000315392 _____ (Microsoft Corporation) C:\Windows\System32\McpManagementService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000315392 _____ (Microsoft Corporation) C:\Windows\System32\gpresult.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000315392 _____ (Microsoft Corporation) C:\Windows\System32\FrameServerMonitorClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000314640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BioCredProv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Phoneutil.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000312264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offfilt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000311808 _____ C:\Windows\System32\OobeWv2Host.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddisplay.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000311408 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\winnat.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000311368 _____ (Microsoft Corporation) C:\Windows\System32\ttdinject.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RADCUI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000311296 _____ (Microsoft Corporation) C:\Windows\System32\Utilman.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000311296 _____ (Microsoft Corporation) C:\Windows\System32\sti_ci.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000311296 _____ (Microsoft Corporation) C:\Windows\System32\ProvisioningHandlers.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000311296 _____ (Microsoft Corporation) C:\Windows\System32\fidocredprov.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000311296 _____ (Microsoft Corporation) C:\Windows\System32\CourtesyEngine.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockScreenData.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000308656 _____ (Microsoft Corporation) C:\Windows\System32\webthreatdefusersvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmontr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000307712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxdiag.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000307264 _____ (Microsoft Corporation) C:\Windows\System32\bootsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000307256 _____ (Microsoft Corporation) C:\Windows\System32\sspicli.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000307248 _____ (Microsoft Corporation) C:\Windows\System32\SensorsNativeApi.V2.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000307200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000307200 _____ (Microsoft Corporation) C:\Windows\System32\Windows.System.SystemManagement.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000307200 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Cortana.OneCore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000307200 _____ (Microsoft Corporation) C:\Windows\System32\Microsoft.Bluetooth.Proxy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000307200 _____ (Microsoft Corporation) C:\Windows\System32\fwbase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000307200 _____ (Microsoft Corporation) C:\Windows\System32\EaseOfAccessDialog.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000307200 _____ (Microsoft Corporation) C:\Windows\System32\bthserv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000307200 _____ (Microsoft Corporation) C:\Windows\System32\accessibilitycpl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000306864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directxdatabasehelper.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsku.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallControlPanel.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000304840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000304568 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Ucx01000.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000304560 _____ (Microsoft Corporation) C:\Windows\System32\browserbroker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000304544 _____ (Microsoft Corporation) C:\Windows\System32\tcbloader.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000303128 _____ (Microsoft Corporation) C:\Windows\System32\WUDFPlatform.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000303104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.UI.Dialogs.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000303104 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Storage.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000303104 _____ (Microsoft Corporation) C:\Windows\System32\sdiageng.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000303104 _____ (Microsoft Corporation) C:\Windows\System32\psmsrv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000303104 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\USBAUDIO.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000303104 _____ (Microsoft Corporation) C:\Windows\System32\difxapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000301736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreCommonProxyStub.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2025-03-27 20:25 - 2025-03-27 20:25 - 000301056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsDocumentTargetPrint.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000301056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000300680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExecModelClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000300448 _____ (Microsoft Corporation) C:\Windows\System32\SFAPM.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000300448 _____ (Microsoft Corporation) C:\Windows\System32\mpg2splt.ax
2025-03-27 20:25 - 2025-03-27 20:25 - 000300448 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\intelppm.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000299008 _____ (Microsoft Corporation) C:\Windows\System32\WpcTok.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000299008 _____ (Microsoft Corporation) C:\Windows\System32\VoiceAccess.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000299008 _____ (Microsoft Corporation) C:\Windows\System32\VideoHandlers.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000299008 _____ (Microsoft Corporation) C:\Windows\System32\sdbinst.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000299008 _____ (Microsoft Corporation) C:\Windows\System32\jpnranker.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000299008 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidclass.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000299008 _____ (Microsoft Corporation) C:\Windows\System32\DeviceCenter.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000297984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscandui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\HeatCore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000294912 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Devices.HumanInterfaceDevice.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000294912 _____ (Microsoft Corporation) C:\Windows\System32\umpoext.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000294912 _____ (Microsoft Corporation) C:\Windows\System32\shutdownux.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000294912 _____ (Microsoft Corporation) C:\Windows\System32\PenService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000294880 _____ (Microsoft Corporation) C:\Windows\System32\logoncli.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000294840 _____ (Microsoft Corporation) C:\Windows\System32\EditionUpgradeManagerObj.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DataExchange.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmTool.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000292352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConsoleLogon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000292296 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\wof.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000292272 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\spacedump.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000292256 _____ (Microsoft Corporation) C:\Windows\System32\wermgr.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppLockerCSP.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000290904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000290872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000290816 _____ (Microsoft Corporation) C:\Windows\System32\IndexedDbLegacy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000290816 _____ (Microsoft Corporation) C:\Windows\System32\feclient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000290816 _____ (Microsoft Corporation) C:\Windows\System32\cflapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000290816 _____ (Microsoft Corporation) C:\Windows\System32\bcdboot.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000290720 _____ (Microsoft Corporation) C:\Windows\System32\DXCore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000289792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000286720 _____ (Microsoft Corporation) C:\Windows\System32\msconfig.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000286720 _____ (Microsoft Corporation) C:\Windows\System32\ManageCI.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000286720 _____ (Microsoft Corporation) C:\Windows\System32\dafpos.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000286720 _____ (Microsoft Corporation) C:\Windows\System32\ComposableShellProxyStub.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000286616 _____ (Microsoft Corporation) C:\Windows\System32\LanguageOverlayUtil.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000286576 _____ (Microsoft Corporation) C:\Windows\System32\wscapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000286576 _____ (Microsoft Corporation) C:\Windows\System32\deviceaccess.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provplatformdesktop.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CapabilityAccessManagerClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000284088 _____ (Microsoft Corporation) C:\Windows\System32\nlhtml.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000282624 ____R (Microsoft Corporation) C:\Windows\System32\SecureAssessmentHandlers.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000282624 _____ (Microsoft Corporation) C:\Windows\System32\wpd_ci.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000282624 _____ (Microsoft Corporation) C:\Windows\System32\w32tm.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000282624 _____ (Microsoft Corporation) C:\Windows\System32\UsbSettingsHandlers.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000282624 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_ClosedCaptioning.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000282624 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Clipboard.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000282624 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000282624 _____ (Microsoft Corporation) C:\Windows\System32\GraphicsPerfSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000282624 _____ (Microsoft Corporation) C:\Windows\System32\eapputil.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000282624 _____ (Microsoft Corporation) C:\Windows\System32\ConsentUxClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cleanmgr.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000280064 _____ C:\Windows\SysWOW64\Windows.Management.InprocObjects.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000279992 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cimfs.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000278528 _____ (Microsoft Corporation) C:\Windows\System32\tapi32.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000278528 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_ManagePhone.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000278528 _____ (Microsoft Corporation) C:\Windows\System32\NetworkDesktopSettings.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000278528 _____ (Microsoft Corporation) C:\Windows\System32\fhcat.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000278016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpresult.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000277504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000276992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuceffects.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000275912 _____ (Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000275888 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ataport.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000275888 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\amdppm.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000275888 _____ (Microsoft Corporation) C:\Windows\System32\CloudExperienceHostUser.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000275872 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\processr.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3gpui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000274432 _____ (Microsoft Corporation) C:\Windows\System32\Windows.SharedPC.AccountManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000274432 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.CapturePicker.Desktop.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000274432 _____ (Microsoft Corporation) C:\Windows\System32\wincredui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000274432 _____ (Microsoft Corporation) C:\Windows\System32\RstrtMgr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000274432 _____ (Microsoft Corporation) C:\Windows\System32\prntvpt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000274432 _____ (Microsoft Corporation) C:\Windows\System32\powercfg.cpl
2025-03-27 20:25 - 2025-03-27 20:25 - 000274432 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\smbdirect.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000274432 _____ (Microsoft Corporation) C:\Windows\System32\coredpus.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000274432 _____ (Microsoft Corporation) C:\Windows\System32\charmap.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000274360 _____ C:\Windows\System32\ShareTargets.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qwave.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngcutils.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000272952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GameInput.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000271800 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\VerifierExt.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndfapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PkgMgr.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000270336 _____ (Microsoft Corporation) C:\Windows\System32\pnputil.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000270336 _____ (Microsoft Corporation) C:\Windows\System32\ngcrecovery.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000270336 _____ (Microsoft Corporation) C:\Windows\System32\netplwiz.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000270336 _____ (Microsoft Corporation) C:\Windows\System32\bthprops.cpl
2025-03-27 20:25 - 2025-03-27 20:25 - 000269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BitLockerCsp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srumsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000266240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnfldr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000266240 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.XamlHost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000266240 _____ (Microsoft Corporation) C:\Windows\System32\TetheringStation.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000266240 _____ (Microsoft Corporation) C:\Windows\System32\SndVolSSO.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000266240 _____ (Microsoft Corporation) C:\Windows\System32\ocsetapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000266240 _____ (Microsoft Corporation) C:\Windows\System32\authui.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000266080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.V2.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000265952 _____ (Microsoft Corporation) C:\Windows\System32\RTWorkQ.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsAuth.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000263624 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\scmbus.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000263600 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\amdk8.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000262656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Accessibility.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\TetheringMgr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\setupugc.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Startup.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\PersonalizationCSP.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\itss.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\IppCommon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\inetpp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\GraphicsCapture.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\DWWIN.EXE
2025-03-27 20:25 - 2025-03-27 20:25 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\drvsetup.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\DAFESCL.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\ContactHarvesterDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\ACPBackgroundManagerPolicy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000261832 _____ (Microsoft Corporation) C:\Windows\System32\KerbClientShared.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000260096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000259528 _____ (Microsoft Corporation) C:\Windows\System32\cmifw.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000259488 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\appid.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000259072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Devices.Sensors.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000259072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scecli.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000258048 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Networking.HostName.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000258048 _____ (Microsoft Corporation) C:\Windows\System32\softkbd.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000258048 _____ (Microsoft Corporation) C:\Windows\System32\PeopleBand.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000258048 _____ (Microsoft Corporation) C:\Windows\System32\ngcpopkeysrv.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000258048 _____ (Microsoft Corporation) C:\Windows\System32\ngckeyenum.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000258048 _____ (Microsoft Corporation) C:\Windows\System32\FileHistory.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000258048 _____ (Microsoft Corporation) C:\Windows\System32\dwmredir.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000258048 _____ (Microsoft Corporation) C:\Windows\System32\AccountHealth.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000257024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000255432 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\wcifs.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000254368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000254176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EditionUpgradeManagerObj.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastlsext.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FrameServerMonitorClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000253952 _____ (Microsoft Corporation) C:\Windows\System32\twext.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000253952 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_InkingTypingPrivacy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000253952 _____ (Microsoft Corporation) C:\Windows\System32\RelPost.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000253952 _____ (Microsoft Corporation) C:\Windows\System32\puiapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000253952 _____ (Microsoft Corporation) C:\Windows\System32\fwmdmcsp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000253952 _____ (Microsoft Corporation) C:\Windows\System32\AppXApplicabilityBlob.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000253560 _____ (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000253544 _____ (Microsoft Corporation) C:\Windows\System32\omadmapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000253520 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Storage.OneCore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000253440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000251824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusys.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000249856 _____ (Microsoft Corporation) C:\Windows\System32\WpdMtp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000249856 _____ (Microsoft Corporation) C:\Windows\System32\winbio.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000249856 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_Copilot.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000249856 _____ (Microsoft Corporation) C:\Windows\System32\hnsdiag.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000249424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ttdinject.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000249424 _____ (Microsoft Corporation) C:\Windows\System32\rsaenh.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srchadmin.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Energy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000247296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EaseOfAccessDialog.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000247224 _____ (Microsoft Corporation) C:\Windows\System32\KeyboardFilterSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000246784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFDshowReverseBridge.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000246272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\container.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000245760 _____ (Microsoft Corporation) C:\Windows\System32\XamlTileRender.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000245760 _____ (Microsoft Corporation) C:\Windows\System32\vbsapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000245760 _____ (Microsoft Corporation) C:\Windows\System32\SpaceAgent.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000245760 _____ (Microsoft Corporation) C:\Windows\System32\mskeyprotcli.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000245760 _____ (Microsoft Corporation) C:\Windows\System32\JpnServiceDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000245760 _____ (Microsoft Corporation) C:\Windows\System32\intl.cpl
2025-03-27 20:25 - 2025-03-27 20:25 - 000245760 _____ (Microsoft Corporation) C:\Windows\System32\DevPropMgr.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000245760 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fidocredprov.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\accessibilitycpl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdiageng.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Utilman.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000243128 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000241664 _____ (Microsoft Corporation) C:\Windows\System32\wusa.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000241664 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.System.UserProfile.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000241664 _____ (Microsoft Corporation) C:\Windows\System32\TabSvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000241664 _____ (Microsoft Corporation) C:\Windows\System32\PortableDeviceWiaCompat.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000241664 _____ (Microsoft Corporation) C:\Windows\System32\CloudDesktopCSP.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000241664 _____ (Microsoft Corporation) C:\Windows\System32\CaptureService.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000241664 _____ (Microsoft Corporation) C:\Windows\System32\BootMenuUX.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000239008 _____ (Microsoft Corporation) C:\Windows\System32\consent.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000237568 _____ (Microsoft Corporation) C:\Windows\System32\sendmail.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000237568 _____ (Microsoft Corporation) C:\Windows\System32\rdpinput.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000237568 _____ (Microsoft Corporation) C:\Windows\System32\LanguageComponentsInstaller.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000237568 _____ (Microsoft Corporation) C:\Windows\System32\desk.cpl
2025-03-27 20:25 - 2025-03-27 20:25 - 000237568 _____ (Microsoft Corporation) C:\Windows\System32\BluetoothApis.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000237496 _____ (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000237016 _____ (Microsoft Corporation) C:\Windows\System32\SensorsUtilsV2.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000236544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2025-03-27 20:25 - 2025-03-27 20:25 - 000234952 _____ (Microsoft Corporation) C:\Windows\System32\aadWamExtension.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000233984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmime.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000233472 _____ (Microsoft Corporation) C:\Windows\System32\UserDeviceRegistration.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000233472 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_UserIntent.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000233472 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_ContentDeliveryManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000233472 _____ (Microsoft Corporation) C:\Windows\System32\scrrun.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000233472 _____ (Microsoft Corporation) C:\Windows\System32\Robocopy.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000233472 _____ (Microsoft Corporation) C:\Windows\System32\raschap.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000233472 _____ (Microsoft Corporation) C:\Windows\System32\ptpprov.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000233472 _____ (Microsoft Corporation) C:\Windows\System32\pcaui.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000233472 _____ (Microsoft Corporation) C:\Windows\System32\ngctasks.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000233472 _____ (Microsoft Corporation) C:\Windows\System32\Microsoft-Windows-Internal-Shell-NearShareExperience.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000233472 _____ (Microsoft Corporation) C:\Windows\System32\dbgcore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000233416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000232904 _____ (Microsoft Corporation) C:\Windows\System32\WUDFCompanionHost.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000232896 _____ (Microsoft Corporation) C:\Windows\System32\SystemSettingsBroker.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000232880 _____ (Microsoft Corporation) C:\Windows\System32\rmclient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000232856 _____ (Microsoft Corporation) C:\Windows\System32\winbrand.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwbase.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000230840 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dumpsd.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000230816 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\storahci.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000229376 _____ (Microsoft Corporation) C:\Windows\System32\VirtualMon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000229376 _____ (Microsoft Corporation) C:\Windows\System32\umpo.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000229376 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_AppExecutionAlias.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000229376 _____ (Microsoft Corporation) C:\Windows\System32\NmaDirect.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000229376 _____ (Microsoft Corporation) C:\Windows\System32\ConsentExperienceCommon.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000229376 _____ (Microsoft Corporation) C:\Windows\System32\AppxSysprep.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000228776 _____ (Microsoft Corporation) C:\Windows\System32\smss.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000228752 ____R (Microsoft Corporation) C:\Windows\System32\coreglobconfig.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000227848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000226760 _____ (Microsoft Corporation) C:\Windows\System32\hvloader.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000226744 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\partmgr.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000226720 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\msgpioclx.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000225280 _____ (Microsoft Corporation) C:\Windows\System32\PasswordEnrollmentManager.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000225280 _____ (Microsoft Corporation) C:\Windows\System32\NPSM.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000225280 _____ (Microsoft Corporation) C:\Windows\System32\LegacyNetUXHost.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000225280 _____ (Microsoft Corporation) C:\Windows\System32\globinputhost.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000225280 _____ (Microsoft Corporation) C:\Windows\System32\Family.SyncEngine.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000225280 _____ (Microsoft Corporation) C:\Windows\System32\EsclWiaDriver.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000225280 _____ (Microsoft Corporation) C:\Windows\System32\dmcsps.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000225280 _____ (Microsoft Corporation) C:\Windows\System32\dafupnp.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000225280 _____ (Microsoft Corporation) C:\Windows\System32\cryptcatsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000225280 _____ (Microsoft Corporation) C:\Windows\System32\cic.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000225280 _____ (Microsoft Corporation) C:\Windows\System32\Apx01000.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000224768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000224768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000224640 _____ (Microsoft Corporation) C:\Windows\System32\upfc.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000224592 _____ (Microsoft Corporation) C:\Windows\System32\winmm.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000224592 _____ (Microsoft Corporation) C:\Windows\System32\BCP47mrm.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\feclient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000223744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVolSSO.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000222648 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ocsetapi.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceCenter.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000221184 _____ (Microsoft Corporation) C:\Windows\System32\SystemSettings.DeviceEncryptionHandlers.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000221184 _____ (Microsoft Corporation) C:\Windows\System32\rasman.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000221184 _____ (Microsoft Corporation) C:\Windows\System32\NotificationIntelligencePlatform.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000221184 _____ (Microsoft Corporation) C:\Windows\System32\LiveCaptions.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000221184 _____ (Microsoft Corporation) C:\Windows\System32\EsclProtocol.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000221184 _____ (Microsoft Corporation) C:\Windows\System32\EapTeapAuth.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000221184 _____ (Microsoft Corporation) C:\Windows\System32\DeviceUpdateAgent.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000221184 _____ (Microsoft Corporation) C:\Windows\System32\DeviceSoftwareInstallationClient.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000221184 _____ (Microsoft Corporation) C:\Windows\System32\credprovslegacy.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000221184 _____ (Microsoft Corporation) C:\Windows\System32\cabview.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000221184 _____ (Microsoft Corporation) C:\Windows\System32\autopilot.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000220504 _____ (Microsoft Corporation) C:\Windows\System32\CompPkgSup.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000220496 _____ (Microsoft Corporation) C:\Windows\System32\WerFaultSecure.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000220464 _____ (Microsoft Corporation) C:\Windows\System32\IPHLPAPI.DLL
2025-03-27 20:25 - 2025-03-27 20:25 - 000219096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXCore.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000218552 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\PktMon.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000217088 _____ (Microsoft Corporation) C:\Windows\System32\XpsToPclmConverter.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000217088 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_BackgroundApps.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000217088 _____ (Microsoft Corporation) C:\Windows\System32\MTFFuzzyDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000217088 _____ (Microsoft Corporation) C:\Windows\System32\lsaadt.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000217088 _____ (Microsoft Corporation) C:\Windows\System32\IHDS.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000217088 _____ (Microsoft Corporation) C:\Windows\System32\hgcpl.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000216368 _____ (Microsoft Corporation) C:\Windows\System32\vertdll.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000215552 _____ (Microsoft Corporation) C:\Windows\System32\tzsync.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000214456 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\pdc.sys
2025-03-27 20:25 - 2025-03-27 20:25 - 000214432 _____ C:\Windows\System32\RdpShellLoader.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000213504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupugc.exe
2025-03-27 20:25 - 2025-03-27 20:25 - 000213504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2025-03-27 20:25 - 2025-03-27 20:25 - 000212992 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.UI.Logon.ProxyStub.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000212992 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_ForceSync.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000212992 _____ (Microsoft Corporation) C:\Windows\System32\sdrsvc.dll
2025-03-27 20:25 - 2025-03-27 20:25 - 000212992 _____ (Microsoft Corporation) C:\Windows\System32\MissionControlAggregator.dll
Zitat:
Zitat von cosinus (Beitrag 1790313)
Bitte die Hinweise richtig lesen. Das Log im abgesicherten Modus zu erstellen wurde nicht instruiert. Oder hat es einen anderen Grund, dass du das so gemacht hast?
Sorry, habe mich hieran gehalten -> https://www.trojaner-board.de/198858-anleitung-farbar-recovery-scan-tool-frst-wiederherstellungsumgebung.html

Ich mache das dann auch nochmal im normalen Modus. Schaffe ich aber erst morgen.

M-K-D-B 05.04.2025 21:43
Zitat:
Zitat von steaf (Beitrag 1790316)
Sorry, habe mich hieran gehalten -> https://www.trojaner-board.de/198858-anleitung-farbar-recovery-scan-tool-frst-wiederherstellungsumgebung.html
Das haben wir uns schon gedacht. :)
Allerdings hat dich niemand dorthin verlinkt. ;)



Zitat:
Zitat von steaf (Beitrag 1790316)
Ich mache das dann auch nochmal im normalen Modus. Schaffe ich aber erst morgen.
Alles klar, bis dann. :daumenhoc

steaf 06.04.2025 07:06
Moin, hier nochmal das FRST Log aus dem normalen Modus.


FRST Logfile:
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 01-04-2025
durchgeführt von quart (Administrator) auf CORTEX (LENOVO 82DS) (06-04-2025 07:55:54)
Gestartet von E:\tools\FRST64.exe
Geladene Profile: quart
Plattform: Microsoft Windows 11 Pro Version 24H2 26100.3624 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Anthropic, PBC -> Anthropic) C:\Users\quart\AppData\Local\AnthropicClaude\app-0.9.1\claude.exe <10>
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Program Files (x86)\Common Files\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Agent\bin\bckp_amgr.exe
(C:\Program Files (x86)\Common Files\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Agent\bin\monitoring-mini.exe
(C:\Program Files (x86)\Common Files\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Agent\bin\sh-inventory.exe
(C:\Program Files (x86)\Common Files\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Agent\bin\task-manager.exe
(C:\Program Files (x86)\Common Files\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Common Files\Acronis\Agent\bin\adp-agent.exe
(C:\Program Files (x86)\Common Files\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Common Files\Acronis\Agent\bin\updater.exe
(C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(LenovoServiceBridgeAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(SmartDisplayAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe ->) (Native Instruments GmbH -> ) C:\Program Files\Common Files\Native Instruments\NTK\crashpad_handler.exe
(C:\Program Files\GamingIntelligence\MonitorMicroKeyDetector.exe ->) (Micro-Star International CO., LTD. -> MSI) C:\Program Files\GamingIntelligence\OSDPopupHandler.exe
(C:\Program Files\Google\Drive File Stream\106.0.4.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\106.0.4.0\crashpad_handler.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (DroidMonkey Apps, LLC -> ) C:\Program Files\KeePassXC\keepassxc-proxy.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForAndroid_2407.40000.4.0_x64__8wekyb3d8bbwe\WsaClient\WsaClient.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForAndroid_2407.40000.4.0_x64__8wekyb3d8bbwe\WSACrashUploader\WSACrashUploader.exe
(D:\Portable\PortableApps\Notepad++Portable\Notepad++Portable.exe ->) (Notepad++ -> Don HO don.h@free.fr) D:\Portable\PortableApps\Notepad++Portable\App\Notepad++64\notepad++.exe
(D:\Portable\PortableApps\PortableApps.com\PortableAppsPlatform.exe ->) (RARE IDEAS, LLC -> PortableApps.com) D:\Portable\PortableApps\Notepad++Portable\Notepad++Portable.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_d59c8b8a329853e4\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~1.INF\DAX3API.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_fa50a878363b0cec\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_fa50a878363b0cec\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_fa50a878363b0cec\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_fa50a878363b0cec\FnHotkeyUtility.exe
(DriverStore\FileRepository\lnvsst.inf_amd64_f352f4254b85e733\SmartSense.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lnvsst.inf_amd64_f352f4254b85e733\SmartSenseController.exe
(DriverStore\FileRepository\lnvsst.inf_amd64_f352f4254b85e733\SmartSense.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lnvsst.inf_amd64_f352f4254b85e733\UserSSCtrl.exe
(explorer.exe ->) (50BDFD77-8903-4850-9FFE-6E8522F64D5B -> OpenAI) C:\Program Files\WindowsApps\OpenAI.ChatGPT-Desktop_1.2025.90.0_x64__2p2nqsd0c76g0\app\ChatGPT.exe <5>
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC.) C:\Program Files\Google\Drive File Stream\106.0.4.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Marti Climent Lopez -> ) C:\Program Files\UniGetUI\UniGetUI.exe
(explorer.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2501.31.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe
(explorer.exe ->) (Microsoft Corporation -> MSPCManager) C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.16.2.0_x64__8wekyb3d8bbwe\PCManager\MSPCManager.exe
(explorer.exe ->) (Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareAccessibilityHelper.exe
(Lenovo -> Lenovo) C:\ProgramData\Lenovo\Vantage\AddinData\LenovoBatteryGaugeAddin\x64\QSHelper.exe
(LNBITSSvc.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\AutoModeDetect.exe
(Microsoft Corporation -> MSPCManagerCore) C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.16.2.0_x64__8wekyb3d8bbwe\PCManager\MSPCManagerCore.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files\HESSENBOX\HESSENBOX\jre\bin\javaw.exe
(RARE IDEAS, LLC -> PortableApps.com) D:\Portable\PortableApps\PortableApps.com\PortableAppsPlatform.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Agent\aakore.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files\Common Files\Acronis\ActiveProtection\active_protection_service.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_d59c8b8a329853e4\DAX3API.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f854c91489b3fbb5\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f854c91489b3fbb5\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_ece153ca769ec179\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel Thunderbolt(TM) Technology -> ) C:\Windows\TbtP2pShortcutService.exe
(services.exe ->) (Intel Thunderbolt(TM) Technology -> Intel Corporation) C:\Windows\ThunderboltService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\SocketHeciServer.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_fa50a878363b0cec\LenovoUtilityService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lnvsst.inf_amd64_f352f4254b85e733\SmartSense.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForAndroid_2407.40000.4.0_x64__8wekyb3d8bbwe\WsaService\WsaService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\GameInputSvc.exe <2>
(services.exe ->) (Microsoft Corporation -> MSPCManagerService) C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.16.2.0_x64__8wekyb3d8bbwe\PCManager\MSPCManagerService.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe
(services.exe ->) (Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(services.exe ->) (Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe
(services.exe ->) (Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_071505319ec619da\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e9f6c354061743a4\RtkAudUService64.exe <2>
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\IAS\IntelAudioService.exe
(services.exe ->) (Texas Instruments Inc. -> Texas Instuments) C:\Windows\System32\TISmartAmpService.exe <2>
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(sihost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2503.28002.0_x64__8wekyb3d8bbwe\MicrosoftSecurityApp\MicrosoftSecurityApp.exe
(sihost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForAndroid_2407.40000.4.0_x64__8wekyb3d8bbwe\WsaClient\WsaClient.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.25022.57.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.25.340.0_x64__8wekyb3d8bbwe\WindowsPackageManagerServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.Todos_2.114.7122.0_x64__8wekyb3d8bbwe\Todo.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Micro-Star International CO., LTD. -> ) C:\Program Files\GamingIntelligence\mysticlight\MysticLightController.exe
(svchost.exe ->) (Micro-Star International CO., LTD. -> MICRO-STAR INT'L,.LTD.) C:\Program Files\GamingIntelligence\GamingIntelligence.exe
(svchost.exe ->) (Micro-Star International CO., LTD. -> MSI) C:\Program Files\GamingIntelligence\MonitorMicroKeyDetector.exe
(svchost.exe ->) (Micro-Star International CO., LTD. -> MSI) C:\Program Files\GamingIntelligence\WeatherDetector.exe
(vmcompute.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\vmwp.exe
konnte nicht auf den Prozess zugreifen -> vmmemWSA

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e9f6c354061743a4\RtkAudUService64.exe [1270344 2021-07-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [643584 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3952720 2022-06-01] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
HKLM-x32\...\Run: [XPE] => C:\Program Files (x86)\XPE Windows 10 DPI Fix\XPEWindows10_DPI.exe [28672 2015-08-21] (XPExplorer.com - 2015) [Datei ist nicht signiert]
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [2044576 2023-12-13] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6597048 2025-01-17] (Acronis International GmbH -> )
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [443472 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Policies\Explorer: [HideSCAMeetNow] 1
HKLM\Software\Policies\...\system: [EnableActivityFeed] 0
HKLM\Software\Policies\...\system: [PublishUserActivities] 0
HKLM\Software\Policies\...\system: [UploadUserActivities] 0
HKLM\Software\Policies\...\system: [AllowCrossDeviceClipboard] 0
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\106.0.4.0\GoogleDriveFS.exe [65444448 2025-04-02] (Google LLC -> Google LLC.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\106.0.4.0\GoogleDriveFS.exe [65444448 2025-04-02] (Google LLC -> Google LLC.)
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\106.0.4.0\GoogleDriveFS.exe [65444448 2025-04-02] (Google LLC -> Google LLC.)
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Run: [LenovoVantageToolbar] => C:\ProgramData\Lenovo\Vantage\AddinData\LenovoBatteryGaugeAddin\x64\QSHelper.exe [87960 2025-01-22] (Lenovo -> Lenovo)
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4412512 2024-11-05] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Run: [EEDSpeedLauncher] => rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher [1866560 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Run: [Xvid] => WScript "C:\Program Files (x86)\Xvid\CheckUpdateLauncher.vbs" "C:\Program Files (x86)\Xvid\CheckUpdate.ps1" [16457 2016-10-17] () [Datei ist nicht signiert]
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Run: [MicrosoftEdgeAutoLaunch_E9243080242DEBA1E75581223067271D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4418088 2025-04-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\quart\AppData\Local\WebEx\WebexHost.exe [? 0] (Zugriff verweigert)  [Datei ist nicht signiert?]
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [12307864 2025-03-13] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Run: [Mozilla-Firefox-308046B0AF4A39CB] => "C:\Program Files\Mozilla Firefox\firefox.exe" -os-autostart [694848 2025-04-02] (Mozilla Corporation -> Mozilla Corporation)
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Run: [Mathworks Service Host] => C:\Users\quart\AppData\Local\MathWorks\ServiceHost\v2024.6.0.6\bin\win64\MathWorksServiceHost.exe [579944 2024-06-12] (The MathWorks, Inc. -> The MathWorks Inc.)
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Run: [WingetUI] => C:\Program Files\UniGetUI\UniGetUI.exe [726672 2025-03-13] (Marti Climent Lopez -> )
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Run: [Claude] => C:\Users\quart\AppData\Local\AnthropicClaude\claude.exe [363112 2025-04-02] (Anthropic, PBC -> Anthropic)
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Run: [CiscoSpark] => C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webex\Webex.lnk [1454 2025-03-25] () [Datei ist nicht signiert]
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Policies\Explorer: [HideSCAMeetNow] 1
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\106.0.4.0\GoogleDriveFS.exe [65444448 2025-04-02] (Google LLC -> Google LLC.)
HKU\S-1-5-18\...\Run: [EEDSpeedLauncher] => rundll32.exe C:\WINDOWS\system32\eed_ec.dll,SpeedLauncher [1866560 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Windows x64\Print Processors\ssi5mPC: C:\Windows\System32\spool\prtprocs\x64\ssi5mpc.dll [61760 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\ssi5m Langmon: C:\Windows\system32\ssi5mlm.dll [40744 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\135.0.7049.42\Installer\chrmstp.exe [2025-04-02] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\135.1.77.95\Installer\chrmstp.exe [2025-04-02] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2023-12-13]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HESSENBOX.lnk [2025-01-23]
ShortcutTarget: HESSENBOX.lnk -> C:\Program Files\HESSENBOX\HESSENBOX\HESSENBOX.exe (HESSENBOX) [Datei ist nicht signiert]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NIHardwareAccessibilityHelper.exe.lnk [2024-11-01]
ShortcutTarget: NIHardwareAccessibilityHelper.exe.lnk -> C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareAccessibilityHelper.exe (Native Instruments GmbH -> Native Instruments GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SpyderUtility.lnk [2024-04-13]
ShortcutTarget: SpyderUtility.lnk -> C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility.exe ((c)2019 Datacolor) [Datei ist nicht signiert]
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {F28DBFC1-845D-403F-AA29-AF3C0E592637} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2024-12-18] (Adobe Inc. -> Adobe Inc.)
Task: {C5FA56C4-114A-4B1F-80FB-1A70CE257079} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{D2488D7A-9D57-41AD-8C7C-0885E62196B0} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {C6B6C1B3-96CA-4A85-8585-4960E7EAE84F} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{7C7A04CD-46B5-4C7B-8AEF-DC7085F74298} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {E9E39C08-A2D7-4704-8030-3FD5355B3113} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{5B197E40-F00D-4649-9A67-216542AAE245} => C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe [5745760 2025-02-19] (Google LLC -> Google LLC)
Task: {E51E8C67-56C0-49C1-AAEF-B3EB7FB68702} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem136.0.7079.0{FCF82DD6-43F8-476A-A3D8-D7EB32CBFD4E} => C:\Program Files (x86)\Google\GoogleUpdater\136.0.7079.0\updater.exe [7017568 2025-03-20] (Google LLC -> Google LLC)
Task: {90D34E82-5716-4386-9389-78C61EC5569F} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4910680 2024-02-21] (Intel Corporation -> Intel Corporation)
Task: {F86A761E-B638-4BC3-ACE9-E0B12EB6D2C2} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4910680 2024-02-21] (Intel Corporation -> Intel Corporation)
Task: {37629D91-0995-4290-989C-E64FFA0AA11A} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe  --automatic (Keine Datei)
Task: {CD9AC1AF-8D1D-4D9E-AA6D-8BE3158971EA} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [94496 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {D67EAF74-2B81-48CB-BC99-2973FA3B2D97} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [102400 2025-02-17] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {0221F0B0-5BFE-4895-BC93-8FFE996B4545} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [110592 2025-02-17] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {C26555F4-CD33-4396-93BD-FBA8B22845C1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\bf2f9e1a-da8a-4ba3-b317-167413dfbd5f => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {C3E58E1E-3FED-4B69-8080-3D6F40F4F402} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\cefba880-ca4a-451d-8e90-7693842a0d8f => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {CF570406-9E62-405D-BDE5-19E172F2B835} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\cf71a2d4-f2eb-4c7c-8d59-635ff1fa7a77 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {64DEC80D-2185-4B3E-BBF3-C99D9E096DDC} - System32\Tasks\Lenovo\LenovoNowLauncher => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.exe [3560352 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\/task
Task: {122268C4-674D-4516-ADA7-719D57E5F230} - System32\Tasks\Lenovo\LenovoNowQuarterlyLaunch => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe [2360224 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\/QuarterlyLaunch
Task: {837A090B-8B54-40EB-9D66-4B1331C318F7} - System32\Tasks\Lenovo\LenovoNowTask => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe [2360224 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\$(EventData)
Task: {09B20D0E-4632-4D5C-90B6-E2358F9137F6} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [102400 2025-02-17] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {73867FD1-223D-4AD9-9316-D553BAD38361} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {88D7F9AA-C1AE-4A90-AAD3-913C6A7E4C62} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {1F505D02-1A55-4560-B546-A2E45DC59DEB} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {5700D973-91B7-4B8D-BE55-4FA35DAC3049} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {28204DA8-098B-46E8-A844-B437068C67B1} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {1CCCB5F4-8DD9-4380-9103-1BE21D0B931E} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {0A2E4A5C-81C4-4DE2-9534-AA0B6DF1FD78} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.SScan => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {A74004C8-0FBE-4ECE-ABE2-51215BE8E2E0} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoBatteryPartSalesMonthlyToast => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {AE09B461-EFAE-4C95-8A6A-9090E8831B52} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {971A0E71-1251-4A40-8DE6-988969E91583} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {30413647-12C0-4A47-96A7-1E29DBACBAF6} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe  NotificationCenter (Keine Datei)
Task: {D387E6B7-1177-4008-9060-3FF7585B666C} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {FB72D4FB-6DF1-484F-898E-712886AC3405} - System32\Tasks\Lenovo\Vantage\Schedule\SmartLock.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {D3F5F34F-AB56-41C6-B122-E12629789AE6} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {1003B98D-FB86-469D-951D-438187668E4D} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinIdleScheduleTask => C:\ProgramData\Lenovo\Vantage\Addins\VantageCoreAddin\1.0.0.190\x64\IdleScheduleEventAction.exe [143768 2025-01-17] (Lenovo -> )
Task: {7F0B23C5-33EE-418B-926B-F8200E839E19} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {967DB92F-F546-42B5-9341-941EE90C947E} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.2.24.0\\uninstall.exe  /repair (Keine Datei)
Task: {F6DEAFE2-797A-4C3E-9B40-0E2147F49EA5} - System32\Tasks\MATLAB R2023a Startup Accelerator => C:\Program Files\MATLAB\R2023a\bin\win64\MATLABStartupAccelerator.exe [98816 2022-11-20] () [Datei ist nicht signiert]
Task: {FD71EEA2-9873-4F8F-A2D8-E2705D309943} - System32\Tasks\MATLAB R2024a Startup Accelerator => C:\Program Files\MATLAB\R2024a\bin\win64\MATLABStartupAccelerator.exe  (Keine Datei)
Task: {D67AA71A-10E5-4C44-80A8-01F063D49BB4} - System32\Tasks\Microsoft\Office\Office Apps Prewarm => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [315512 2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {6F340DD0-CD28-44BD-9D31-DFECBA8E0014} - System32\Tasks\Microsoft\Office\Office Apps Prewarm Recurring => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [315512 2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {E084DAB4-EBB2-4B36-AAD5-BB250D38A632} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29106392 2025-04-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {FFCF75D9-0AB5-4E32-B8EC-30AECF7268DD} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE16\opushutil.exe [68304 2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {32968922-A999-4546-BF17-A808B455FE26} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29106392 2025-04-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {72612C00-0213-431F-BDEA-AC0D612E039A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [315512 2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {56BA5686-C54F-4BCF-81B5-D15B421F51E2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [315512 2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {7A932A07-5FFC-4A34-BA38-B413999793CD} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [204400 2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {8A6F4F38-0B3C-44E5-83C3-65C2A444B2EA} - System32\Tasks\Microsoft\Windows\AccountHealth\RecoverabilityToastTask => {B7F5B442-EBF8-46CD-9F0B-D8E45ED43492} C:\WINDOWS\system32\AccountHealth.dll [258048 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe  (Keine Datei)
Task: {27CE9D59-9D48-4D29-99BC-64657AEBA494} - System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask => {8702A841-D5CA-47C3-812D-9CEDC304C200}
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (Keine Datei)
Task: {03688314-22A9-4886-8748-B24C90606E5D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8A2EF93B-FB60-45B5-ACF9-A4577CFCFB90} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6D28973A-4569-408A-9CBF-46C5371F88D9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DEB5E3EE-0205-4784-8BFE-0C8694AAC879} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DAF7B40B-1472-4A4F-907A-23D72FADF874} - System32\Tasks\MonitorMicroKey => C:\Program Files\GamingIntelligence\MonitorMicroKeyDetector.exe [101520 2024-02-21] (Micro-Star International CO., LTD. -> MSI)
Task: {6EB7AE91-E6AB-479F-A64A-F11094905B0A} - System32\Tasks\MonitorMysticLight => C:\Program Files\GamingIntelligence\MysticLight\MysticLightController.exe [31376 2024-02-21] (Micro-Star International CO., LTD. -> )
Task: {8ADAB363-5D76-4B0D-B0D4-EBD8AAE311EB} - System32\Tasks\MonitorWeatherDetector => C:\Program Files\GamingIntelligence\WeatherDetector.exe [43664 2024-02-21] (Micro-Star International CO., LTD. -> MSI)
Task: {2891745E-4241-4CA6-85ED-11BA4B1E4AF8} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34880 2025-04-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {FE1AF715-36DE-4CB3-BA73-3D297E36DC9B} - System32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe [3287072 2025-02-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2275554B-E300-4107-99E7-142401404A95} - System32\Tasks\OSDAppAutoStartUp => C:\Program Files\GamingIntelligence\GamingIntelligence.exe [15056528 2024-02-21] (Micro-Star International CO., LTD. -> MICRO-STAR INT'L,.LTD.)
Task: {273ABDB9-B3FA-437E-A609-C43CFB1A5238} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\System32\Wscript.exe [200704 2025-03-27] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {5614B5AF-8C46-4FFC-A108-7A2B14E9B39A} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2000400401-3484457797-169236058-1001 => C:\Users\quart\AppData\Roaming\Zoom\bin\Zoom.exe [? 0] (Zugriff verweigert) [Datei ist nicht signiert?] --action=UpdateSchedule (Zugriff verweigert) <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\MATLAB R2023a Startup Accelerator.job => C:\Program Files\MATLAB\R2023a\bin\win64\MATLABStartupAccelerator.exe C:\Program Files\MATLAB\R2023aCORTEX\quart.Sta

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{c5b9cb35-caf2-4978-99b9-b6a478013b90}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{c5b9cb35-caf2-4978-99b9-b6a478013b90}\14E64627F696461405: [DhcpNameServer] 192.168.151.46

Edge:
=======
Edge Profile: C:\Users\quart\AppData\Local\Microsoft\Edge\User Data\Default [2025-04-05]
Edge Extension: (Google Docs Offline) - C:\Users\quart\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-03]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Edge relevant text changes) - C:\Users\quart\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Citavi Picker) - C:\Users\quart\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mielbhbkcliienpdicphhecpodcaeefg [2023-01-31]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge HKLM-x32\...\Edge\Extension: [mielbhbkcliienpdicphhecpodcaeefg]

FireFox:
========
FF DefaultProfile: 2k0lrm9m.default
FF DefaultProfile: 45adbgga.default
FF ProfilePath: C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\9ka8jhuq.default-release [nicht gefunden] <==== ACHTUNG
FF ProfilePath: C:\Users\quart\AppData\Roaming\Zotero\Zotero\Profiles\2k0lrm9m.default [2025-04-02]
FF Extension: (Better Notes for Zotero) - C:\Users\quart\AppData\Roaming\Zotero\Zotero\Profiles\2k0lrm9m.default\Extensions\Knowledge4Zotero@windingwind.com.xpi [2025-04-01] [ist nicht signiert] [UpdateUrl:hxxps://github.com/windingwind/zotero-better-notes/releases/download/release/update.json]
FF Extension: (__addonName__) - C:\Users\quart\AppData\Roaming\Zotero\Zotero\Profiles\2k0lrm9m.default\Extensions\zoterogpt@polygon.org.xpi [2025-03-28] [] [ist nicht signiert]
FF Extension: (Zutilo Utility for Zotero) - C:\Users\quart\AppData\Roaming\Zotero\Zotero\Profiles\2k0lrm9m.default\Extensions\zutilo@www.wesailatdawn.com.xpi [2025-03-26] [] [ist nicht signiert]
FF ProfilePath: C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\1smhagvz.4k [2025-03-20]
FF Extension: (Citavi Picker) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\1smhagvz.4k\Extensions\{8AA36F4F-6DC7-4c06-77AF-5035170634FE}.xpi [2024-04-07]
FF ProfilePath: C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default [2025-04-06]
FF Homepage: Mozilla\Firefox\Profiles\45adbgga.default -> hxxps://startpage.com
FF Session Restore: Mozilla\Firefox\Profiles\45adbgga.default -> ist aktiviert.
FF Notifications: Mozilla\Firefox\Profiles\45adbgga.default -> hxxps://web.threema.ch; hxxps://photos.google.com; hxxps://room-v2.edudip.com; hxxps://web.airdroid.com; hxxps://matrix.uni-marburg.de; hxxps://web.whatsapp.com; hxxps://my.okx.com
FF Extension: (Facebook Container) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\@contain-facebook.xpi [2025-03-25]
FF Extension: (Google Scholar-Schaltfläche) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\button@scholar.google.com.xpi [2021-05-08]
FF Extension: (Cookie AutoDelete) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\CookieAutoDelete@kennydo.com.xpi [2022-12-12]
FF Extension: (Canadian English Dictionary) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\en-CA@dictionaries.addons.mozilla.org.xpi [2024-07-09]
FF Extension: (English (US) Dictionary) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\en-US-mozilla@dictionaries.addons.mozilla.org.xpi [2025-01-08]
FF Extension: (Consent-O-Matic) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\gdpr@cavi.au.dk.xpi [2024-10-09]
FF Extension: (MyJDownloader Browser Erweiterung) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2022-05-23] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (KeePassXC-Browser) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\keepassxc-browser@keepassxc.org.xpi [2025-03-05]
FF Extension: (Language: English (CA)) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\langpack-en-CA@firefox.mozilla.org.xpi [2025-04-02]
FF Extension: (Language: English (GB)) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\langpack-en-GB@firefox.mozilla.org.xpi [2025-04-02]
FF Extension: (Language: English (US)) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2025-04-02]
FF Extension: (British English Dictionary (Marco Pinto)) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\marcoagpinto@mail.telepac.pt.xpi [2025-04-01]
FF Extension: (Kein Name) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\simple-tab-groups@drive4ik.xpi [2025-03-11]
FF Extension: (uBlock Origin) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\uBlock0@raymondhill.net.xpi [2025-03-22]
FF Extension: (Zotero Connector) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\zotero@chnm.gmu.edu.xpi [2025-04-05] [UpdateUrl:hxxps://www.zotero.org/download/connector/firefox/release/updates.json]
FF Extension: (Startpage — Datenschutz-Suchmaschine) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\{20fc2e06-e3e4-4b2b-812b-ab431220cada}.xpi [2025-01-17]
FF Extension: (Citavi Picker) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\{8AA36F4F-6DC7-4c06-77AF-5035170634FE}.xpi [2021-05-08]
FF Extension: (Borderless dark) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\{c4cb2b36-3932-4fac-ad9e-a723f81a04d3}.xpi [2021-05-08]
FF Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\{ddc62400-f22d-4dd3-8b4a-05837de53c2e}.xpi [2025-03-07]
FF Extension: (Evernote Web Clipper) - C:\Users\quart\AppData\Roaming\Mozilla\Firefox\Profiles\45adbgga.default\Extensions\{E0B8C461-F8FB-49b4-8373-FE32E9252800}.xpi [2025-02-04]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-03-13] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-04-04] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\quart\AppData\Local\Google\Chrome\User Data\Default [2025-04-02]
CHR Notifications: Default -> hxxps://matrix.uni-marburg.de
CHR Extension: (uBlock Origin) - C:\Users\quart\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2025-04-02]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\quart\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-04-02]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Google Docs Offline) - C:\Users\quart\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-02]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (PlayTo für Chromecast™) - C:\Users\quart\AppData\Local\Google\Chrome\User Data\Default\Extensions\jngkenaoceimiimeokpdbmejeonaaami [2024-04-03]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Anwendungs-Launcher für Drive (von Google)) - C:\Users\quart\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-09-13]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\quart\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-10]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Monica: ChatGPT AI Assistant | DeepSeek, GPT-4o, Claude 3.5, o1 &More) - C:\Users\quart\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofpnmcalabcbjgholdjcjblkibolbppb [2025-03-10]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Citavi Picker) - C:\Users\quart\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgndokldibnndfnjnagojmheejlengn [2025-02-03]hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2000400401-3484457797-169236058-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-2000400401-3484457797-169236058-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ohgndokldibnndfnjnagojmheejlengn]

Brave:
=======
BRA Profile: C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2025-03-11]
BRA Extension: (Citavi Picker) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ohgndokldibnndfnjnagojmheejlengn [2025-02-19]hxxps://clients2.google.com/service/update2/crx
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2025-02-19]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2025-02-19]
BRA Extension: (Brave NTP background images) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2025-02-19]
BRA Extension: (Brave Ads Resources) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\bbefpembgddgdihpkcidgdgiojjlchji [2023-04-01]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2025-02-19]
BRA Extension: (Wallet Data Files Updater) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-09-16]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2025-02-19]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2023-04-17]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2025-02-19]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2025-02-19]
BRA Extension: (Brave Ads Resources) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\jcncoheihebhhiemmbmpfhkceomfipbj [2024-07-16]
BRA Extension: (Brave Ad Block Updater (EasyList Germany (plaintext))) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\lfmefmifdjlfneapckmpkinmlofjehbp [2025-02-19]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2025-02-19]
BRA Extension: (Brave NTP sponsored images) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\obbokncgfcbepeipkhpdepjjoncelefj [2025-02-19]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\quart\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-10-16]

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 aakore; C:\Program Files (x86)\Common Files\Acronis\Agent\aakore.exe [18738640 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
R2 AcronisActiveProtectionService; C:\Program Files\Common Files\Acronis\ActiveProtection\active_protection_service.exe [13032744 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
R2 AcronisCyberProtectionService; C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe [1429240 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1871296 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2024-12-18] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6354456 2025-01-27] (Acronis International GmbH -> Acronis International GmbH)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\135.1.77.95\elevation_service.exe [3520528 2025-04-02] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13860056 2025-04-01] (Microsoft Corporation -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_d59c8b8a329853e4\DAX3API.exe [1906648 2020-09-23] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [47000 2025-02-19] (Intel Corporation -> Intel)
R2 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [330136 2025-02-19] (Intel Corporation -> Intel)
S3 EpicGamesUpdater; C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesUpdater.exe [3064848 2025-04-05] (Epic Games Inc. -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [368088 2025-01-31] (Epic Games Inc. -> Epic Games, Inc.)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [343928 2020-09-04] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_fa50a878363b0cec\LenovoUtilityService.exe [182272 2025-02-20] (Lenovo -> Lenovo)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe [34816 2025-02-20] (Lenovo -> Lenovo)
R2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1831672 2022-08-17] (Lenovo -> Lenovo(beijing) Limited)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe [2009608 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4896488 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3087408 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [2256424 2025-01-17] (Acronis International GmbH -> )
R2 NIHostIntegrationAgent; C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe [27580128 2024-05-07] (Native Instruments GmbH -> Native Instruments GmbH)
R2 NTKDaemonService; C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe [16895200 2024-09-09] (Native Instruments GmbH -> Native Instruments GmbH)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_071505319ec619da\Display.NvContainer\NVDisplay.Container.exe [1275560 2025-03-04] (NVIDIA Corporation -> NVIDIA Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [22443400 2025-03-28] (Logitech Inc -> Logitech, Inc.)
R2 PCManager Service Store; C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.16.2.0_x64__8wekyb3d8bbwe\PCManager\MSPCManagerService.exe [87584 2025-03-21] (Microsoft Corporation -> MSPCManagerService)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [5209072 2024-02-09] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559328 2025-03-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SmartSense; C:\WINDOWS\System32\DriverStore\FileRepository\lnvsst.inf_amd64_f352f4254b85e733\SmartSense.exe [209768 2024-06-19] (Lenovo -> Lenovo)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2022-10-04] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2022-10-04] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7377624 2024-12-12] (Acronis International GmbH -> )
R2 TbtP2pShortcutService; C:\WINDOWS\TbtP2pShortcutService.exe [252296 2021-03-17] (Intel Thunderbolt(TM) Technology -> )
S3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [5921232 2024-12-12] (Acronis International GmbH -> Acronis International GmbH)
R2 TISmartAmpService; C:\WINDOWS\System32\TISmartAmpService.exe [537072 2020-06-17] (Texas Instruments Inc. -> Texas Instuments)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe [4538400 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe [278320 2025-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WsaService; C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForAndroid_2407.40000.4.0_x64__8wekyb3d8bbwe\WsaService\WsaService.exe [320512 2024-12-18] (Microsoft Corporation -> )

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 acsock; C:\WINDOWS\system32\DRIVERS\acsock64.sys [310216 2023-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Cisco Systems, Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [800672 2024-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R3 bomebus; C:\WINDOWS\System32\drivers\bomebus.sys [56376 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-10-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 droidvcam0_aud0; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamaudio.inf_amd64_f08960db84657665\droidcamaudio.sys [33808 2022-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 droidvcam0_vid0; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_b02e702c2d1e7e03\droidcamvideo.sys [136360 2025-01-28] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [944648 2025-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [389616 2025-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [179200 2025-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [222528 2025-02-17] (Microsoft Windows -> Microsoft Corporation)
R2 googledrivefs31626; C:\Program Files\Google\Drive File Stream\Drivers\31626\googledrivefs31626.sys [384096 2024-07-25] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [331168 2025-03-31] (Microsoft Windows -> Microsoft Corporation)
S2 l1vhlwf; C:\WINDOWS\System32\drivers\l1vhlwf.sys [144840 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
S3 mc2avs; C:\WINDOWS\System32\Drivers\mc2avs.sys [358520 2012-06-06] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 mc2usb_svc; C:\WINDOWS\System32\Drivers\mc2usb.sys [81016 2012-06-06] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 ng-netfilter; C:\WINDOWS\system32\DRIVERS\ng-netfilter.sys [164352 2025-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S0 ngelam; C:\WINDOWS\System32\drivers\ngelam.sys [32272 2024-12-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Acronis International GmbH)
R1 ngscan; C:\WINDOWS\System32\DRIVERS\ngscan.sys [281584 2024-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S3 nikz1audio; C:\WINDOWS\System32\Drivers\nikz1audio.sys [383928 2015-09-09] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 nikz1usb; C:\WINDOWS\system32\DRIVERS\nikz1usb.sys [100200 2015-09-09] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 NovationUsbMidi; C:\WINDOWS\system32\DRIVERS\NovationUsbMidi.sys [71384 2023-02-23] (Focusrite Audio Engineering Ltd -> Novation DMS, Ltd.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-13] (Nvidia Corporation -> NVIDIA Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
S3 rspLLL; C:\WINDOWS\System32\DRIVERS\rspLLL64.sys [27744 2021-03-09] (Daniel Terhell -> Resplendence Software Projects Sp.)
R0 secnvme; C:\WINDOWS\System32\drivers\secnvme.sys [133944 2020-01-20] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
R0 snapman; C:\WINDOWS\System32\DRIVERS\snapman.sys [392640 2025-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S3 SoundcraftUSBAudio; C:\WINDOWS\System32\drivers\SoundcraftUSBAudio_x64.sys [269312 2015-09-03] () [Datei ist nicht signiert]
S3 SoundcraftUSBAudioks; C:\WINDOWS\System32\drivers\SoundcraftUSBAudioks_x64.sys [50688 2015-09-03] () [Datei ist nicht signiert]
S3 Spyder5; C:\WINDOWS\System32\drivers\dccmtr.sys [15360 2015-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Datacolor)
R2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [14224 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-10-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-10-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 steamxbox; C:\WINDOWS\System32\drivers\steamxbox.sys [278208 2023-02-21] (Valve Corp. -> Valve Corporation)
S3 ThermalFilter; C:\WINDOWS\System32\DriverStore\FileRepository\c_thermal.inf_amd64_732a53ed1662b707\ThermalFilter.sys [75376 2025-03-27] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [171080 2025-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
R3 VBAudioVMVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2023-05-03] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [335760 2025-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [98304 2025-02-17] (Microsoft Windows -> Microsoft Corporation)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [246320 2025-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Acronis International GmbH)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [74064 2023-12-13] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20016 2025-03-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [605576 2025-03-31] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100744 2025-03-31] (Microsoft Windows -> Microsoft Corporation)
S3 wini3ctarget; C:\WINDOWS\System32\DriverStore\FileRepository\wini3ctarget.inf_amd64_bdb09ebda2834009\wini3ctarget.sys [75168 2025-03-27] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2025-04-05 21:58 - 2025-04-06 07:57 - 000000000 ____D C:\FRST
2025-04-05 21:06 - 2025-04-05 21:06 - 000748376 _____ C:\WINDOWS\system32\perfh007.dat
2025-04-05 21:06 - 2025-04-05 21:06 - 000159426 _____ C:\WINDOWS\system32\perfc007.dat
2025-04-05 21:02 - 2025-04-05 21:02 - 000000866 __RSH C:\ProgramData\ntuser.pol
2025-04-05 19:41 - 2025-04-05 19:41 - 000000000 ____D C:\Users\quart\OneDrive\Dokumente\PowerShell
2025-04-05 15:18 - 2025-04-05 15:18 - 002404864 _____ (Farbar) C:\Users\quart\Downloads\FRST64.exe
2025-04-05 10:41 - 2025-04-05 10:41 - 002834160 _____ (Malwarebytes) C:\Users\quart\Downloads\MBSetup.exe
2025-04-05 10:39 - 2025-04-05 10:39 - 000192952 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2025-04-05 10:39 - 2025-04-05 10:39 - 000000000 ____D C:\Users\quart\Desktop\mbar
2025-04-05 10:39 - 2025-04-05 10:39 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2025-04-04 23:03 - 2025-04-04 23:03 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-04-04 21:32 - 2025-04-04 21:32 - 000000000 ____D C:\Users\quart\AppData\Roaming\The Witcher 3
2025-04-04 21:31 - 2025-04-04 21:44 - 000000000 ____D C:\Users\quart\OneDrive\Dokumente\The Witcher 3
2025-04-04 21:31 - 2025-04-04 21:31 - 000000000 ____D C:\Users\quart\AppData\Local\REDEngine
2025-04-04 20:05 - 2025-04-04 20:06 - 000000000 ____D C:\Users\quart\OneDrive\Dokumente\Shadow of the Tomb Raider
2025-04-04 16:52 - 2025-04-04 16:52 - 001042012 _____ C:\Users\quart\Downloads\STEFAN_BECKER_Mietzuschuss_Erstantrag_20250404.pdf
2025-04-04 16:52 - 2025-04-04 16:52 - 001042012 _____ C:\Users\quart\Downloads\Antrag auf Wohngeld_unterschrieben.pdf
2025-04-03 12:21 - 2025-04-03 12:28 - 000000000 ____D C:\Users\quart\OneDrive
2025-04-02 12:22 - 2025-04-06 07:55 - 000000000 ____D C:\Users\quart\Downloads\STG-backups-FF-137.0
2025-04-02 10:58 - 2025-04-05 19:40 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-04-02 10:42 - 2025-04-02 10:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-04-02 10:34 - 2025-04-02 10:34 - 000004250 _____ C:\WINDOWS\system32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2000400401-3484457797-169236058-1001
2025-04-02 10:34 - 2025-04-02 10:34 - 000002318 _____ C:\Users\quart\Desktop\Claude.lnk
2025-04-02 10:34 - 2025-04-02 10:34 - 000000000 ____D C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2025-03-29 10:21 - 2025-03-29 16:52 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2025-03-29 10:21 - 2025-03-29 10:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2025-03-28 07:16 - 2025-04-02 10:21 - 000000000 ____D C:\Users\quart\Downloads\STG-backups-FF-136.0.4
2025-03-28 00:08 - 2025-03-28 00:08 - 000000000 ____D C:\WINDOWS\system32\AccountHealthAssets
2025-03-27 22:01 - 2025-04-06 04:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-03-27 21:58 - 2025-03-27 21:58 - 000000000 ____D C:\WINDOWS\Panther
2025-03-27 21:25 - 2025-03-27 21:25 - 000029042 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-03-27 21:25 - 2025-03-27 21:25 - 000029042 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-03-27 02:49 - 2025-03-27 22:57 - 000000000 ____D C:\Users\quart\Downloads\STG-backups-FF-136.0.3
2025-03-27 01:50 - 2025-03-27 01:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yubico Authenticator
2025-03-26 18:40 - 2025-03-26 18:40 - 005004048 _____ C:\Users\quart\Downloads\zotero-gpt.xpi
2025-03-26 17:52 - 2025-03-26 17:52 - 000002353 _____ C:\Users\quart\Desktop\Element.lnk
2025-03-26 17:52 - 2025-03-26 17:52 - 000000000 ____D C:\Users\quart\AppData\Local\element-desktop
2025-03-26 14:22 - 2025-03-26 14:22 - 004204109 _____ C:\Users\quart\Downloads\better-notes-for-zotero.xpi
2025-03-26 11:28 - 2025-03-26 11:29 - 000124388 _____ C:\Users\quart\Downloads\zutilo.xpi
2025-03-26 00:00 - 2025-03-26 00:00 - 000001440 _____ C:\Users\quart\Desktop\Webex.lnk
2025-03-26 00:00 - 2025-03-26 00:00 - 000000000 ____D C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webex
2025-03-25 15:17 - 2025-03-27 02:50 - 000000000 ____D C:\Users\quart\AppData\Roaming\Sider
2025-03-25 15:17 - 2025-03-25 15:17 - 000002287 _____ C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sider.lnk
2025-03-25 15:17 - 2025-03-25 15:17 - 000002279 _____ C:\Users\quart\Desktop\Sider.lnk
2025-03-25 15:17 - 2025-03-25 15:17 - 000000000 ____D C:\Users\quart\AppData\Local\sider-updater
2025-03-25 15:16 - 2025-03-25 15:16 - 097265528 _____ (Vidline Inc.) C:\Users\quart\Downloads\Sider_2.1.1.exe
2025-03-25 11:03 - 2025-03-25 11:03 - 000021908 _____ C:\Users\quart\.boto
2025-03-25 10:58 - 2025-03-25 11:04 - 000000000 ____D C:\Users\quart\.gsutil
2025-03-25 10:57 - 2025-03-25 10:57 - 000000000 ____D C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Cloud SDK
2025-03-25 10:55 - 2025-03-25 11:03 - 000000000 ____D C:\Users\quart\AppData\Roaming\gcloud
2025-03-25 10:50 - 2025-03-25 10:50 - 000000000 ____D C:\tools
2025-03-24 14:47 - 2025-04-02 10:29 - 000000000 ____D C:\Users\quart\Zotero
2025-03-24 14:47 - 2025-03-24 14:47 - 000000938 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zotero.lnk
2025-03-24 14:47 - 2025-03-24 14:47 - 000000926 _____ C:\Users\Public\Desktop\Zotero.lnk
2025-03-24 14:47 - 2025-03-24 14:47 - 000000000 ____D C:\Users\quart\AppData\Roaming\Zotero
2025-03-24 14:47 - 2025-03-24 14:47 - 000000000 ____D C:\Users\quart\AppData\Local\Zotero
2025-03-24 14:47 - 2025-03-24 14:47 - 000000000 ____D C:\ProgramData\Zotero
2025-03-24 14:47 - 2025-03-24 14:47 - 000000000 ____D C:\Program Files\Zotero
2025-03-24 14:46 - 2025-03-24 14:46 - 089475608 _____ (Corporation for Digital Scholarship) C:\Users\quart\Downloads\Zotero-7.0.15_x64_setup.exe
2025-03-23 13:20 - 2025-04-06 02:16 - 000000000 ____D C:\Users\quart\AppData\Roaming\Claude
2025-03-23 13:20 - 2025-04-02 10:34 - 000000000 ____D C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anthropic
2025-03-23 13:19 - 2025-04-02 10:34 - 000000000 ____D C:\Users\quart\AppData\Local\AnthropicClaude
2025-03-21 23:40 - 2025-03-21 23:40 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2025-03-21 23:40 - 2025-03-21 23:40 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2025-03-21 23:40 - 2025-03-21 23:40 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2025-03-21 20:51 - 2025-03-21 20:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
2025-03-20 21:33 - 2025-03-26 23:59 - 000000000 ____D C:\Users\quart\Downloads\STG-backups-FF-136.0.2
2025-03-20 21:03 - 2025-03-20 21:03 - 000000000 ____D C:\Users\quart\AppData\Local\gargle
2025-03-20 16:06 - 2025-03-20 16:06 - 000001101 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AusweisApp.lnk
2025-03-20 16:06 - 2025-03-20 16:06 - 000000000 ____D C:\Program Files\AusweisApp2
2025-03-20 13:27 - 2025-04-05 00:48 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2025-03-19 13:40 - 2025-03-19 13:40 - 000155774 _____ C:\Users\quart\Downloads\Introduction.pdf
2025-03-19 13:26 - 2025-03-19 13:26 - 002428935 _____ C:\Users\quart\Downloads\Time_Varying-1.pdf
2025-03-17 16:20 - 2025-03-17 16:20 - 002428935 _____ C:\Users\quart\Downloads\Time_Varying.pdf
2025-03-16 01:46 - 2025-03-16 01:46 - 000000367 _____ C:\Users\quart\Desktop\The Witcher 3 Wild Hunt - Game of the Year Edition.url
2025-03-14 23:36 - 2025-03-14 23:36 - 000000859 _____ C:\ProgramData\Microsoft\Windows\Start Menu\UniGetUI.lnk
2025-03-14 23:36 - 2025-03-14 23:36 - 000000853 _____ C:\Users\Public\Desktop\UniGetUI.lnk
2025-03-13 22:59 - 2025-03-13 22:59 - 000000865 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2025-03-12 13:28 - 2025-03-12 13:28 - 000001313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo Now.lnk
2025-03-12 10:52 - 2025-03-12 10:52 - 000042947 _____ C:\Users\quart\Downloads\Briefmarken.1Stk.12.03.2025_0952.pdf
2025-03-12 10:49 - 2025-03-12 10:49 - 000058148 _____ C:\Users\quart\Downloads\Briefmarken.1Stk.12.03.2025_0949.pdf
2025-03-11 23:13 - 2025-03-20 19:33 - 000000000 ____D C:\Users\quart\Downloads\STG-backups-FF-136.0.1
2025-03-11 14:16 - 2025-04-05 00:53 - 000000000 ____D C:\Users\quart\AppData\Roaming\Signal
2025-03-11 14:16 - 2025-03-11 14:16 - 000002405 _____ C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Signal.lnk
2025-03-11 14:16 - 2025-03-11 14:16 - 000002397 _____ C:\Users\quart\Desktop\Signal.lnk
2025-03-10 10:56 - 2025-03-10 10:56 - 011409744 _____ (GitHub, Inc. ) C:\Users\quart\Downloads\git-lfs-windows-v3.6.1.exe
2025-03-10 10:56 - 2025-03-10 10:56 - 000000000 ____D C:\Program Files\Git LFS

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2025-04-06 07:55 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-04-06 07:55 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2025-04-06 07:55 - 2023-01-31 14:56 - 000000000 ____D C:\Users\quart\AppData\Local\LogiOptionsPlus
2025-04-06 07:55 - 2023-01-31 14:44 - 000000000 ___SD C:\Users\quart\AppData\Roaming\Microsoft\Credentials
2025-04-06 07:54 - 2025-02-17 21:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-04-06 07:54 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-04-06 04:04 - 2023-07-13 12:08 - 000000000 ____D C:\Users\quart\AppData\Roaming\HESSENBOX
2025-04-06 04:01 - 2023-01-31 14:50 - 000000000 ____D C:\Users\quart\AppData\Local\D3DSCache
2025-04-06 02:25 - 2023-02-18 13:17 - 000000000 ____D C:\Users\quart\AppData\Roaming\RStudio
2025-04-06 02:05 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-04-06 01:25 - 2023-02-18 13:17 - 000000000 ____D C:\Users\quart\AppData\Local\RStudio
2025-04-06 01:22 - 2023-01-31 15:04 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-04-06 01:20 - 2023-01-31 20:12 - 000000000 ____D C:\ProgramData\NVIDIA
2025-04-06 01:20 - 2023-01-31 14:50 - 000000000 __SHD C:\Users\quart\IntelGraphicsProfiles
2025-04-06 01:03 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-04-05 21:06 - 2025-02-17 21:06 - 001729576 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-04-05 21:06 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF
2025-04-05 21:04 - 2023-08-01 16:54 - 000000000 ____D C:\ProgramData\boost_interprocess
2025-04-05 21:03 - 2023-12-03 19:17 - 000000436 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2025-04-05 21:02 - 2025-02-17 21:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-04-05 21:02 - 2025-02-17 21:05 - 000002920 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-04-05 21:02 - 2025-01-02 13:01 - 000012288 ___SH C:\DumpStack.log.tmp
2025-04-05 21:02 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-04-05 21:02 - 2023-01-31 14:49 - 000000000 ____D C:\Intel
2025-04-05 20:51 - 2024-04-01 09:21 - 002883584 _____ C:\WINDOWS\system32\config\BBI
2025-04-05 19:40 - 2023-01-31 15:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-04-05 19:38 - 2023-01-31 15:25 - 000000000 ____D C:\Users\quart\AppData\Local\KeePassXC
2025-04-05 13:51 - 2023-02-03 22:07 - 000000000 ____D C:\Users\quart\AppData\Local\CrashDumps
2025-04-05 13:22 - 2023-01-31 14:30 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-04-05 00:53 - 2023-01-31 21:32 - 000000000 ____D C:\Users\quart\AppData\Roaming\Evernote
2025-04-05 00:50 - 2023-08-01 15:04 - 000000000 ____D C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2025-04-05 00:48 - 2023-12-07 11:47 - 000001067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2025-04-05 00:48 - 2023-12-07 11:47 - 000001055 _____ C:\Users\Public\Desktop\Thunderbird.lnk
2025-04-04 23:01 - 2023-01-31 18:27 - 000000000 ____D C:\Program Files\Microsoft Office
2025-04-04 21:28 - 2024-02-06 17:43 - 000000000 ____D C:\Users\quart\AppData\Local\cache
2025-04-03 22:11 - 2023-02-02 19:29 - 000000000 ____D C:\Users\quart\Desktop\Browser
2025-04-03 12:21 - 2025-02-17 21:02 - 000000000 ____D C:\Users\quart
2025-04-02 20:50 - 2023-02-27 13:33 - 000000000 ____D C:\Users\quart\AppData\Local\gnupg
2025-04-02 20:41 - 2023-04-01 11:24 - 000002356 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2025-04-02 20:41 - 2023-04-01 11:24 - 000002315 _____ C:\Users\Public\Desktop\Brave.lnk
2025-04-02 20:40 - 2023-02-27 13:33 - 000000000 ____D C:\Users\quart\AppData\Roaming\gnupg
2025-04-02 20:39 - 2023-02-27 13:35 - 000000000 ____D C:\Users\quart\AppData\Roaming\kleopatra
2025-04-02 15:07 - 2023-01-31 15:18 - 000002177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2025-04-02 13:02 - 2023-01-31 20:18 - 000000000 ____D C:\Users\quart\AppData\Roaming\Ledger Live
2025-04-02 11:50 - 2023-01-31 16:29 - 000000000 ____D C:\Users\quart\AppData\Roaming\Exodus
2025-04-02 11:42 - 2025-01-02 12:47 - 000000000 ____D C:\Users\quart\AppData\Roaming\droidcam-obs-client
2025-04-02 11:42 - 2023-01-31 20:18 - 000000000 ____D C:\Program Files\Ledger Live
2025-04-02 10:58 - 2023-01-31 15:04 - 000001071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-04-02 10:43 - 2023-05-10 11:51 - 000002311 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-04-02 10:43 - 2023-05-10 11:51 - 000002270 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-04-02 10:42 - 2024-10-30 09:44 - 000001059 _____ C:\Users\Public\Desktop\Firefox.lnk
2025-04-02 10:36 - 2023-08-26 15:02 - 000001052 _____ C:\Users\Public\Desktop\OBS Studio.lnk
2025-04-02 10:34 - 2024-11-07 16:53 - 000000000 ____D C:\Users\quart\AppData\Roaming\Zoom
2025-04-02 10:34 - 2023-01-31 16:29 - 000000000 ____D C:\Users\quart\AppData\Local\SquirrelTemp
2025-04-02 10:31 - 2025-02-17 21:00 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2025-03-31 23:36 - 2023-01-31 14:30 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-03-29 16:52 - 2025-03-03 12:59 - 000000000 ____D C:\Program Files\Logi
2025-03-29 10:21 - 2024-10-13 21:34 - 000000000 ____D C:\ProgramData\Logi
2025-03-28 07:41 - 2023-08-01 15:04 - 000000000 ____D C:\Users\quart\AppData\Roaming\Code
2025-03-28 00:33 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\USOPrivate
2025-03-28 00:09 - 2025-02-17 21:00 - 000472904 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-03-28 00:08 - 2024-04-01 18:37 - 000000000 ____D C:\WINDOWS\InboxApps
2025-03-28 00:08 - 2024-04-01 18:37 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-03-28 00:08 - 2024-04-01 18:37 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-03-28 00:08 - 2024-04-01 18:37 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\UNP
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\UUS
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemApps
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\setup
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-03-28 00:08 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Common Files\System
2025-03-28 00:08 - 2024-04-01 09:21 - 000000000 ____D C:\WINDOWS\servicing
2025-03-27 21:25 - 2025-02-17 21:03 - 003352064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-03-27 08:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-03-27 04:12 - 2024-07-07 11:13 - 000000000 ____D C:\Users\quart\Downloads\bin_enex2notion_0.3.1_win_x64
2025-03-27 01:50 - 2023-12-06 12:47 - 000000000 ____D C:\Program Files\Yubico
2025-03-26 20:44 - 2023-02-01 04:05 - 000000000 ____D C:\Users\quart\AppData\Roaming\Microsoft\Word
2025-03-26 17:52 - 2023-07-03 16:25 - 000000000 ____D C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Element
2025-03-25 17:52 - 2023-01-31 18:42 - 000000000 ____D C:\Users\quart\AppData\Roaming\Microsoft\Office
2025-03-25 16:23 - 2023-07-03 16:25 - 000000000 ____D C:\Users\quart\AppData\Roaming\Element
2025-03-25 12:45 - 2023-01-31 18:42 - 000000000 ____D C:\Users\quart\AppData\Roaming\Microsoft\Excel
2025-03-25 11:02 - 2023-01-31 18:05 - 000001100 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2025-03-25 11:02 - 2023-01-31 18:04 - 000000000 ____D C:\Program Files\WinRAR
2025-03-25 10:54 - 2023-01-31 15:18 - 000000000 ____D C:\Users\quart\AppData\Local\Google
2025-03-24 15:53 - 2023-01-31 15:25 - 000000000 ____D C:\Users\quart\AppData\Roaming\KeePassXC
2025-03-22 22:41 - 2023-01-31 14:50 - 000000000 ____D C:\Users\quart\AppData\Local\Packages
2025-03-21 20:51 - 2023-08-01 15:06 - 000000000 ____D C:\Program Files\Git
2025-03-14 23:36 - 2024-07-04 08:35 - 000000000 ____D C:\Program Files\UniGetUI
2025-03-14 23:15 - 2024-07-04 08:35 - 000000000 ____D C:\Users\quart\AppData\Local\UniGetUI
2025-03-13 23:01 - 2024-04-09 00:39 - 000001329 _____ C:\Users\quart\Desktop\Ubisoft Connect.lnk
2025-03-13 22:59 - 2025-02-15 13:45 - 000000000 ____D C:\Program Files\Audacity
2025-03-12 13:28 - 2024-02-27 13:36 - 000000000 ____D C:\WINDOWS\TempInst
2025-03-12 00:41 - 2024-04-01 18:36 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-03-11 21:13 - 2025-03-05 13:56 - 000000000 ____D C:\Users\quart\Downloads\STG-backups-FF-136.0
2025-03-10 19:07 - 2023-05-03 21:20 - 000008050 _____ C:\Users\quart\AppData\Roaming\VoiceMeeterDefault.xml
2025-03-10 11:03 - 2024-11-02 14:51 - 000000000 ____D C:\Users\quart\.gk
2025-03-08 15:24 - 2024-12-12 14:42 - 000001272 _____ C:\Users\quart\Desktop\ESET Online Scanner.lnk
2025-03-08 15:24 - 2023-06-09 21:18 - 000001378 _____ C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2025-03-08 10:20 - 2023-03-16 20:15 - 000000000 ____D C:\Users\quart\AppData\Local\Governikus GmbH & Co. KG
2025-03-08 09:16 - 2025-02-17 21:08 - 000003756 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-03-08 09:16 - 2025-02-17 21:08 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2025-01-02 12:45 - 2025-01-02 12:45 - 000000015 _____ () C:\Users\quart\AppData\Roaming\obs-virtualcam.txt
2023-05-03 21:20 - 2025-03-10 19:07 - 000008050 _____ () C:\Users\quart\AppData\Roaming\VoiceMeeterDefault.xml

==================== FLock ==============================

2024-07-10 01:43 C:\Users\quart\AppData\Local\WebEx

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================
--- --- ---

steaf 06.04.2025 07:16
Addition.txt

FRST Additions Logfile:
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 01-04-2025
durchgeführt von quart (06-04-2025 07:59:07)
Gestartet von E:\tools
Microsoft Windows 11 Pro Version 24H2 26100.3624 (X64) (2025-02-17 19:08:31)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

Administrator (S-1-5-21-2000400401-3484457797-169236058-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2000400401-3484457797-169236058-503 - Limited - Disabled)
Gast (S-1-5-21-2000400401-3484457797-169236058-501 - Limited - Disabled)
quart (S-1-5-21-2000400401-3484457797-169236058-1001 - Administrator - Enabled) => C:\Users\quart
WDAGUtilityAccount (S-1-5-21-2000400401-3484457797-169236058-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Acronis Drivers (HKLM\...\{15649BB0-01DE-4FD5-9FF2-E513DD058A9B}) (Version: 29.2.41810 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{CA24E997-9FBB-477C-A954-1D622EC81299}) (Version: 29.2.41810 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{CA24E997-9FBB-477C-A954-1D622EC81299}Visible) (Version: 29.2.41810 - Acronis)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1031-1033-7760-BC15014EA700}) (Version: 25.001.20435 - Adobe)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601108}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Amazon Appstore (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\com.amazon.venezia) (Version: release-60.25.1.0.210698.0_736410 - amazon.com)
Asian Language And Spelling Dictionaries Support For Adobe Acrobat Reader (HKLM\...\{AC76BA86-7AD7-0000-0000-BC16014E7500}) (Version: 22.001.20085 - Adobe Systems Incorporated)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.16 - tippach engineering)
Audacity 3.7.3 (HKLM\...\Audacity_is1) (Version: 3.7.3 - Audacity Team)
AusweisApp (HKLM\...\{76BCD646-0551-41D7-B2B2-F379C874CB98}) (Version: 2.3.1 - Governikus GmbH & Co. KG)
Bome Virtual MIDI 2.1.0.44 (HKLM\...\BMIDI_Driver1.0.0.11_is1) (Version:  - Bome Software GmbH & Co. KG)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 135.1.77.95 - Die Brave-Autoren)
Cisco AnyConnect Secure Mobility Client  (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.10.08025 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{ECB9C055-4ECE-438C-AC50-2B09D76377D6}) (Version: 4.10.08025 - Cisco Systems, Inc.) Hidden
Citavi 6 (HKLM-x32\...\{6A331045-8FF4-4BC9-9C56-E593ACAE28C2}) (Version: 6.19.2.1 - Lumivero, LLC)
Claude (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\AnthropicClaude) (Version: 0.9.1 - Anthropic PBC)
Documentation Manager (HKLM\...\{E0088F7D-23C2-4A0A-8EF2-1F1830F112F6}) (Version: 23.120.0.3 - Intel Corporation) Hidden
Dolby Vision Provisioning Utility (HKLM-x32\...\provisiondolbyvision1_1-20200601_is1) (Version: 1.7.4.4 (2023 October Data a) - Lenovo Group Limited)
DroidCam Audio & Video Drivers (New) (HKLM\...\DroidCamDrivers) (Version: 7.1.0 - Dev47Apps)
DroidCam Client (New) (HKLM\...\DroidCamOBSClient) (Version: 7.1.0 - Dev47Apps)
DroidCam OBS Plugin (HKLM-x32\...\OBSDroidCam) (Version: 2.3.3 - Dev47Apps)
DroidKit (HKLM-x32\...\DroidKit) (Version: 1.0.1.1 - iMobie Inc.)
Element (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\element-desktop) (Version: 1.11.96 - Element)
Epic Games Launcher (HKLM-x32\...\{8BD3FB76-2B27-4BD7-8672-0B976CED962D}) (Version: 1.3.128.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{C7D679C2-04A8-434A-8799-4C2F001388BE}) (Version: 2.9.0 - Epic Games, Inc.)
Evernote 10.133.2 (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\e4251011-875e-51f3-a464-121adaff5aaa) (Version: 10.133.2 - Evernote Corporation)
Evernote 10.95.6 (Alle Nutzer) (HKLM\...\e4251011-875e-51f3-a464-121adaff5aaa) (Version: 10.95.6 - Evernote Corporation)
Exodus (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\exodus) (Version: 24.51.4 - Exodus Movement Inc)
GamingIntelligence(x64) (HKLM\...\{11E14722-1213-4021-AD72-32252315CB8B}) (Version: 0.0.2.77 - MICRO-STAR INT'L,.LTD.) Hidden
GamingIntelligence(x64) (HKLM-x32\...\Installshield_{11E14722-1213-4021-AD72-32252315CB8B}) (Version: 0.0.2.77 - MICRO-STAR INT'L,.LTD.)
Git (HKLM\...\Git_is1) (Version: 2.49.0 - The Git Development Community)
Git LFS version 3.6.1 (HKLM\...\{286391DE-F778-44EA-9375-1B21AAA04FF0}_is1) (Version: 3.6.1 - GitHub, Inc.)
GNU Privacy Guard (HKLM-x32\...\GnuPG) (Version: 2.4.7 - The GnuPG Project)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 135.0.7049.42 - Google LLC)
Google Cloud SDK (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Google Cloud SDK) (Version:  - Google LLC)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 106.0.4.0 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Gpg4win (4.4.0) (HKLM-x32\...\Gpg4win) (Version: 4.4.0 - The Gpg4win Project)
HESSENBOX (HKLM-x32\...\HESSENBOX) (Version: 22.2.103.0 - HESSENBOX)
Hunspell (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\FSFhu.Hunspell_Microsoft.Winget.Source_8wekyb3d8bbwe) (Version: 1.7.0 - FSF.hu)
IBM SPSS Statistics (HKLM\...\{865E2C89-D9AE-43B9-A33D-81D0C919EF79}) (Version: 29.0.1.0 - IBM Corp)
Intel Driver && Support Assistant (HKLM-x32\...\{524ACC57-49A0-4613-B0D5-4AE395BAD12C}) (Version: 25.1.9.6 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{76751700-CC7A-4C8E-A7EE-D66651594A6A}) (Version: 2.4.10802 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{f2a88096-3fb7-490f-b289-ad70b99a8f5e}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000120-0230-1031-84C8-B8D95FA3C8C3}) (Version: 23.120.0.4 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{39A494DD-786D-478B-BAEC-D0E24306FD04}) (Version: 25.1.9.6 - Intel)
Intel® Software Installer (HKLM\...\{6219E6AE-8668-4CB1-91B7-749B2FFE6342}) (Version: 23.120.0.3 - Intel Corporation) Hidden
Intel® Software Installer (HKLM-x32\...\{936a43c1-562b-4998-9dd8-a3a98011972b}) (Version: 23.110.0.5 - Intel Corporation) Hidden
JASP 0.17.3.0 (HKLM\...\{2609E3D6-3E3B-4143-A210-7B58C6EAE3FB}) (Version: 0.17.3.0 - Universiteit van Amsterdam)
KeePassXC (HKLM\...\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}) (Version: 2.7.10 - KeePassXC Team)
LatencyMon 7.31 (HKLM\...\LatencyMon_is1) (Version: 7.31 - Resplendence Software Projects Sp.)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Ledger Live 2.106.0 (HKLM\...\c62032b2-0bca-5abc-b458-fd67cfc9e49b) (Version: 2.106.0 - Ledger Live Team)
Lenovo Now (HKLM-x32\...\{622FA116-13E7-4BB6-839C-A3E0E3ECDFE6}_is1) (Version: 4.2.1.1 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 4.3.21.0 - Lenovo Group Ltd.)
Logi Options+ (HKLM\...\{850cdc16-85df-4052-b06e-4e3e9e83c5c6}) (Version: 1.88.697541 - Logitech)
Logi Plugin Service (HKLM\...\{72FF69C9-E11E-465B-B4BD-6055CBBA52FD}) (Version: 6.1.0.22061 - Logitech)
Logi RightSightForWebcams 1.1.131 (HKLM\...\{DECD01E1-1B88-4815-8B8D-A3E0CEC9C47C}) (Version: 1.1.131.0 - Logitech) Hidden
LyX 2.4.1 (HKLM\...\LyX241) (Version: 2.4.1 - LyX Team)
MATLAB R2023a (HKLM\...\MATLAB R2023a) (Version: 9.14 - MathWorks)
Microsoft 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.18623.20156 - Microsoft Corporation)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.18623.20156 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 135.0.3179.54 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 134.0.3124.93 - Microsoft Corporation) Hidden
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.31301 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34438 (HKLM-x32\...\{b49c10dd-4d54-45f8-ad13-fa25704456a4}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34438 (HKLM\...\{E528AD94-12D7-42C4-91A3-908BE28E9BD2}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34438 (HKLM\...\{2E15F519-4FDA-4834-B4EE-7EFCE7D8D4EE}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{610487D9-3460-328A-9333-219D43A75CC5}) (Version: 10.0.60922 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.60917 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.60917 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.99.0 - Microsoft Corporation)
MiKTeX (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\MiKTeX) (Version: 24.4 - MiKTeX.org)
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 137.0 (x64 de)) (Version: 137.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 137.0.1 - Mozilla)
Mozilla Thunderbird (x64 de) (HKLM\...\Mozilla Thunderbird 137.0.1 (x64 de)) (Version: 137.0.1 - Mozilla)
multibootusb (remove only) (HKLM-x32\...\multibootusb) (Version:  - )
MusicBee 3.5.8698 (HKLM-x32\...\MusicBee) (Version: 3.5.8698 - Steven Mayall)
Native Access 3.14.0 (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\c410b7d2-8fce-53b3-8332-e98b6e89a16a) (Version: 3.14.0 - Native Instruments)
Native Instruments Absynth 5 (HKLM-x32\...\Native Instruments Absynth 5) (Version: 5.3.4.59 - Native Instruments)
Native Instruments Analog Dreams (HKLM-x32\...\Native Instruments Analog Dreams) (Version: 2.1.1.4 - Native Instruments)
Native Instruments Audio 2 DJ Driver (HKLM-x32\...\Native Instruments Audio 2 DJ Driver) (Version:  - Native Instruments)
Native Instruments Audio 8 DJ Driver (HKLM-x32\...\Native Instruments Audio 8 DJ Driver) (Version:  - Native Instruments)
Native Instruments Battery 4 (HKLM-x32\...\Native Instruments Battery 4) (Version: 4.3.0.0 - Native Instruments)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 2.8.2.0 - Native Instruments)
Native Instruments Driver (HKLM-x32\...\Native Instruments Driver) (Version: 1.4.7.22 - Native Instruments)
Native Instruments FM8 (HKLM-x32\...\Native Instruments FM8) (Version: 1.4.6.3 - Native Instruments)
Native Instruments Komplete Kontrol (HKLM-x32\...\Native Instruments Komplete Kontrol) (Version: 3.3.3.0 - Native Instruments)
Native Instruments Komplete Kontrol Driver (HKLM-x32\...\Native Instruments Komplete Kontrol Driver) (Version:  - Native Instruments)
Native Instruments Komplete Kontrol MK2 Driver (HKLM-x32\...\Native Instruments Komplete Kontrol MK2 Driver) (Version:  - Native Instruments)
Native Instruments Kontakt (HKLM-x32\...\Native Instruments Kontakt) (Version: 6.8.0.0 - Native Instruments)
Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.8.1.43 - Native Instruments)
Native Instruments Kontakt 7 (HKLM-x32\...\Native Instruments Kontakt 7) (Version: 7.10.6.0 - Native Instruments)
Native Instruments Maschine 2 (HKLM-x32\...\Native Instruments Maschine 2) (Version: 2.18.4.0 - Native Instruments)
Native Instruments Maschine 2 Factory Library (HKLM-x32\...\Native Instruments Maschine 2 Factory Library) (Version: 1.3.9.4 - Native Instruments)
Native Instruments Maschine Controller MK2 Driver (HKLM-x32\...\Native Instruments Maschine Controller MK2 Driver) (Version:  - Native Instruments)
Native Instruments Maschine Jam Driver (HKLM-x32\...\Native Instruments Maschine Jam Driver) (Version:  - Native Instruments)
Native Instruments Maschine Mikro Driver (HKLM-x32\...\Native Instruments Maschine Mikro Driver) (Version:  - Native Instruments)
Native Instruments Maschine Mikro MK2 Driver (HKLM-x32\...\Native Instruments Maschine Mikro MK2 Driver) (Version:  - Native Instruments)
Native Instruments Maschine MK3 Driver (HKLM-x32\...\Native Instruments Maschine MK3 Driver) (Version:  - Native Instruments)
Native Instruments Maschine Studio Driver (HKLM-x32\...\Native Instruments Maschine Studio Driver) (Version:  - Native Instruments)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: 1.6.0.33 - Native Instruments)
Native Instruments NIHostIntegrationAgent (HKLM-x32\...\Native Instruments NIHostIntegrationAgent) (Version: 1.16.0.0 - Native Instruments)
Native Instruments NTKDaemon (HKLM-x32\...\Native Instruments NTKDaemon) (Version: 1.21.0.0 - Native Instruments)
Native Instruments Reaktor 5 (HKLM-x32\...\Native Instruments Reaktor 5) (Version: 5.9.4.1512 - Native Instruments)
Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.5.0.0 - Native Instruments)
Native Instruments Replika (HKLM-x32\...\Native Instruments Replika) (Version: 1.6.3.22 - Native Instruments)
Native Instruments Solid Bus Comp FX (HKLM-x32\...\Native Instruments Solid Bus Comp FX) (Version: 1.4.7.22 - Native Instruments)
Native Instruments Solid Dynamics FX (HKLM-x32\...\Native Instruments Solid Dynamics FX) (Version: 1.4.7.22 - Native Instruments)
Native Instruments Solid EQ FX (HKLM-x32\...\Native Instruments Solid EQ FX) (Version: 1.4.7.22 - Native Instruments)
Native Instruments Supercharger (HKLM-x32\...\Native Instruments Supercharger) (Version: 1.4.7.22 - Native Instruments)
Native Instruments Traktor Audio 10 Driver (HKLM-x32\...\Native Instruments Traktor Audio 10 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Audio 2 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Audio 2 MK2 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Audio 6 Driver (HKLM-x32\...\Native Instruments Traktor Audio 6 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol D2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol D2 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol F1 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol F1 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol S2 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S2 MK2 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol S4 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S4 MK2 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol S5 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S5 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol S8 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S8 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol X1 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol X1 MK2 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol X1 MK3 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol X1 MK3 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol Z1 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol Z1 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Kontrol Z2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol Z2 Driver) (Version:  - Native Instruments)
Native Instruments Traktor Pro 3 (HKLM-x32\...\Native Instruments Traktor Pro 3) (Version: 3.11.1.17 - Native Instruments)
Native Instruments Transient Master FX (HKLM-x32\...\Native Instruments Transient Master FX) (Version: 1.4.7.22 - Native Instruments)
Novation USB Midi 2.27.0.66 (HKLM\...\Novation USB Midi Driver_is1) (Version: 2.27.0.66 - Novation DMS, Ltd.)
NVIDIA FrameView SDK 1.5.10819.35301613 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.10819.35301613 - NVIDIA Corporation)
NVIDIA Grafiktreiber 572.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 572.70 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.4.3.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.3.2 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
NVIDIA-App 11.0.2.337 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.2.337 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 31.0.3 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.18623.20156 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.18623.20156 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.18623.20156 - Microsoft Corporation) Hidden
Path of Building Community (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\Path of Building Community) (Version: 2.52.3 - Path of Building Community)
PowerShell 7-x64 (HKLM\...\{D012DCD1-67EA-4627-938F-19FD677FC03A}) (Version: 7.5.0.0 - Microsoft Corporation)
Python 3.12.9 (64-bit) (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\{95f11c27-5079-4ec7-b5b0-fda34467b15e}) (Version: 3.12.9150.0 - Python Software Foundation)
Python 3.12.9 Add to Path (64-bit) (HKLM\...\{59FFA9E4-7873-481E-B795-184D9BD82CCD}) (Version: 3.12.9150.0 - Python Software Foundation) Hidden
Python 3.12.9 Core Interpreter (64-bit) (HKLM\...\{1B1A3A1E-3CCF-4A0E-A544-0B94E8E51156}) (Version: 3.12.9150.0 - Python Software Foundation) Hidden
Python 3.12.9 Development Libraries (64-bit) (HKLM\...\{17CB40BC-AC95-47EF-9CFD-7D9C3F9EEB41}) (Version: 3.12.9150.0 - Python Software Foundation) Hidden
Python 3.12.9 Documentation (64-bit) (HKLM\...\{285AE535-C59C-401B-9407-7E1B7136C2E4}) (Version: 3.12.9150.0 - Python Software Foundation) Hidden
Python 3.12.9 Executables (64-bit) (HKLM\...\{8F708501-AF68-42E7-8A6E-D239CA6DA1A8}) (Version: 3.12.9150.0 - Python Software Foundation) Hidden
Python 3.12.9 pip Bootstrap (64-bit) (HKLM\...\{3896B2CF-1393-4CDF-A6B6-8FAFF1E5FB03}) (Version: 3.12.9150.0 - Python Software Foundation) Hidden
Python 3.12.9 Standard Library (64-bit) (HKLM\...\{312BF73C-2417-4636-A1C8-2DE2EAE1AD68}) (Version: 3.12.9150.0 - Python Software Foundation) Hidden
Python 3.12.9 Tcl/Tk Support (64-bit) (HKLM\...\{35132CCC-6F41-40CF-8045-FDD16269C0D4}) (Version: 3.12.9150.0 - Python Software Foundation) Hidden
Python 3.12.9 Test Suite (64-bit) (HKLM\...\{7B927FDC-8F38-4DF7-9EF2-F34ED59CE33D}) (Version: 3.12.9150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{30315A7E-2026-432E-B847-8EB428C67CC0}) (Version: 3.12.9150.0 - Python Software Foundation)
R for Windows 4.4.3 (HKLM\...\R for Windows 4.4.3_is1) (Version: 4.4.3 - R Core Team)
Rayman Legends (HKLM-x32\...\Uplay Install 410) (Version:  - Ubisoft)
REDlauncher (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\{7258BA11-600C-430E-A759-27E2C691A335}-REDlauncher_is1) (Version:  - CD Projekt RED)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.84.1856 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.2.7.0 - Rockstar Games)
RStudio (HKLM-x32\...\RStudio) (Version: 2024.12.1+563 - Posit Software)
Rtools 4.4 (6459-6401) (HKLM\...\Rtools44_is1) (Version: 4.4.6459 - The R Foundation)
Samsung M332x 382x 402x Series (HKLM-x32\...\Samsung M332x 382x 402x Series) (Version: V1.38 (02.04.2022) - Samsung Electronics Co., Ltd.)
Samsung NVM Express Driver (HKLM-x32\...\{ff94c273-58d5-40b5-b03a-9bd41d5cff1e}) (Version: 3.3.0.2003 - Samsung Electronics)
Samsung NVM Express Driver 3.3.0.2003 (HKLM\...\{89D55DD5-FE94-497B-B5E5-91915D52DBF2}) (Version: 3.3.0.2003 - Samsung Electronics Co., Ltd) Hidden
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.59.0 - Samsung Electronics Co., Ltd.)
Sider 2.1.1 (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\44981be1-6200-55c6-b0f7-97821b33d127) (Version: 2.1.1 - Vidline Inc.)
Signal 7.49.0 (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 7.49.0 - Signal Messenger, LLC)
SoulseekQt Version 2019.7.22 (HKLM-x32\...\{8A4E1646-488C-4E5B-AC31-F784400E8D2D}_is1) (Version: 2019.7.22 - Soulseek LLC)
SoulseekQt Version 2024.2.1 (64 Bit) (HKLM\...\{8A4E1646-488C-4E5B-AC31-F784400E8D2D}_is1) (Version: 2024.2.1 - Soulseek LLC)
Soundcraft USB Audio Control Panel 2.0.4 (HKLM-x32\...\{A64D4187-7FDE-4902-820C-B21028D6DBF6}_is1) (Version: 2.0.4 - Harman Pro\Soundcraft\Multi-channel USB Audio)
Spyder5Pro (HKLM-x32\...\Spyder5Pro) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TuneIn 1.25.0 (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\{491e9b4c-9857-50a5-9caf-cb9616fbaf49}) (Version: 1.25.0 - TuneIn Inc)
TuneIn 1.26.0 (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\491e9b4c-9857-50a5-9caf-cb9616fbaf49) (Version: 1.26.0 - TuneIn Inc)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 162.0.11687 - Ubisoft)
UniGetUI (HKLM-x32\...\{889610CC-4337-4BDB-AC3B-4F21806C0BDE}_is1) (Version: 3.1.8 - Martí Climent)
Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version:  - VB-Audio Software)
Webex (HKLM\...\{611AD18D-000D-4ABB-84FD-CC503FDE8EC6}) (Version: 45.3.1.32057 - Cisco Systems, Inc)
Windows 10-Update-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.19041.2183 - Microsoft Corporation)
WinRAR 7.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 7.11.0 - win.rar GmbH)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.7) (Version: 1.3.7 - Xvid Team)
Yubico Authenticator (HKLM\...\{7683922E-5951-46BC-9AB2-A666F6F76638}) (Version: 7.2.0 - Yubico AB)
YubiKey Manager (HKLM-x32\...\yubikey-manager) (Version: 1.2.6 - Yubico AB)
YubiKey Personalization Tool (HKLM-x32\...\yubikey-personalization-gui) (Version: 3.1.25 - Yubico AB)
Zoom Workplace (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\ZoomUMX) (Version: 6.4.3 (63669) - Zoom Communications, Inc.)
Zotero (HKLM\...\Zotero 7.0.15 (x64 en-US)) (Version: 7.0.15 - Corporation for Digital Scholarship)

Chrome apps:
============
TasksBoard (HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\fadda49fad9d2669940a58cf1ef1cece) (Version: 1.0 - Google\Chrome)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2025-02-03] ()
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt [2024-11-09] (INTEL CORP) [Startup Task]
AppUp.ThunderboltControlCenter -> C:\Program Files\WindowsApps\AppUp.ThunderboltControlCenter_1.0.37.0_x64__8j3eq9eme6ctt [2023-10-16] (INTEL CORP)
Asphalt 8: Airborne -> C:\Program Files\WindowsApps\GAMELOFTSA.Asphalt8Airborne_8.2.102.0_x64__0pp20fcewvvtj [2025-03-22] (GAMELOFT  SA)
ChatGPT -> C:\Program Files\WindowsApps\OpenAI.ChatGPT-Desktop_1.2025.90.0_x64__2p2nqsd0c76g0 [2025-04-03] (OpenAI) [Startup Task]
Dolby Atmos Speaker System -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAtmosSpeakerSystem_3.20703.732.0_x64__rz1tebttyb220 [2023-02-13] (Dolby Laboratories)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2501.20.0_x64__k1h2ywk1493x8 [2025-02-20] (LENOVO INC.)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.6.12.0_x64__5grkq8ppsgwt4 [2024-04-02] (LENOVO INC) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2023-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2023-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2503.28002.0_x64__8wekyb3d8bbwe [2025-04-04] (Microsoft Corporation) [Startup Task]
Microsoft.MicrosoftPCManager -> C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.16.2.0_x64__8wekyb3d8bbwe [2025-03-21] (Microsoft Corporation) [Startup Task]
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.296.0_x64__8wekyb3d8bbwe [2025-03-25] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2025-02-17] (NVIDIA Corp.)
OfficePushNotificationsUtility -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE16 [2025-04-04] ()
One Calendar -> C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2025.124.1.0_x64__8kea50m9krsh2 [2025-02-03] (Code Spark)
Pictureflect Photo Viewer -> C:\Program Files\WindowsApps\31258Ben48.BasicPhotoViewer_3.10.2.0_x64__2c5bccghv4cc2 [2025-03-06] (Pictureflect)
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2024-02-06] (Adobe Systems Incorporated)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.26.251.0_x64__dt26b99r8h8gj [2023-10-16] (Realtek Semiconductor Corp)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2023-02-13] (Samsung Electronics Co. Ltd.)
Speech Pack - English (United States) -> C:\Program Files\WindowsApps\MicrosoftWindows.Speech.en-US.1_1.0.23.0_x64__cw5n1h2txyewy [2025-03-29] (Microsoft Windows)
Speech Pack - German (Germany) -> C:\Program Files\WindowsApps\MicrosoftWindows.Speech.de-DE.1_1.0.11.0_x64__cw5n1h2txyewy [2025-03-29] (Microsoft Windows)
TuneIn Radio -> C:\Program Files\WindowsApps\TuneIn.TuneInRadio_4.0.7.0_x64__6bhtb546zcxnj [2025-02-14] (TuneIn) [MS Ad]
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.373.1736.0_x64__8wekyb3d8bbwe [2025-01-21] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_6000.424.1611.0_x64__8wekyb3d8bbwe [2025-03-12] (Microsoft Corp.)
Windows App Runtime DDLM 5001.70.1338.0-x6 -> C:\Program Files\WindowsApps\Microsoft.WinAppRuntime.DDLM.5001.70.1338.0-x6_5001.70.1338.0_x64__8wekyb3d8bbwe [2024-04-08] (Microsoft Corporation)
Windows App Runtime DDLM 5001.70.1338.0-x8 -> C:\Program Files\WindowsApps\Microsoft.WinAppRuntime.DDLM.5001.70.1338.0-x8_5001.70.1338.0_x86__8wekyb3d8bbwe [2024-04-08] (Microsoft Corporation)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-03-27] (Microsoft Windows)
Windows HDR Calibration -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsHDRCalibration_1.0.152.0_x64__8wekyb3d8bbwe [2025-01-28] (Microsoft Corp.)
Windows-Subsystem für Android™ -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForAndroid_2407.40000.4.0_x64__8wekyb3d8bbwe [2025-02-06] (Microsoft Corp.) [Startup Task]
Xbox Zubehör -> C:\Program Files\WindowsApps\Microsoft.XboxDevices_2502.2502.12001.0_x64__8wekyb3d8bbwe [2025-03-24] (Microsoft Corporation)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2000400401-3484457797-169236058-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2000400401-3484457797-169236058-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2000400401-3484457797-169236058-1001_Classes\CLSID\{3C9B4219-0FDE-46C3-8E6C-3CE8976A577E}\localserver32 -> c:\program files\unigetui\unigetui.exe (Marti Climent Lopez -> )
CustomCLSID: HKU\S-1-5-21-2000400401-3484457797-169236058-1001_Classes\CLSID\{5107667c-149a-47c8-b0c9-e4bf9132f17d} -> [HESSENBOX] => C:\Users\quart\HESSENBOX [2023-07-13 12:08]
CustomCLSID: HKU\S-1-5-21-2000400401-3484457797-169236058-1001_Classes\CLSID\{6D5B3750-9DF1-45F4-B94B-1A50CAA3DCEC}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
CustomCLSID: HKU\S-1-5-21-2000400401-3484457797-169236058-1001_Classes\CLSID\{a224b3e2-4a74-4173-e7e1-995095b972c7}\localserver32 -> C:\Program Files\UniGetUI\UniGetUI.exe (Marti Climent Lopez -> )
CustomCLSID: HKU\S-1-5-21-2000400401-3484457797-169236058-1001_Classes\CLSID\{AAB8B71F-38C6-C558-DC8A-73F9ACD19306}\InprocServer32 -> kein Dateipfad
CustomCLSID: HKU\S-1-5-21-2000400401-3484457797-169236058-1001_Classes\CLSID\{b0522089-faef-3c82-eb45-511c9bbcf9e2}\localserver32 -> C:\Program Files\UniGetUI\WingetUI.exe (Marti Climent Lopez -> )
CustomCLSID: HKU\S-1-5-21-2000400401-3484457797-169236058-1001_Classes\CLSID\{f31668ff-868d-4811-82b3-8baddc685f73}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
ShellIconOverlayIdentifiers: [    AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_29_2_41810.dll [2025-01-17] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [    GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\106.0.4.0\drivefsext.dll [2025-04-02] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [    GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\106.0.4.0\drivefsext.dll [2025-04-02] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [    GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\106.0.4.0\drivefsext.dll [2025-04-02] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [    GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\106.0.4.0\drivefsext.dll [2025-04-02] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [  PowerFolderIgnored] -> {0800cf35-8302-4030-8add-40ac1e3f8834} => C:\Program Files\HESSENBOX\HESSENBOX\IgnoredOverlay_x64.dll [2025-01-14] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [  PowerFolderLocked] -> {0800cf35-8302-4030-8add-40ac1e3f8835} => C:\Program Files\HESSENBOX\HESSENBOX\LockedOverlay_x64.dll [2025-01-14] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [  PowerFolderOK] -> {0800cf35-8302-4030-8add-40ac1e3f8831} => C:\Program Files\HESSENBOX\HESSENBOX\OKOverlay_x64.dll [2025-01-14] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [  PowerFolderSyncing] -> {0800cf35-8302-4030-8add-40ac1e3f8832} => C:\Program Files\HESSENBOX\HESSENBOX\SyncingOverlay_x64.dll [2025-01-14] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [  PowerFolderWarning] -> {0800cf35-8302-4030-8add-40ac1e3f8833} => C:\Program Files\HESSENBOX\HESSENBOX\WarningOverlay_x64.dll [2025-01-14] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [    GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\106.0.4.0\drivefsext.dll [2025-04-02] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [    GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\106.0.4.0\drivefsext.dll [2025-04-02] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [    GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\106.0.4.0\drivefsext.dll [2025-04-02] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [    GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\106.0.4.0\drivefsext.dll [2025-04-02] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Keine Datei
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\106.0.4.0\drivefsext.dll [2025-04-02] (Google LLC -> Google LLC.)
ContextMenuHandlers1: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\Gpg4win\bin_64\gpgex.dll [2024-11-27] (g10 Code GmbH) [Datei ist nicht signiert]
ContextMenuHandlers1: [LiferayNativityContextMenus] -> {0800cf35-8302-4030-8add-40ac1e3f8830} => C:\Program Files\HESSENBOX\HESSENBOX\LiferayNativityContextMenus_x64.dll [2025-01-14] () [Datei ist nicht signiert]
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\106.0.4.0\drivefsext.dll [2025-04-02] (Google LLC -> Google LLC.)
ContextMenuHandlers4: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\Gpg4win\bin_64\gpgex.dll [2024-11-27] (g10 Code GmbH) [Datei ist nicht signiert]
ContextMenuHandlers4: [LiferayNativityContextMenus] -> {0800cf35-8302-4030-8add-40ac1e3f8830} => C:\Program Files\HESSENBOX\HESSENBOX\LiferayNativityContextMenus_x64.dll [2025-01-14] () [Datei ist nicht signiert]
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\106.0.4.0\drivefsext.dll [2025-04-02] (Google LLC -> Google LLC.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_071505319ec619da\nvshext.dll [2025-03-04] (NVIDIA Corporation -> NVIDIA Corporation)

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\system32\xvidvfw.dll [251392 2019-12-28] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [235520 2019-12-28] () [Datei ist nicht signiert]

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\quart\Desktop\TasksBoard.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=ffpdhnednbmelagcknnegjemgooenfml
ShortcutWithArgument: C:\Users\quart\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_ffpdhnednbmelagcknnegjemgooenfml\TasksBoard.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=ffpdhnednbmelagcknnegjemgooenfml
ShortcutWithArgument: C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Cloud SDK\Google Cloud SDK Shell.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k ""C:\Users\quart\AppData\Local\Google\Cloud SDK\cloud_env.bat""
ShortcutWithArgument: C:\Users\quart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\TasksBoard.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=ffpdhnednbmelagcknnegjemgooenfml
ShortcutWithArgument: C:\Users\quart\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\TasksBoard.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=ffpdhnednbmelagcknnegjemgooenfml

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============

2022-11-07 15:06 - 2022-11-07 15:06 - 006276608 _____ () [Datei ist nicht signiert] C:\Program Files\GamingIntelligence\MysticLight\Library\MSIMysticDll.dll
2024-12-18 21:06 - 2024-12-18 21:06 - 000026112 _____ () [Datei ist nicht signiert] C:\ProgramData\Microsoft\Windows\AppRepository\Packages\MicrosoftCorporationII.WindowsSubsystemForAndroid_2407.40000.4.0_x64__8wekyb3d8bbwe\PackagedCom\WsaProxy\WsaProxy.dll
2025-03-28 00:15 - 2025-01-14 11:55 - 000059392 _____ () [Datei ist nicht signiert] C:\Users\quart\AppData\Local\Temp\desktoputils.dll
2025-03-28 00:15 - 2025-01-14 11:55 - 001203750 _____ () [Datei ist nicht signiert] C:\Users\quart\AppData\Local\Temp\jnotify.dll
2025-03-28 00:15 - 2025-01-14 11:55 - 000014848 _____ () [Datei ist nicht signiert] C:\Users\quart\AppData\Local\Temp\LiferayNativityWindowsUtil.dll
2025-04-06 02:11 - 2025-04-06 02:11 - 000029696 _____ () [Datei ist nicht signiert] C:\Users\quart\AppData\Local\Temp\nspE99B.tmp\registry.dll
2025-04-06 02:11 - 2025-04-06 02:11 - 000011264 _____ () [Datei ist nicht signiert] C:\Users\quart\AppData\Local\Temp\nspE99B.tmp\System.dll
2025-03-14 23:36 - 2019-04-27 12:54 - 000919552 _____ (Andreas Håkansson, Steven Robbins and contributors) [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files\UniGetUI\Nancy.dll
2025-03-14 23:36 - 2019-04-27 12:55 - 000024064 _____ (Andreas Håkansson, Steven Robbins and contributors) [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files\UniGetUI\Nancy.Hosting.Self.dll
2025-03-14 23:36 - 2025-03-02 00:14 - 000403456 _____ (havendv) [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files\UniGetUI\H.NotifyIcon.dll
2025-03-14 23:36 - 2025-03-02 00:17 - 000179200 _____ (havendv) [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files\UniGetUI\H.NotifyIcon.WinUI.dll
2025-03-14 23:36 - 2025-03-03 16:32 - 000057344 _____ (Jeff Hansen) [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files\UniGetUI\Jeffijoe.MessageFormat.dll
2025-03-05 19:06 - 2025-03-05 19:06 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\PlugIns\NVIDIA app\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA Overlay\MessageBusRouter.dll
2025-03-05 19:06 - 2025-03-05 19:06 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA app\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

==================== Internet Explorer (Nicht auf der Ausnahmeliste) =============

BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/x64/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-04-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-04-04] (Microsoft Corporation -> Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\sharepoint.com -> hxxps://studentsunimarburgde-files.sharepoint.com

==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2022-05-07 07:24 - 2022-05-07 07:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2023-12-03 19:17 - 2025-04-05 21:03 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
172.25.32.1 Cortex.mshome.net # 2030 4 4 4 19 3 44 479

==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\rtoo\bin;C:\rtools44\mingw64;C:\R;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\MATLAB\R2023a\bin;D:\Android Geräte neues Os\Tools\platform-tools;C:\rtools43\mingw64\bin;C:\rtools43\usr\bin;C:\rtools43\x86_64-w64-mingw32.static.posix\bin;C:\rtools44\usr\bin;C:\rtools44\x86_64-w64-mingw32.static.posix\bin;C:\Users\quart\scoop\shims;C:\Users\quart\AppData\Local\Programs\Python\Python312\Scripts\;C:\Users\quart\AppData\Local\Programs\Python\Python312\;C:\Users\quart\AppData\Local\UniGetUI\Chocolatey\bin;C:\Program Files\LyX 2.4\Resources\dicts;C:\Program Files (x86)\Gpg4win\..\GnuPG\bin;C:\Program Files\NVIDIA Corporation\NVIDIA app\NvDLISR;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\FileProtector\;C:\Program Files (x86)\Common Files\Acronis\FileProtector64\;C:\Program Files\PowerShell\7\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Git LFS;C:\Program Files\Git\cmd;C:\Users\quart\AppData\Local\Google\Cloud SDK\google-cloud-sdk\bin;
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\quart\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
 ist aktiviert.

Network Binding:
=============
WLAN: Intel(R) Wi-Fi 6 AX201 160MHz -> Netwtw10.sys
Ethernet: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64 -> vpnva64-6.sys
Bluetooth-Netzwerkverbindung: Bluetooth Device (Personal Area Network) -> bthpan.sys
vEthernet (WSLCore): Hyper-V Virtual Ethernet Adapter ->

vms_vsf: Erweiterungsfilter für virtuellen Hyper-V-Switch
steamxboxndi: Steam Xbox Controller Enhanced Features Driver
ms_l1vhlwf: Geschachtelte Netzwerkvirtualisierung
vms_vsp: Extension-Protokoll für virtuellen Hyper-V-Switch

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

HKLM\...\StartupApproved\StartupFolder: => "SpyderUtility.lnk"
HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run: => "BraveVpnWireguardService"
HKLM\...\StartupApproved\Run32: => "CyberProtectHomeOfficeMonitor.exe"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "Cisco AnyConnect Secure Mobility Agent for Windows"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_E9243080242DEBA1E75581223067271D"
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\StartupApproved\Run: => "CiscoMeetingDaemon"
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\StartupApproved\Run: => "Xvid"
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\StartupApproved\Run: => "Mathworks Service Host"
HKU\S-1-5-21-2000400401-3484457797-169236058-1001\...\StartupApproved\Run: => "CiscoSpark"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{8D37886F-443D-47AC-89A9-CECB1694EFB6}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Agent\bin\task-manager.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{876CF7AE-BFB2-43CC-AD81-E5746FC46A41}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Agent\bin\bckp_amgr.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{BCA358AF-9A6E-4B62-BAA5-8397C784F008}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Home\report_sender.exe (Acronis International GmbH -> )
FirewallRules: [{F34FF71E-30ED-400F-85D3-1A7368B883FB}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{5FD567D1-EB01-402E-8C9B-DF57B1D61442}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{5D26F896-B930-4B5E-B159-2D23FCC07A31}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> )
FirewallRules: [{6D03C371-50B4-42D9-A2AA-FCEA7AF05A6D}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{5A48D221-8E5A-49C0-AC1A-C8E1FF7CD4FC}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> )
FirewallRules: [{AF7550EB-77DD-4A31-9EA5-2EEE8FCC1252}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{8FA0FD60-45E9-4E26-8F44-8C6233147372}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{AC9F2CDC-67E4-4BCB-B037-D772DFEB79FA}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{F89F6FEE-B2BB-4FD7-84C7-E33E89ADF062}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{C9E3A7E9-A9C6-4FFC-8A7E-4653B96129BB}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{84C5ED59-259B-414C-8F41-D9B62CDC9EC3}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{29577CF4-B745-4479-BDCD-1305F250DEB6}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{696EBF51-1CE6-4800-A911-B5229E394A90}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> )
FirewallRules: [{291FAB26-7CEF-4F26-B611-C0F4C172DB28}] => (Allow) C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{C8A9910C-036E-4C9A-A80B-0777E1EAE842}] => (Allow) C:\Program Files\Common Files\Acronis\ActiveProtection\active_protection_service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{31C44D3B-FEBA-4705-91EE-38A97B38060F}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Agent\aakore.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{E6873842-5AD0-45CE-B7C2-9671C7BC55D2}] => (Allow) C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForAndroid_2407.40000.4.0_x64__8wekyb3d8bbwe\WsaClient\WsaClient.exe (Microsoft Corporation -> )
FirewallRules: [{DE6270E9-994D-4682-970F-42673B95613E}] => (Allow) C:6\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe => Keine Datei
FirewallRules: [{5F9064B9-BF02-4A67-9A9E-66D278C23DF8}] => (Allow) C:6\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe => Keine Datei
FirewallRules: [{CBF0AE95-4F3A-4ED1-B7AB-0656C0998014}] => (Allow) C:6\SteamLibrary\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe => Keine Datei
FirewallRules: [{8CF9CFBB-E926-4A38-983D-B2A105F41676}] => (Allow) C:6\SteamLibrary\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe => Keine Datei
FirewallRules: [{66607CDD-DAFD-4F2A-9B09-46567419D3EA}] => (Allow) C:6\SteamLibrary\steamapps\common\Diablo IV\Diablo IV.exe => Keine Datei
FirewallRules: [{57190B69-AB9C-41E6-BA22-DB0B22C0513A}] => (Allow) C:6\SteamLibrary\steamapps\common\Diablo IV\Diablo IV.exe => Keine Datei
FirewallRules: [{1DB518AD-08A7-4710-9F81-E59183D880CE}] => (Allow) C:6\SteamLibrary\steamapps\common\Portal Revolution\bin\win64\revolution.exe => Keine Datei
FirewallRules: [{D529657C-1B49-4E14-8DFB-BA3FED377F2B}] => (Allow) C:6\SteamLibrary\steamapps\common\Portal Revolution\bin\win64\revolution.exe => Keine Datei
FirewallRules: [UDP Query User{F96E843C-3F6D-474F-BE68-653906159D76}C:\program files\windowsapps\openai.chatgpt-desktop_1.2024.345.0_x64__2p2nqsd0c76g0\app\chatgpt.exe] => (Allow) C:\program files\windowsapps\openai.chatgpt-desktop_1.2024.345.0_x64__2p2nqsd0c76g0\app\chatgpt.exe => Keine Datei
FirewallRules: [TCP Query User{C5B94EF3-0A1D-4A32-A264-B8B1E28C2E99}C:\program files\windowsapps\openai.chatgpt-desktop_1.2024.345.0_x64__2p2nqsd0c76g0\app\chatgpt.exe] => (Allow) C:\program files\windowsapps\openai.chatgpt-desktop_1.2024.345.0_x64__2p2nqsd0c76g0\app\chatgpt.exe => Keine Datei
FirewallRules: [UDP Query User{43095522-274B-4BBB-BD55-E2543EE60AE9}C:\program files\windowsapps\openai.chatgpt-desktop_1.2024.337.0_x64__2p2nqsd0c76g0\app\chatgpt.exe] => (Allow) C:\program files\windowsapps\openai.chatgpt-desktop_1.2024.337.0_x64__2p2nqsd0c76g0\app\chatgpt.exe => Keine Datei
FirewallRules: [TCP Query User{EF432131-2938-44C8-8EF5-523EF17BD423}C:\program files\windowsapps\openai.chatgpt-desktop_1.2024.337.0_x64__2p2nqsd0c76g0\app\chatgpt.exe] => (Allow) C:\program files\windowsapps\openai.chatgpt-desktop_1.2024.337.0_x64__2p2nqsd0c76g0\app\chatgpt.exe => Keine Datei
FirewallRules: [UDP Query User{B9CBFE23-04FA-4B31-ABB5-193DD8546CC0}C:\program files\windowsapps\openai.chatgpt-desktop_1.2024.315.0_x64__2p2nqsd0c76g0\app\chatgpt.exe] => (Allow) C:\program files\windowsapps\openai.chatgpt-desktop_1.2024.315.0_x64__2p2nqsd0c76g0\app\chatgpt.exe => Keine Datei
FirewallRules: [TCP Query User{5CFAD6DB-7118-4BB7-8F87-31046EE0B6E7}C:\program files\windowsapps\openai.chatgpt-desktop_1.2024.315.0_x64__2p2nqsd0c76g0\app\chatgpt.exe] => (Allow) C:\program files\windowsapps\openai.chatgpt-desktop_1.2024.315.0_x64__2p2nqsd0c76g0\app\chatgpt.exe => Keine Datei
FirewallRules: [{96606EB4-9B63-4AC0-858E-5DE08484D2A6}] => (Allow) E:\SteamLibrary\steamapps\common\Rayman Legends\Rayman Legends.exe => Keine Datei
FirewallRules: [{1C16B329-C661-4D0A-8BD1-B2D1200AAED2}] => (Allow) E:\SteamLibrary\steamapps\common\Rayman Legends\Rayman Legends.exe => Keine Datei
FirewallRules: [{0845B493-887C-4B77-95D2-F431F7D8D386}] => (Allow) C:\Users\quart\AppData\Roaming\Zoom\bin\airhost.exe (Zugriff verweigert)  [Datei ist nicht signiert?]
FirewallRules: [{A19555C1-D89B-413B-83CE-6D87F4323046}] => (Allow) C:\Users\quart\AppData\Roaming\Zoom\bin\airhost.exe (Zugriff verweigert)  [Datei ist nicht signiert?]
FirewallRules: [{CAB7FDAF-AE1A-422B-AC4C-11D9F5AB13FF}] => (Allow) C:\Users\quart\AppData\Roaming\Zoom\bin\Zoom.exe (Zugriff verweigert)  [Datei ist nicht signiert?]
FirewallRules: [{CE149E53-7C8A-451A-B5B6-BD74DC9BC577}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BCE1D418-7A02-431F-B5E8-7B34C1C53F81}] => (Allow) D:\Spielen\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe => Keine Datei
FirewallRules: [{9D6DCF44-E83F-4276-A070-B8360296D273}] => (Allow) D:\Spielen\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe => Keine Datei
FirewallRules: [{08C65B2F-86FC-49FE-9CDE-C5B6C306C7C9}] => (Allow) C:\Program Files (x86)\Acronis\Agent\bin\task-manager.exe => Keine Datei
FirewallRules: [{855C37A1-01D6-4158-A337-C7A82133C84D}] => (Allow) C:\Program Files (x86)\Acronis\Agent\bin\bckp_amgr.exe => Keine Datei
FirewallRules: [{B0CAD5D0-BA2C-437E-980A-2C11340DD145}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24215.1103.3051.6995_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CAB1957C-135C-44F5-BE91-0B9F4AD58797}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24215.1103.3051.6995_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{EF2923B4-9D4A-4D44-8AE3-1A430F5A48D5}C:\users\quart\appdata\local\programs\evernote\evernote.exe] => (Allow) C:\users\quart\appdata\local\programs\evernote\evernote.exe (Evernote Corporation -> Evernote Corporation)
FirewallRules: [TCP Query User{D63D422D-4FCB-41BE-BA05-23145067147B}C:\users\quart\appdata\local\programs\evernote\evernote.exe] => (Allow) C:\users\quart\appdata\local\programs\evernote\evernote.exe (Evernote Corporation -> Evernote Corporation)
FirewallRules: [{9F8F1298-C8C5-4FC2-9296-A5CA395FF1F2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9F7369E9-3FF0-4CA4-8B4C-D57DE3E6FB6C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{60851657-AF0F-41C7-9025-D0160B53DC09}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4F838303-FD99-466A-BF2C-39530A8C518E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{75AD6D2D-F3B7-478A-BF58-E9BE81CAD47C}] => (Allow) C:\program files\GamingIntelligence\GamingIntelligence.exe (Micro-Star International CO., LTD. -> MICRO-STAR INT'L,.LTD.)
FirewallRules: [{4DD9B705-394F-4358-9390-6EF69C80264A}] => (Allow) C:\Program Files (x86)\Acronis\CyberProtectHomeOffice\LicenseActivator.exe => Keine Datei
FirewallRules: [{2DE4C05F-0E07-4732-947F-170963F69BA1}] => (Allow) C:\Program Files (x86)\Acronis\CyberProtectHomeOffice\ga_service.exe => Keine Datei
FirewallRules: [{3C1751C1-55CD-4747-ACEA-7716CBBB53CB}] => (Allow) C:\Program Files (x86)\Acronis\CyberProtectHomeOffice\mobile_backup_status_server.exe => Keine Datei
FirewallRules: [{DEEA62A9-3D6E-412C-B453-591FEEA383CC}] => (Allow) C:\Program Files (x86)\Acronis\CyberProtectHomeOffice\acronis_drive.exe => Keine Datei
FirewallRules: [{80880999-974C-4A77-B09C-0CC4BC83CBD6}] => (Allow) C:\Program Files (x86)\Acronis\CyberProtectHomeOffice\SystemReport.exe => Keine Datei
FirewallRules: [{1996A611-9E54-4475-8CA6-BF81FC31F124}] => (Allow) C:\Program Files (x86)\Acronis\CyberProtectHomeOffice\MediaBuilder.exe => Keine Datei
FirewallRules: [UDP Query User{89FA076A-54DD-4A95-9D14-5CB7E8CCE136}C:\users\quart\downloads\anydesk.exe] => (Allow) C:\users\quart\downloads\anydesk.exe => Keine Datei
FirewallRules: [TCP Query User{DEDBACFA-E27E-447C-8A75-615A69420051}C:\users\quart\downloads\anydesk.exe] => (Allow) C:\users\quart\downloads\anydesk.exe => Keine Datei
FirewallRules: [{136878A5-EAED-4E0B-8FBE-3807BBC8E1B4}] => (Allow) C:\Program Files (x86)\iMobie\PhoneTrans\xldownload\download\MiniThunderPlatform.exe => Keine Datei
FirewallRules: [{7CFDDAD4-8016-4904-B48C-E25419DC4B2C}] => (Allow) C:\Program Files (x86)\iMobie\PhoneTrans\xldownload\download\MiniThunderPlatform.exe => Keine Datei
FirewallRules: [UDP Query User{E14E842B-A326-4814-A9FD-554AE37D06F0}C:\users\quart\appdata\local\programs\joplin\joplin.exe] => (Allow) C:\users\quart\appdata\local\programs\joplin\joplin.exe => Keine Datei
FirewallRules: [TCP Query User{11A2C3D8-6C1F-4670-9F8C-641D9D403388}C:\users\quart\appdata\local\programs\joplin\joplin.exe] => (Allow) C:\users\quart\appdata\local\programs\joplin\joplin.exe => Keine Datei
FirewallRules: [UDP Query User{88ED0DA6-BFE0-4743-9643-58625D5616FC}C:\users\quart\appdata\local\element-desktop\app-1.11.45\element.exe] => (Allow) C:\users\quart\appdata\local\element-desktop\app-1.11.45\element.exe => Keine Datei
FirewallRules: [TCP Query User{D05B4BA0-9B15-43D3-BB4B-9CCDFDB78176}C:\users\quart\appdata\local\element-desktop\app-1.11.45\element.exe] => (Allow) C:\users\quart\appdata\local\element-desktop\app-1.11.45\element.exe => Keine Datei
FirewallRules: [UDP Query User{9C8D944B-4322-4807-BC39-E41CA7CB3201}C:\program files\ibm\spss statistics\stats.exe] => (Allow) C:\program files\ibm\spss statistics\stats.exe (International Business Machines Corporation -> IBM Corp.)
FirewallRules: [TCP Query User{FD428D75-2E49-4AEE-BE69-D4CFA90AFFCE}C:\program files\ibm\spss statistics\stats.exe] => (Allow) C:\program files\ibm\spss statistics\stats.exe (International Business Machines Corporation -> IBM Corp.)
FirewallRules: [UDP Query User{056DB33B-403F-4BFA-8B11-6994A082234A}C:\users\quart\appdata\local\element-desktop\app-1.11.40\element.exe] => (Allow) C:\users\quart\appdata\local\element-desktop\app-1.11.40\element.exe => Keine Datei
FirewallRules: [TCP Query User{CCA9AD98-8E13-42BC-9895-0E0413099F95}C:\users\quart\appdata\local\element-desktop\app-1.11.40\element.exe] => (Allow) C:\users\quart\appdata\local\element-desktop\app-1.11.40\element.exe => Keine Datei
FirewallRules: [UDP Query User{63F3C559-0DA6-4292-BD8B-58D130ED44BE}C:\program files\hessenbox\hessenbox\jre\bin\javaw.exe] => (Allow) C:\program files\hessenbox\hessenbox\jre\bin\javaw.exe
FirewallRules: [TCP Query User{7CB7E73E-EFA5-4C7D-B975-1D6D50F5CA14}C:\program files\hessenbox\hessenbox\jre\bin\javaw.exe] => (Allow) C:\program files\hessenbox\hessenbox\jre\bin\javaw.exe
FirewallRules: [UDP Query User{8CA6AE7B-5169-46F8-BAB8-457E9BC95EA3}C:\users\quart\appdata\local\element-desktop\app-1.11.38\element.exe] => (Allow) C:\users\quart\appdata\local\element-desktop\app-1.11.38\element.exe => Keine Datei
FirewallRules: [TCP Query User{D95818E2-92A7-49C4-BE47-D90F6F579969}C:\users\quart\appdata\local\element-desktop\app-1.11.38\element.exe] => (Allow) C:\users\quart\appdata\local\element-desktop\app-1.11.38\element.exe => Keine Datei
FirewallRules: [UDP Query User{2183DEFE-3540-40C3-98B6-1CAF56A4E3D5}C:\users\quart\appdata\local\element-desktop\app-1.11.36\element.exe] => (Allow) C:\users\quart\appdata\local\element-desktop\app-1.11.36\element.exe => Keine Datei
FirewallRules: [TCP Query User{CC1C3586-F64A-4993-B86E-0FC01C1075AE}C:\users\quart\appdata\local\element-desktop\app-1.11.36\element.exe] => (Allow) C:\users\quart\appdata\local\element-desktop\app-1.11.36\element.exe => Keine Datei
FirewallRules: [UDP Query User{DBFD240D-3CB7-4970-AD71-FEAA5288CC27}C:\users\quart\appdata\local\element-desktop\app-1.11.35\element.exe] => (Allow) C:\users\quart\appdata\local\element-desktop\app-1.11.35\element.exe => Keine Datei
FirewallRules: [TCP Query User{1AEED522-94ED-4A3E-9393-BE3999616BCE}C:\users\quart\appdata\local\element-desktop\app-1.11.35\element.exe] => (Allow) C:\users\quart\appdata\local\element-desktop\app-1.11.35\element.exe => Keine Datei
FirewallRules: [UDP Query User{C460BBF7-3AD3-4E66-90B6-393652DFD2C2}C:\program files\hessenbox\hessenbox\jre\bin\javaw.exe] => (Allow) C:\program files\hessenbox\hessenbox\jre\bin\javaw.exe
FirewallRules: [TCP Query User{B6561C0E-6B04-4011-9D48-A60C7961CBC7}C:\program files\hessenbox\hessenbox\jre\bin\javaw.exe] => (Allow) C:\program files\hessenbox\hessenbox\jre\bin\javaw.exe
FirewallRules: [UDP Query User{DEBBAA96-A590-4658-A9F4-94EDD7D81C31}D:\spielen\epic games\gtav\gta5.exe] => (Allow) D:\spielen\epic games\gtav\gta5.exe => Keine Datei
FirewallRules: [TCP Query User{31773C8E-971C-4523-884B-3AB31EA22496}D:\spielen\epic games\gtav\gta5.exe] => (Allow) D:\spielen\epic games\gtav\gta5.exe => Keine Datei
FirewallRules: [UDP Query User{476B68E9-FDDF-4403-8E2B-D8BF68D91275}C:\program files\rstudio\resources\app\bin\rsession-utf8.exe] => (Allow) C:\program files\rstudio\resources\app\bin\rsession-utf8.exe (Posit Software, PBC) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{302EC729-0405-47FB-9FE3-33B2BB288D65}C:\program files\rstudio\resources\app\bin\rsession-utf8.exe] => (Allow) C:\program files\rstudio\resources\app\bin\rsession-utf8.exe (Posit Software, PBC) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{499DC8D2-1ABA-4496-BCB7-6C9A99884077}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{D1BA74DB-7FB1-4097-93EB-84713AE263A6}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{B2CAF9EA-569D-4562-9602-84BAC3CCC93A}D:\portable\portableapps\vlcportable\app\vlc\vlc.exe] => (Allow) D:\portable\portableapps\vlcportable\app\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{7FD71FFF-4A2D-4352-9E9A-06541CE45EFB}D:\portable\portableapps\vlcportable\app\vlc\vlc.exe] => (Allow) D:\portable\portableapps\vlcportable\app\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{10B28B01-509E-4FDA-B79D-B88AC6DFEBA3}D:\spielen\steamlibrary\steamapps\common\batman arkham knight\binaries\win64\batmanak.exe] => (Allow) D:\spielen\steamlibrary\steamapps\common\batman arkham knight\binaries\win64\batmanak.exe => Keine Datei
FirewallRules: [TCP Query User{D34709E5-B6D5-40E4-A8B5-F5087CA586EB}D:\spielen\steamlibrary\steamapps\common\batman arkham knight\binaries\win64\batmanak.exe] => (Allow) D:\spielen\steamlibrary\steamapps\common\batman arkham knight\binaries\win64\batmanak.exe => Keine Datei
FirewallRules: [UDP Query User{CC9D2CE7-92BA-4885-AB62-332B5B0928BE}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{B22AD465-04E4-4727-82E7-5AAD0ADACBE0}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{B84010B3-13B2-4754-806C-AF0BA82F9EBA}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{87486690-6EF5-4693-9C2B-A059547B71B1}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{5961C930-6EA5-41B8-968E-87DA47FB07D5}] => (Allow) D:\Spielen\SteamLibrary\steamapps\common\Path of Exile\PathOfExileSteam.exe => Keine Datei
FirewallRules: [{AF68A550-C693-4884-8419-74B3646B76BD}] => (Allow) D:\Spielen\SteamLibrary\steamapps\common\Path of Exile\PathOfExileSteam.exe => Keine Datei
FirewallRules: [{05E204EE-EF17-413B-88F3-673DA071AC99}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2E32D2F3-448C-4B2E-8A5A-435A3A6F89E7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A880BA50-1F8A-410B-9774-021F3F37CF21}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4F4ACBC5-DB94-4283-843A-D0CB3D43077A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6E32689C-AA7E-4E04-94A8-7788F3CE9FE0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5BC600FC-938D-4033-8C7A-98A89D5A7EBE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7ED29FF5-8A2A-4B3E-8D05-C47D4517CD86}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AA762F0E-10C6-40A3-9176-E9A592AE9F59}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{EBA15FB8-22D6-480B-B9A6-1DE0C6E0CA1C}] => (Allow) C:\Program Files (x86)\Acronis\Agent\aakore.exe => Keine Datei
FirewallRules: [{3EA11AC5-552A-478A-B049-AC46E8937773}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{91C7B446-A481-403C-BF20-3A52D6A28A6E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{858A54CB-A58D-4A36-AAE3-75728CE692DC}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{4E44B16B-CD7B-4891-97A6-AC810401072C}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25044.2208.3471.2155_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F91437CF-FD40-4B57-ACA0-CD3A366B6A42}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25044.2208.3471.2155_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6C9697C9-8EE2-4BEA-BEA4-2C9328D4D195}] => (Allow) C:\Program Files\AusweisApp2\AusweisApp.exe (Governikus GmbH & Co. KG -> Governikus GmbH & Co. KG)
FirewallRules: [AusweisApp-Firewall-Rule] => (Allow) C:\Program Files\AusweisApp2\AusweisApp.exe (Governikus GmbH & Co. KG -> Governikus GmbH & Co. KG)
FirewallRules: [TCP Query User{4FC2786A-001D-4FB6-8810-F2F803145CC8}C:\users\quart\appdata\local\programs\sider\sider.exe] => (Allow) C:\users\quart\appdata\local\programs\sider\sider.exe (Vidline Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{D8A67930-9962-46ED-BC13-D8C7306AB7A9}C:\users\quart\appdata\local\programs\sider\sider.exe] => (Allow) C:\users\quart\appdata\local\programs\sider\sider.exe (Vidline Inc.) [Datei ist nicht signiert]
FirewallRules: [{EA8A9965-8FDC-4F04-9F73-BBD610C0743C}] => (Block) C:\users\quart\appdata\local\programs\sider\sider.exe (Vidline Inc.) [Datei ist nicht signiert]
FirewallRules: [{1D13188A-3007-407A-8CE8-3055C43A450B}] => (Block) C:\users\quart\appdata\local\programs\sider\sider.exe (Vidline Inc.) [Datei ist nicht signiert]
FirewallRules: [FPS-SpoolWorker-In-TCP] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-V2] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-NoScope] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{CEC731D5-5604-4C87-94EB-1730A6C1CBAE}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\134.0.3124.93\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FCCA8CA3-E08E-40D8-A14E-4C1C2E8E356A}] => (Allow) C:\Program Files\Logi\LogiPluginService\LogiPluginService.exe (LoupeDeck Oy -> Logitech)
FirewallRules: [{7978B178-732B-444D-9FAE-98B76BA98ED3}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{742DB048-88DA-4630-B992-34307E9D40E7}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)

==================== Wiederherstellungspunkte =========================

04-04-2025 21:40:20 Windows Update
04-04-2025 21:40:25 Windows Update
04-04-2025 21:40:30 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: ========================

Applikationsfehler:
==================
Error: (04/05/2025 10:24:25 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: CORTEX)
Description: Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy-2147023878

Error: (04/05/2025 08:51:49 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren..

Error: (04/05/2025 08:51:49 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.]

Error: (04/05/2025 07:40:25 PM) (Source: Application Error) (EventID: 1000) (User: NT-AUTORITÄT)
Description: Fehlerhafter Anwendungsname: IntelAudioService.exe, Version: 1.0.1287.0, Zeitstempel: 0x5e679bbf
Fehlerhafter Modulname: KERNELBASE.dll, Version: 10.0.26100.3624, Zeitstempel: 0x1dd3fafe
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x00000000000c933a
Fehlerhafte Prozess-ID: 0x1bcc
Fehlerhafte Anwendungsstartzeit: 0x1dba651c7ed7cd2
Fehlerhafter Anwendungspfad: C:\WINDOWS\system32\cAVS\IAS\IntelAudioService.exe
Fehlerhafter Modulpfad: C:\WINDOWS\System32\KERNELBASE.dll
Berichts-ID: d9177a17-3b50-4c15-b2e5-032919be0de1
Vollständiger Name des fehlerhaften Pakets:
Fehlerhafte paketbezogene Anwendungs-ID:

Error: (04/05/2025 07:40:22 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IntelAudioService.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: Ausnahmecode e06d7363, Ausnahmeadresse 00007FFB71A0933A
Stapel:

Error: (04/05/2025 07:40:19 PM) (Source: Application Error) (EventID: 1000) (User: NT-AUTORITÄT)
Description: Fehlerhafter Anwendungsname: svchost.exe_Schedule, Version: 10.0.26100.1150, Zeitstempel: 0xfdace0d9
Fehlerhafter Modulname: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00007df4cbb8001a
Fehlerhafte Prozess-ID: 0xbe8
Fehlerhafte Anwendungsstartzeit: 0x1dba651c6c8ebf1
Fehlerhafter Anwendungspfad: C:\WINDOWS\system32\svchost.exe
Fehlerhafter Modulpfad: unknown
Berichts-ID: 20a43d85-3f29-48a0-8c6b-58e8b894babf
Vollständiger Name des fehlerhaften Pakets:
Fehlerhafte paketbezogene Anwendungs-ID:

Error: (04/05/2025 01:51:24 PM) (Source: Application Error) (EventID: 1000) (User: CORTEX)
Description: Fehlerhafter Anwendungsname: ctfmon.exe, Version: 10.0.26100.3624, Zeitstempel: 0x77f7a38d
Fehlerhafter Modulname: InputService.dll, Version: 10.0.26100.3624, Zeitstempel: 0xb68ee5bf
Ausnahmecode: 0x00000675
Fehleroffset: 0x0000000000065f92
Fehlerhafte Prozess-ID: 0x314c
Fehlerhafte Anwendungsstartzeit: 0x1dba47d21201920
Fehlerhafter Anwendungspfad: C:\WINDOWS\system32\ctfmon.exe
Fehlerhafter Modulpfad: C:\WINDOWS\system32\InputService.dll
Berichts-ID: a5fe22d9-f687-490a-90a0-9110bc4189b3
Vollständiger Name des fehlerhaften Pakets:
Fehlerhafte paketbezogene Anwendungs-ID:

Error: (04/04/2025 08:08:04 PM) (Source: Application Hang) (EventID: 1002) (User: NT-AUTORITÄT)
Description: Das Programm SOTTR.exe Version 1.0.492.0 hat aufgehört mit Windows zu interagieren und wurde geschlossen. Weitere Informationen zum Problem finden Sie im Problemverlauf in der Systemsteuerung „Sicherheit und Wartung“.


Systemfehler:
=============
Error: (04/06/2025 03:02:01 AM) (Source: DCOM) (EventID: 10010) (User: CORTEX)
Description: Der Server "{B8C1DCAE-5020-4F5D-BA2A-85292744E334}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (04/06/2025 02:33:46 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (04/06/2025 02:31:46 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (04/06/2025 02:29:22 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (04/06/2025 01:20:56 AM) (Source: HTTP) (EventID: 15005) (User: )
Description: Der zugrunde liegende Transport für [::]:50131 kann nicht gebunden werden. Möglicherweise enthält die Liste nur zum Abhören von IP einen Verweis auf eine Schnittstelle, die gegebenenfalls auf diesem Computer nicht vorhanden ist. Das Datenfeld enthält die Fehlernummer.

Error: (04/06/2025 01:20:11 AM) (Source: DCOM) (EventID: 10010) (User: CORTEX)
Description: Der Server "Microsoft.Windows.ContentDeliveryManager_10.0.26100.1_neutral_neutral_cw5n1h2txyewy!App.AppXw3qcpc7p849541dp39vvqd01bn7z9ybh.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (04/06/2025 01:20:06 AM) (Source: DCOM) (EventID: 10010) (User: CORTEX)
Description: Der Server "{1F18FC75-A353-4121-AEDB-19DF9C98F622}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (04/06/2025 01:20:06 AM) (Source: DCOM) (EventID: 10010) (User: CORTEX)
Description: Der Server "{B8C1DCAE-5020-4F5D-BA2A-85292744E334}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.


Windows Defender:
================
Date: 2025-04-05 04:39:53
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2025-04-04 04:39:46
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2025-04-03 12:03:29
Description:
D:\Portable\PortableApps\TreeSizeFreePortable\App\TreeSizeFree\TreeSizeFree.exe has been blocked from modifying %userprofile%\OneDrive\Bilder\ by Controlled Folder Access.
Detection time: 2025-04-03T10:03:29.410Z
Path: %userprofile%\OneDrive\Bilder\
Process Name: D:\Portable\PortableApps\TreeSizeFreePortable\App\TreeSizeFree\TreeSizeFree.exe
Security intelligence Version: 1.427.31.0
Engine Version: 1.1.25030.1
Product Version: 4.18.25030.2
 

Date: 2025-04-02 10:59:25
Description:
C:\Program Files\Mozilla Firefox\firefox.exe has been blocked from modifying %userprofile%\Documents by Controlled Folder Access.
Detection time: 2025-04-02T08:59:25.972Z
Path: %userprofile%\Documents
Process Name: C:\Program Files\Mozilla Firefox\firefox.exe
Security intelligence Version: 1.427.11.0
Engine Version: 1.1.25030.1
Product Version: 4.18.25030.2
 

Date: 2025-04-02 04:11:34
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

CodeIntegrity:
===============
Date: 2025-03-11 14:01:19
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Users\quart\AppData\Local\Programs\signal-desktop\Signal.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Microsoft signing level requirements.


==================== Speicherinformationen ===========================

BIOS: LENOVO DNCN32WW 09/15/2022
Hauptplatine: LENOVO LNVNB161216
Prozessor: Intel(R) Core(TM) i7-10750H CPU @ 2.60GHz
Prozentuale Nutzung des RAM: 72%
Installierter physikalischer RAM: 16185.68 MB
Verfügbarer physikalischer RAM: 4460.64 MB
Summe virtueller Speicher: 31033.68 MB
Verfügbarer virtueller Speicher: 14995 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:243.5 GB) (Free:14.74 GB) (Model: SAMSUNG MZVLB1T0HBLR-000L2) (Protected) NTFS
Drive d: (Data) (Fixed) (Total:708.01 GB) (Free:360.56 GB) (Model: SAMSUNG MZVLB1T0HBLR-000L2) (Protected) NTFS
Drive e: (ESD-USB) (Removable) (Total:29.47 GB) (Free:24.87 GB) FAT32
Drive g: (Google Drive) (Fixed) (Total:100 GB) (Free:40.98 GB) (Model: SAMSUNG MZVLB1T0HBLR-000L2) FAT32

\\?\Volume{ea06a944-ebba-4be7-ab91-39040a6e3774}\ () (Fixed) (Total:1.11 GB) (Free:0.11 GB) NTFS
\\?\Volume{c798bc9c-9ec7-4e0b-83cf-067bbcd19281}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.48 GB) NTFS
\\?\Volume{d92cb465-20c5-4dbe-9747-fe57d3cf260e}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.2 GB) FAT32

==================== MBR & Partitionstabelle ====================

==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: 30492438)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 29.5 GB) (Disk ID: 7CA2D547)
Partition 1: (Active) - (Size=29.5 GB) - (Type=FAT32)

==================== Ende von Addition.txt =======================
--- --- ---

cosinus 06.04.2025 14:34
Der Rechner sieht planlos ztugemüllt aus. Was sind das da alles für Programme? Installierst du alles was du irgendwo im Internet findest?

Zitat:
2025-04-05 10:39 - 2025-04-05 10:39 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
Malwarebytes hast du auch bereits gestern schon benutzt aber kein Wort drüber verloren. Poste alle davon vorhandenen Logfiles.


Alle Zeitangaben in WEZ +1. Es ist jetzt 00:45 Uhr.
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131