Trojaner-Board
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   DNSBlock + Trojan.Agent.WSB (https://www.trojaner-board.de/180847-dnsblock-trojan-agent-wsb.html)

troianjoerg 03.08.2016 10:50
DNSBlock + Trojan.Agent.WSB
 
Hallo zusammen,

ich bin eben in meinem Windows Tray über den "DNSBlock Tray" gestolpert.

Malwarebytes Anti Malware runtergeladen... Scan durchgeführt.

Nebst dem DNSBlock-Mist fand sich auch ein "Trojan.Agent.WSB".

Habe es von Malwarebytes entfernen lassen, bei erneutem Scan in Malwarebytes bekomme ich nichts mehr angezeigt, das Icon von "DNSBlock Tray" ist aber immer noch an Ort und Stelle.

Habe auch einmal mit FRST gescannt... s. Logs

TDSS Killer ausgeführt, der findet nichts.

Ratschläge?

Lieben Gruß
Jörg

Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-08-2016
Ran by user (administrator) on TECHNIK-WIRTZ (03-08-2016 11:10:15)
Running from C:\Users\user\Downloads
Loaded Profiles: user &  (Available Profiles: user & adminuser)
Platform: Windows 10 Home Version 1511 (X64) Language: Englisch (Vereinigte Staaten)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\MDM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Xerox Corporation) C:\Program Files\Xerox\XeroxPrintExperience\CommonFiles\XeroxPrintJobEventManagerService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(EfficientLab, LLC.) C:\Program Files (x86)\Dell\Client\wecdt.exe
(EfficientLab, LLC.) C:\Program Files (x86)\Dell\Client\wecmsg.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(EfficientLab, LLC.) C:\Program Files (x86)\Dell\Client\wemon.exe
() C:\Program Files (x86)\Dell\Client\weprtct.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(SuperOffice AS) C:\Users\user\AppData\Local\SuperOffice\SuperOffice 7 Web Extensions\SuperOffice.TrayApp.Client.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
() C:\Program Files (x86)\DnsBlock\DnsBlockTray.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files (x86)\Lexware\Update Manager\LxUpdateManager.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_1.10.22012.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssist\uaclauncher.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\MusNotification.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760 2015-08-04] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2015-08-04] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2460488 2014-09-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DnsBlock] => C:\Program Files (x86)\DnsBlock\DnsBlockTray.exe [788000 2015-08-13] ()
HKLM-x32\...\Run: [LexwareInfoService] => C:\Program Files (x86)\Lexware\Update Manager\LxUpdateManager.exe [202280 2015-09-29] (Haufe-Lexware GmbH & Co. KG)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-3427957863-554338918-1319331597-1002\...\Run: [Anmelde-Mail] => c:\temp\anwesenheitsmail.exe [7680 2015-08-11] (Microsoft) <===== ATTENTION
HKU\S-1-5-21-3427957863-554338918-1319331597-1002\...\Run: [Google Update] => C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe [152216 2016-05-11] (Google Inc.)
HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Anmelde-Mail] => c:\temp\anwesenheitsmail.exe [7680 2015-08-11] (Microsoft) <===== ATTENTION
HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Google Update] => C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe [152216 2016-05-11] (Google Inc.)
HKU\S-1-5-21-3427957863-554338918-1319331597-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll [2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll [2015-10-30] (Microsoft Corporation)
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SuperOffice CRM.Web Extensions.lnk [2014-10-06]
ShortcutTarget: SuperOffice CRM.Web Extensions.lnk -> C:\Users\user\AppData\Local\SuperOffice\SuperOffice 7 Web Extensions\SuperOffice.TrayApp.Client.exe (SuperOffice AS)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <======= ATTENTION (Restriction - ProxySettings)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3f6e584f-9946-47cd-8e77-49cbf087401d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{826fe09a-4377-424f-b6ae-dc063eecd9ea}: [NameServer] 195.50.140.114,195.50.140.252
Tcpip\..\Interfaces\{826fe09a-4377-424f-b6ae-dc063eecd9ea}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3427957863-554338918-1319331597-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/?hl=de&gl=de
HKU\S-1-5-21-3427957863-554338918-1319331597-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/?hl=de&gl=de
HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
HKU\S-1-5-21-3427957863-554338918-1319331597-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell13.msn.com/?pc=DCJB
HKU\S-1-5-21-3427957863-554338918-1319331597-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
SearchScopes: HKLM -> DefaultScope {BD99E9B4-B162-41E8-ABB1-9C2E45C05939} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKLM -> {BD99E9B4-B162-41E8-ABB1-9C2E45C05939} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-3427957863-554338918-1319331597-1002 -> DefaultScope {E23558D4-F1F3-4FDA-8193-955BF8B06A2D} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-3427957863-554338918-1319331597-1002 -> {BD99E9B4-B162-41E8-ABB1-9C2E45C05939} URL =
SearchScopes: HKU\S-1-5-21-3427957863-554338918-1319331597-1002 -> {E23558D4-F1F3-4FDA-8193-955BF8B06A2D} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {E23558D4-F1F3-4FDA-8193-955BF8B06A2D} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {BD99E9B4-B162-41E8-ABB1-9C2E45C05939} URL =
SearchScopes: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {E23558D4-F1F3-4FDA-8193-955BF8B06A2D} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll [2013-07-31] (Qualcomm®Atheros®)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-3427957863-554338918-1319331597-1002 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
Toolbar: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-04-20] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-04-20] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-04-20] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-04-20] (McAfee, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\0h4y6p2j.default
FF DefaultSearchEngine: google
FF DefaultSearchUrl: hxxp://www.google.de/search?hl=de&gl=de&lr=&ie=utf-8&oe=utf-8&meta=lr=lang_de&q=
FF SelectedSearchEngine: google
FF Homepage: hxxp://www.google.de?hl=de&gl=de
FF Keyword.URL: hxxp://www.google.de/search?hl=de&gl=de&lr=&ie=utf-8&oe=utf-8&meta=lr=lang_de&q=
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll [2014-05-15] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-20] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-13] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Air\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002: @talk.google.com/GoogleTalkPlugin -> C:\Users\user\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002: @talk.google.com/O1DPlugin -> C:\Users\user\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002: @tools.google.com/Google Update;version=3 -> C:\Users\user\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002: @tools.google.com/Google Update;version=9 -> C:\Users\user\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002: LWAPlugin15.8 -> C:\Users\user\AppData\Roaming\Mozilla\Plugins\npLWAPlugin15.8.dll [2013-03-13] (Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002: www.superoffice.com/SuperOfficeWebToolsPlugin -> C:\Users\user\AppData\Local\SuperOffice\SuperOffice 7 Web Tools Plugin\npSuperOfficeWebToolsPlugin.dll [2014-08-25] (SuperOffice)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @talk.google.com/GoogleTalkPlugin -> C:\Users\user\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @talk.google.com/O1DPlugin -> C:\Users\user\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @tools.google.com/Google Update;version=3 -> C:\Users\user\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @tools.google.com/Google Update;version=9 -> C:\Users\user\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: LWAPlugin15.8 -> C:\Users\user\AppData\Roaming\Mozilla\Plugins\npLWAPlugin15.8.dll [2013-03-13] (Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: www.superoffice.com/SuperOfficeWebToolsPlugin -> C:\Users\user\AppData\Local\SuperOffice\SuperOffice 7 Web Tools Plugin\npSuperOfficeWebToolsPlugin.dll [2014-08-25] (SuperOffice)
FF user.js: detected! => C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\0h4y6p2j.default\user.js [2016-08-03]
FF Plugin ProgramFiles/Appdata: C:\Users\user\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\user\AppData\Roaming\mozilla\plugins\npLWAPlugin15.8.dll [2013-03-13] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\user\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF SearchPlugin: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\0h4y6p2j.default\searchplugins\McSiteAdvisor.xml [2016-02-02]
FF Extension: No Name - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [not found]
FF Extension: No Name - C:\Windows\Installer\{65ACC232-FCC4-4FF2-A366-5CE4AF03AEC5}\{D62573F9-6DAB-4655-81C7-6A63F1680518}.xpi [not found]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook
FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2014-10-08] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi => not found

Chrome:
=======
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google Search) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (SiteAdvisor) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2015-07-07]
CHR Extension: (Google Docs Offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-07]
CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-03]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-05-28]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-05-28]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2016-07-27] (Microsoft Corporation)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-03-11] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-03-11] (Dell Inc.)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2014-05-15] (Macrovision Europe Ltd.) [File not signed]
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2013-08-22] (Microsoft Corporation) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-02-01] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-02-20] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-02-20] (Intel Corporation)
S2 Lexware_Update_Service; C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe [66088 2016-03-03] (Haufe-Lexware GmbH & Co. KG)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [163592 2016-04-20] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19439944 2014-09-17] (NVIDIA Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [312056 2015-08-04] (Realtek Semiconductor)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31928 2016-04-22] (Dell Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5611280 2015-08-07] (TeamViewer GmbH)
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-04] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
U2 weClientDataTransferService; C:\Program Files (x86)\Dell\Client\wecdt.exe [1513928 2014-08-22] (EfficientLab, LLC.)
U2 weClientMessengerService; C:\Program Files (x86)\Dell\Client\wecmsg.exe [1669576 2014-08-22] (EfficientLab, LLC.)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
R2 XeroxPrintJobEventManagerService; C:\Program Files\Xerox\XeroxPrintExperience\CommonFiles\XeroxPrintJobEventManagerService.exe [238920 2013-12-02] (Xerox Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4318760 2015-08-13] (Qualcomm Atheros Communications, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [23760 2015-01-31] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2015-05-22] (Dell Computer Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-08-03] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [116736 2014-02-20] (Intel Corporation)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [45728 2016-03-15] (McAfee, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [410848 2015-08-13] (Realsil Semiconductor Corporation)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [216064 2015-10-30] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R3 XtuAcpiDriver; C:\Windows\System32\drivers\XtuAcpiDriver.sys [63840 2015-06-06] (Intel Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-03 11:10 - 2016-08-03 11:11 - 00029880 _____ C:\Users\user\Downloads\FRST.txt
2016-08-03 11:10 - 2016-08-03 11:10 - 00000000 ____D C:\FRST
2016-08-03 11:09 - 2016-08-03 11:10 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\user\Downloads\tdsskiller.exe
2016-08-03 11:09 - 2016-08-03 11:10 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\user\Downloads\tdsskiller (1).exe
2016-08-03 11:09 - 2016-08-03 11:10 - 02393600 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2016-08-03 09:36 - 2016-08-03 10:17 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-08-03 09:36 - 2016-08-03 09:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-08-03 09:36 - 2016-08-03 09:36 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-03 09:36 - 2016-08-03 09:36 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-08-03 09:36 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-08-03 09:36 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-08-03 09:36 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-08-03 09:33 - 2016-08-03 09:36 - 22851472 _____ (Malwarebytes ) C:\Users\user\Downloads\mbam-setup-2.2.1.1043.exe
2016-08-03 09:00 - 2016-08-03 10:23 - 00000000 ____D C:\Users\user\AppData\Local\Deployment
2016-08-03 08:48 - 2016-08-03 09:08 - 00000000 ____D C:\Users\user\AppData\Local\MicrosoftEdge
2016-08-03 08:47 - 2016-08-03 10:08 - 00000000 ____D C:\Program Files\{84A13FAB-F340-44D2-8D84-FBDD00D3D7EF}
2016-08-03 08:47 - 2016-08-03 10:08 - 00000000 ____D C:\Program Files (x86)\{128A2B84-C68C-4F5C-9EE4-A8CB0E412E4D}
2016-07-27 02:59 - 2016-07-26 17:46 - 00000000 ___DC C:\WINDOWS\Panther
2016-07-27 02:56 - 2016-07-26 17:16 - 00000000 ____D C:\Windows.old
2016-07-27 02:55 - 2016-07-27 02:55 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 13383168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 12586496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 08705672 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 07533568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 06952088 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 06740992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 06605504 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 05502976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 05324288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 04894208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 04827136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 04775424 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 03673424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 03591168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 03575296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 03078144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02919832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02912256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02773096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-07-27 02:55 - 2016-07-27 02:55 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-07-27 02:55 - 2016-07-27 02:55 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02722816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02606824 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02598912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02587696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02403680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02229760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02152280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-07-27 02:55 - 2016-07-27 02:55 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02057216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-07-27 02:55 - 2016-07-27 02:55 - 02026736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01997328 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 01996288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 01824264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01804664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01750440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 01731072 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01613664 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01594920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01542656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01444352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01415200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 01372304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01322248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-07-27 02:55 - 2016-07-27 02:55 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01297752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01270072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01174008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01161120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01152864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 01152328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-07-27 02:55 - 2016-07-27 02:55 - 01017032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 01009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 00997376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-07-27 02:55 - 2016-07-27 02:55 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00882720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00874968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00858952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00848168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00820704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00808800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00786696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 00785088 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00779384 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00770640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00713920 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00713824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00709688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00707608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00701384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00696672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00695752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00686976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00671472 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00652312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00650304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00644096 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00640472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00619296 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00613888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00605440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00577368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00563552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00558592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00541304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00538736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00536256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00535080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00534872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-07-27 02:55 - 2016-07-27 02:55 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-07-27 02:55 - 2016-07-27 02:55 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00513368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00499432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00493568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00476728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00453472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00440152 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00431240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00430944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00420928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00408120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00405568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-07-27 02:55 - 2016-07-27 02:55 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00390496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00378208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-07-27 02:55 - 2016-07-27 02:55 - 00376536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00330072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-07-27 02:55 - 2016-07-27 02:55 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00294592 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00291360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00287712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00260608 _____ C:\WINDOWS\system32\MTFServer.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00258280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassam.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00245840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00235008 _____ C:\WINDOWS\system32\MTF.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-07-27 02:55 - 2016-07-27 02:55 - 00234504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00220064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00217440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00208176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00204048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassam.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00202472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cemapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimCfg.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00190144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe

troianjoerg 03.08.2016 10:51
Code:
2016-07-27 02:55 - 2016-07-27 02:55 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00188256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00185184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00183904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityCommon.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00162816 _____ C:\WINDOWS\SysWOW64\MTF.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimAuth.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimCfg.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2016-07-27 02:55 - 2016-07-27 02:55 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00147808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00146272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00141664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00141560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbio.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimAuth.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00127840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-07-27 02:55 - 2016-07-27 02:55 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2016-07-27 02:55 - 2016-07-27 02:55 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityCommon.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00119320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00100160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-07-27 02:55 - 2016-07-27 02:55 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttpcom.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdport.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbio.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00085320 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-07-27 02:55 - 2016-07-27 02:55 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00081144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00081112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttpcom.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00073872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00069744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00058400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00058208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwminit.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PimIndexMaintenanceClient.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ztrace_maps.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usermgrcli.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TimeBrokerClient.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ztrace_maps.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsdchngr.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsdchngr.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-07-27 02:55 - 2016-07-27 02:55 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\irmon.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasautou.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasautou.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasadhlp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscoreext.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasadhlp.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00002186 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2016-07-27 02:55 - 2016-07-27 02:55 - 00002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2016-07-27 02:51 - 2015-10-30 05:43 - 06225920 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0027.dll
2016-07-27 02:51 - 2015-10-30 05:41 - 06225920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0027.dll
2016-07-27 02:51 - 2015-10-30 05:38 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0027.dll
2016-07-27 02:51 - 2015-10-30 05:36 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0027.dll
2016-07-27 02:51 - 2015-10-30 05:29 - 01909760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MLS2.dll
2016-07-27 02:51 - 2015-10-30 05:27 - 01870848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MLS2.dll
2016-07-27 02:50 - 2016-08-03 08:51 - 00809774 _____ C:\WINDOWS\system32\perfh007.dat
2016-07-27 02:50 - 2016-08-03 08:51 - 00170634 _____ C:\WINDOWS\system32\perfc007.dat
2016-07-27 02:50 - 2016-07-27 02:49 - 00305634 _____ C:\WINDOWS\system32\perfi007.dat
2016-07-27 02:50 - 2016-07-27 02:49 - 00040390 _____ C:\WINDOWS\system32\perfd007.dat
2016-07-27 02:50 - 2015-10-30 05:43 - 12039680 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0007.dll
2016-07-27 02:50 - 2015-10-30 05:43 - 11602944 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0007.dll
2016-07-27 02:50 - 2015-10-30 05:41 - 12039680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0007.dll
2016-07-27 02:50 - 2015-10-30 05:28 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0007.dll
2016-07-27 02:50 - 2015-10-30 05:26 - 01996800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0007.dll
2016-07-27 02:49 - 2016-07-27 02:49 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-07-27 02:49 - 2016-07-27 02:49 - 00000000 ____D C:\WINDOWS\SysWOW64\de
2016-07-27 02:49 - 2016-07-27 02:49 - 00000000 ____D C:\WINDOWS\system32\de
2016-07-27 02:44 - 2016-07-27 02:44 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-07-27 02:37 - 2016-07-27 02:37 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-07-27 02:37 - 2016-07-27 02:37 - 00304752 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-07-27 02:37 - 2016-07-27 02:37 - 00000000 ____D C:\Program Files\Windows Identity Foundation
2016-07-27 02:37 - 2016-07-27 02:37 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-07-27 02:37 - 2016-07-27 02:37 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-07-27 02:37 - 2016-07-26 17:27 - 00000000 ____D C:\Program Files\MSBuild
2016-07-27 02:37 - 2016-07-26 17:16 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-07-27 02:37 - 2015-10-24 03:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-07-27 02:37 - 2015-10-24 03:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-07-27 02:37 - 2015-10-24 03:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-07-27 02:37 - 2015-10-24 03:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-07-27 02:37 - 2015-10-24 03:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-07-27 02:37 - 2015-10-24 03:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-07-26 17:52 - 2016-07-26 17:52 - 00002427 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-07-26 17:52 - 2016-07-26 17:52 - 00000000 ___RD C:\Users\user\OneDrive
2016-07-26 17:50 - 2016-07-26 17:50 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-07-26 17:49 - 2016-07-26 17:49 - 00000000 ____D C:\Users\user\AppData\Local\ActiveSync
2016-07-26 17:48 - 2016-07-26 17:48 - 00000000 ____D C:\Users\user\AppData\Local\Publishers
2016-07-26 17:48 - 2016-07-26 17:48 - 00000000 ____D C:\Users\user\AppData\Local\NetworkTiles
2016-07-26 17:47 - 2016-07-26 17:48 - 00000000 ____D C:\Users\user\AppData\Local\Comms
2016-07-26 17:46 - 2016-07-26 17:46 - 00000020 ___SH C:\Users\user\ntuser.ini
2016-07-26 17:46 - 2016-07-26 17:46 - 00000000 ____D C:\Users\user\AppData\Local\TileDataLayer
2016-07-26 17:46 - 2016-07-26 17:46 - 00000000 ____D C:\ProgramData\USOShared
2016-07-26 17:45 - 2016-07-26 17:45 - 00000000 _SHDL C:\Users\Default\My Documents
2016-07-26 17:40 - 2016-08-03 10:10 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-07-26 17:40 - 2016-07-26 17:40 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-07-26 17:30 - 2016-07-26 17:30 - 00000000 ____D C:\Program Files\{05C93C7C-FA08-477B-B8E6-6F6189F68812}
2016-07-26 17:30 - 2016-07-26 17:30 - 00000000 ____D C:\Program Files (x86)\{C08E8B5D-04A1-4F71-8396-9B44AD4446B6}
2016-07-26 17:25 - 2016-07-26 17:25 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2016-07-26 17:25 - 2016-07-26 17:25 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-07-26 17:25 - 2016-07-26 17:25 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2016-07-26 17:25 - 2016-07-26 17:25 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-07-26 17:24 - 2016-07-26 17:24 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-07-26 17:12 - 2016-07-26 17:12 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-07-26 17:09 - 2016-07-26 17:32 - 00000000 ____D C:\Users\adminuser
2016-07-26 17:09 - 2016-07-26 17:09 - 00000000 _SHDL C:\Users\user\My Documents
2016-07-26 17:09 - 2016-07-26 17:09 - 00000000 _SHDL C:\Users\adminuser\My Documents
2016-07-26 17:07 - 2016-08-03 08:51 - 01946824 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-26 17:07 - 2016-07-26 17:31 - 01969310 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-07-26 17:05 - 2016-08-03 10:10 - 00000000 ____D C:\ProgramData\NVIDIA
2016-07-26 17:05 - 2016-07-26 17:05 - 00463760 _____ C:\WINDOWS\system32\Drivers\rtwavesmapro.dat
2016-07-26 17:05 - 2016-07-26 17:05 - 00019501 _____ C:\WINDOWS\system32\Drivers\rtwavesmaprocap.dat
2016-07-26 17:05 - 2016-07-26 17:05 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf
2016-07-26 17:05 - 2016-07-26 17:05 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-07-26 17:05 - 2016-07-26 17:05 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-07-26 17:05 - 2016-07-26 17:05 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2016-07-26 17:05 - 2016-07-26 17:05 - 00000000 ____D C:\Program Files\Realtek
2016-07-26 17:05 - 2015-08-07 02:24 - 06873904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-07-26 17:05 - 2015-08-07 02:24 - 03492984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-07-26 17:05 - 2015-08-07 02:24 - 02558768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-07-26 17:05 - 2015-08-07 02:24 - 01059960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-07-26 17:05 - 2015-08-07 02:24 - 00937592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-07-26 17:05 - 2015-08-07 02:24 - 00385328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-07-26 17:05 - 2015-08-07 02:24 - 00075056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-07-26 17:05 - 2015-08-07 02:24 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-07-26 17:05 - 2015-08-03 12:04 - 05133709 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-07-26 17:04 - 2016-07-26 17:16 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-07-26 17:04 - 2016-07-26 17:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-07-26 17:04 - 2016-07-26 17:16 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-07-26 17:04 - 2016-07-26 17:04 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-07-26 17:04 - 2016-07-26 17:04 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2016-07-26 17:04 - 2016-07-26 17:04 - 00000000 ____D C:\Program Files\Common Files\Atheros
2016-07-26 17:03 - 2015-10-30 09:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-07-26 17:00 - 2016-08-03 10:10 - 04929088 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-07-26 16:26 - 2016-07-26 17:45 - 00013338 _____ C:\WINDOWS\diagwrn.xml
2016-07-26 16:26 - 2016-07-26 17:45 - 00013338 _____ C:\WINDOWS\diagerr.xml
2016-07-26 16:25 - 2016-07-26 16:25 - 00000000 ____D C:\Program Files\{99AC82EB-DCEA-4A38-83FC-6C168E45C78A}
2016-07-26 16:25 - 2016-07-26 16:25 - 00000000 ____D C:\Program Files (x86)\{6A107CDB-11AB-470E-8A43-B866F37CAB22}
2016-07-26 15:30 - 2016-07-26 15:32 - 13915648 _____ C:\Users\user\Downloads\Selection (8).xls
2016-07-26 15:23 - 2016-07-26 15:25 - 15689216 _____ C:\Users\user\Downloads\Selection (7).xls
2016-07-26 15:02 - 2016-07-26 15:13 - 10127360 _____ C:\Users\user\Downloads\Selection (6).xls
2016-07-26 14:51 - 2016-07-26 14:52 - 09277952 _____ C:\Users\user\Downloads\Selection (5).xls
2016-07-26 14:37 - 2016-07-26 14:37 - 07911424 _____ C:\Users\user\Downloads\Selection (4).xls
2016-07-26 14:30 - 2016-07-26 14:33 - 03679232 _____ C:\Users\user\Downloads\Selection (3).xls
2016-07-26 14:22 - 2016-07-26 14:27 - 00668160 _____ C:\Users\user\Downloads\Selection (2).xls
2016-07-26 08:30 - 2016-07-26 17:12 - 00000000 ___RD C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2016-07-25 09:41 - 2016-08-03 09:41 - 00003560 _____ C:\WINDOWS\System32\Tasks\PCDEventLauncherTask
2016-07-25 09:41 - 2016-07-26 17:40 - 00003660 _____ C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask
2016-07-25 09:41 - 2016-07-26 17:40 - 00002968 _____ C:\WINDOWS\System32\Tasks\PCDDataUploadTask
2016-07-25 09:41 - 2016-07-26 17:40 - 00002848 _____ C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
2016-07-25 09:41 - 2016-07-25 09:41 - 00000000 ____D C:\ProgramData\PC-Doctor for Windows
2016-07-25 09:41 - 2016-07-25 09:41 - 00000000 ____D C:\Program Files\Dell Support Center
2016-07-13 11:22 - 2016-07-25 09:04 - 00000000 ____D C:\Users\user\Desktop\kontingente juni 2016
2016-07-13 09:07 - 2016-06-22 15:48 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2016-07-12 11:48 - 2016-07-12 15:53 - 00000000 ____D C:\Users\user\Desktop\christian
2016-07-12 09:45 - 2016-07-12 09:45 - 05528102 _____ C:\Users\user\Downloads\iStock_000085956153_Illustration.zip
2016-07-07 18:23 - 2016-07-07 18:23 - 00000000 ____D C:\Program Files\{D9C2FFC3-05A3-4941-836A-E48151327E55}
2016-07-07 18:23 - 2016-07-07 18:23 - 00000000 ____D C:\Program Files (x86)\{B4FB8F49-FE29-40D9-84EE-2C679B233228}
2016-07-06 15:44 - 2016-07-06 15:44 - 00000053 _____ C:\Users\user\Downloads\googlec45470179b18f55f.html
2016-07-06 15:24 - 2016-07-06 15:25 - 15703040 _____ C:\Users\user\Downloads\Selection (1).xls
2016-07-06 15:14 - 2016-07-06 15:14 - 00081801 _____ C:\Users\user\Downloads\Analytics www.it-treff.de Alle Zugriffe 20160601-20160630.pdf
2016-07-06 15:14 - 2016-07-06 15:14 - 00080985 _____ C:\Users\user\Downloads\Analytics www.dv-treff.de Alle Zugriffe 20160601-20160630.pdf
2016-07-06 13:04 - 2016-07-06 13:07 - 13936128 _____ C:\Users\user\Downloads\Selection.xls
2016-07-05 13:22 - 2016-07-05 13:33 - 05116416 _____ C:\Users\user\Downloads\lopez.xls
2016-07-05 13:17 - 2016-07-05 13:32 - 08286720 _____ C:\Users\user\Downloads\jahn.xls
2016-07-05 13:10 - 2016-07-05 13:10 - 00108171 _____ C:\Users\user\Downloads\Analytics www.dv-treff.de Zielgruppenübersicht 20160604-20160704.pdf
2016-07-05 10:12 - 2016-07-05 10:28 - 19704259 _____ C:\Users\user\Downloads\alleds.xlsx
2016-07-04 15:26 - 2016-07-05 13:22 - 05425152 _____ C:\Users\user\Downloads\Selection (16).xls

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-03 11:00 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-03 10:58 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-03 10:52 - 2014-05-15 20:30 - 00000000 ____D C:\Users\user\AppData\Local\Packages
2016-08-03 10:45 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-03 10:14 - 2015-08-13 13:25 - 00000258 __RSH C:\ProgramData\ntuser.pol
2016-08-03 10:12 - 2014-05-15 23:07 - 00001142 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-03 10:10 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\L2Schemas
2016-08-03 10:09 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-08-03 10:08 - 2015-08-13 13:23 - 00000000 ____D C:\Program Files (x86)\DnsBlock
2016-08-03 09:41 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-08-03 09:37 - 2016-06-30 15:15 - 00004258 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3427957863-554338918-1319331597-1002UA
2016-08-03 09:37 - 2016-06-30 15:15 - 00003882 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3427957863-554338918-1319331597-1002Core
2016-08-03 09:37 - 2016-06-30 15:15 - 00001144 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3427957863-554338918-1319331597-1002UA.job
2016-08-03 09:37 - 2016-06-30 15:15 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3427957863-554338918-1319331597-1002Core.job
2016-08-03 09:16 - 2014-05-15 23:07 - 00004204 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-08-03 09:16 - 2014-05-15 23:07 - 00003972 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-08-03 09:16 - 2014-05-15 23:07 - 00001146 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-03 09:14 - 2014-05-15 23:05 - 00004164 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{04D2F409-3F97-4851-AFDF-3D826FA99C45}
2016-08-03 08:59 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-08-03 08:50 - 2014-05-07 07:10 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-07-27 21:25 - 2015-07-07 08:58 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-27 02:59 - 2015-10-30 09:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-07-27 02:56 - 2015-10-30 11:07 - 00000000 ____D C:\Program Files\Windows Journal
2016-07-27 02:56 - 2015-10-30 09:24 - 00000000 __RSD C:\WINDOWS\Media
2016-07-27 02:56 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-07-27 02:56 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-07-27 02:56 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-07-27 02:56 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-07-27 02:56 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-07-27 02:56 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-07-27 02:56 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-07-27 02:56 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-07-27 02:56 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-07-27 02:56 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-07-27 02:56 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-07-27 02:56 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-07-27 02:56 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-07-27 02:55 - 2015-10-30 09:24 - 00015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-07-27 02:50 - 2015-10-30 11:03 - 00000000 ____D C:\WINDOWS\OCR
2016-07-27 02:49 - 2015-10-30 11:02 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-07-27 02:49 - 2015-10-30 11:02 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-07-27 02:49 - 2015-10-30 11:02 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-07-27 02:49 - 2015-10-30 11:02 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-07-27 02:49 - 2015-10-30 11:02 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-07-27 02:49 - 2015-10-30 11:02 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-07-27 02:49 - 2015-10-30 11:02 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-07-27 02:49 - 2015-10-30 11:02 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Com
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\System
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-07-27 02:49 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-07-27 02:49 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\servicing
2016-07-26 17:47 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-07-26 17:47 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-07-26 17:47 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-07-26 17:47 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-07-26 17:47 - 2014-05-15 20:28 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-07-26 17:46 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-07-26 17:46 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\appcompat
2016-07-26 17:46 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\USOPrivate
2016-07-26 17:46 - 2014-05-15 20:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2016-07-26 17:45 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-07-26 17:45 - 2015-10-30 08:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-07-26 17:42 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Registration
2016-07-26 17:40 - 2015-02-24 12:02 - 00003114 _____ C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AutoUpdate
2016-07-26 17:40 - 2014-10-27 17:11 - 00002596 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-technik-wirtz-adminuser
2016-07-26 17:40 - 2014-10-05 18:37 - 00002810 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3427957863-554338918-1319331597-1006
2016-07-26 17:40 - 2014-05-28 15:01 - 00003896 _____ C:\WINDOWS\System32\Tasks\Xerox 6600_6605 Printer Configuration - New or Changed
2016-07-26 17:40 - 2014-05-28 15:01 - 00002922 _____ C:\WINDOWS\System32\Tasks\Xerox 6600_6605 Printer Configuration - Periodic Refresh
2016-07-26 17:40 - 2014-05-15 20:36 - 00002810 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3427957863-554338918-1319331597-1002
2016-07-26 17:40 - 2014-05-15 14:14 - 00002596 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-technik-wirtz-user
2016-07-26 17:40 - 2014-05-07 07:16 - 00002350 _____ C:\WINDOWS\System32\Tasks\CLVDLauncher
2016-07-26 17:40 - 2014-05-07 07:16 - 00002350 _____ C:\WINDOWS\System32\Tasks\CLMLSvc_P2G8
2016-07-26 17:40 - 2014-05-07 07:10 - 00002872 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2016-07-26 17:40 - 2014-05-07 07:10 - 00002494 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon
2016-07-26 17:38 - 2015-10-30 09:24 - 00000000 __RHD C:\Users\Public\Libraries
2016-07-26 17:31 - 2014-05-15 14:09 - 00002266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-26 17:30 - 2015-01-28 15:07 - 00000000 ____D C:\Program Files (x86)\SamsungPrinterLiveUpdateInstaller
2016-07-26 17:27 - 2016-05-06 10:53 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SerialLetterAndFax
2016-07-26 17:27 - 2015-10-30 11:07 - 00000000 ____D C:\WINDOWS\ShellNew
2016-07-26 17:27 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\MsDtc
2016-07-26 17:27 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-07-26 17:27 - 2015-08-13 13:23 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2016-07-26 17:27 - 2015-04-14 15:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DataQualityTools
2016-07-26 17:27 - 2015-02-04 15:41 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2016-07-26 17:27 - 2014-12-30 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PuTTY
2016-07-26 17:27 - 2014-10-08 17:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-07-26 17:27 - 2014-09-08 16:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FotoSketcher
2016-07-26 17:27 - 2014-05-28 15:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xerox XeroxPrintExperience
2016-07-26 17:27 - 2014-05-21 08:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-07-26 17:27 - 2014-05-19 16:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexware
2016-07-26 17:27 - 2014-05-16 16:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-07-26 17:27 - 2014-05-15 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Design Premium CS5
2016-07-26 17:27 - 2014-05-15 21:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 5 SDK - Deutsch
2016-07-26 17:27 - 2014-05-15 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2016-07-26 17:27 - 2014-05-15 20:56 - 00000000 ____D C:\WINDOWS\SysWOW64\1033
2016-07-26 17:27 - 2014-05-15 20:56 - 00000000 ____D C:\WINDOWS\system32\1033
2016-07-26 17:27 - 2014-05-15 20:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2013
2016-07-26 17:27 - 2014-05-15 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-07-26 17:27 - 2014-05-15 14:14 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-07-26 17:27 - 2014-05-07 07:24 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2016-07-26 17:27 - 2014-05-07 07:21 - 00000000 ____D C:\WINDOWS\nl
2016-07-26 17:27 - 2014-05-07 07:21 - 00000000 ____D C:\WINDOWS\fr
2016-07-26 17:27 - 2014-05-07 07:21 - 00000000 ____D C:\WINDOWS\en
2016-07-26 17:27 - 2014-05-07 07:21 - 00000000 ____D C:\WINDOWS\de
2016-07-26 17:27 - 2014-05-07 07:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2016-07-26 17:27 - 2014-05-07 07:15 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2016-07-26 17:27 - 2014-05-07 07:09 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-07-26 17:25 - 2013-08-22 15:36 - 00000000 ____D C:\Users\Default.migrated
2016-07-26 17:18 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\spool
2016-07-26 17:18 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-07-26 17:18 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-07-26 17:18 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2016-07-26 17:18 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2016-07-26 17:18 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2016-07-26 17:16 - 2016-05-09 15:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xerox-Bürodruck
2016-07-26 17:16 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\InputMethod
2016-07-26 17:16 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\IME
2016-07-26 17:16 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Help
2016-07-26 17:16 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-07-26 17:16 - 2014-05-15 21:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2016-07-26 17:16 - 2014-05-15 21:01 - 00000000 ____D C:\Program Files\IIS
2016-07-26 17:16 - 2014-05-07 07:11 - 00000000 ____D C:\Program Files (x86)\Dell Wireless
2016-07-26 17:16 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2016-07-26 17:16 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\ADFS
2016-07-26 17:12 - 2013-08-22 17:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-07-26 17:10 - 2014-10-27 17:08 - 00000000 ___RD C:\Users\adminuser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2016-07-26 17:10 - 2014-10-05 18:31 - 00000000 ____D C:\Users\adminuser\AppData\Local\Packages
2016-07-26 17:07 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-07-26 17:05 - 2014-05-07 07:26 - 00000000 ____D C:\Temp
2016-07-26 17:00 - 2015-10-30 11:13 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-07-26 16:26 - 2015-10-30 11:42 - 00000000 ___HD C:\$WINDOWS.~BT
2016-07-25 16:40 - 2014-05-16 08:47 - 05029888 ___SH C:\Users\user\Desktop\Thumbs.db
2016-07-25 16:40 - 2014-05-15 14:31 - 00001456 _____ C:\Users\user\AppData\Local\Adobe Für Web speichern 12.0 Prefs
2016-07-25 10:27 - 2014-05-15 14:58 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps
2016-07-25 09:41 - 2014-05-07 07:20 - 00000000 ____D C:\ProgramData\PCDr
2016-07-14 09:03 - 2014-05-15 21:07 - 00000000 ____D C:\Program Files\SharePoint Client Components
2016-07-13 17:23 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-07-13 09:24 - 2014-05-21 09:04 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-07-13 09:20 - 2014-05-21 09:04 - 144749672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-07-05 13:25 - 2014-05-16 16:41 - 00830976 ___SH C:\Users\user\Downloads\Thumbs.db
2016-07-04 10:53 - 2016-06-06 14:08 - 00000000 ____D C:\Users\user\AppData\Roaming\SQL Anywhere 16
2016-07-04 10:53 - 2014-05-19 16:50 - 00000000 ____D C:\ProgramData\Lexware

==================== Files in the root of some directories =======

2015-08-18 14:19 - 2015-08-18 14:19 - 0000132 _____ () C:\Users\user\AppData\Roaming\Adobe BMP Format CS5 Prefs
2015-08-10 15:07 - 2015-08-10 15:07 - 0000132 _____ () C:\Users\user\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-09-08 16:44 - 2014-09-08 16:44 - 0000294 _____ () C:\Users\user\AppData\Roaming\FotoSketcher.ini
2015-03-09 15:34 - 2015-03-09 16:30 - 0009314 _____ () C:\Users\user\AppData\Roaming\Microsoft Excel 97-2003.EML
2015-08-12 10:03 - 2015-08-13 12:46 - 0000137 _____ () C:\Users\user\AppData\Roaming\settings.txt
2014-05-15 14:31 - 2016-07-25 16:40 - 0001456 _____ () C:\Users\user\AppData\Local\Adobe Für Web speichern 12.0 Prefs
2014-12-30 17:55 - 2016-05-11 13:39 - 0000600 _____ () C:\Users\user\AppData\Local\PUTTY.RND
2014-05-15 20:47 - 2014-05-15 20:47 - 0000017 _____ () C:\Users\user\AppData\Local\resmon.resmoncfg
2016-07-26 17:05 - 2016-07-26 17:05 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-05-07 07:19 - 2014-05-07 07:19 - 0000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2014-05-07 07:15 - 2014-05-07 07:16 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2014-05-07 07:16 - 2014-05-07 07:17 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2014-05-07 07:17 - 2014-05-07 07:18 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2014-05-07 07:15 - 2014-05-07 07:15 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

Files to move or delete:
====================
c:\temp\anwesenheitsmail.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-07-26 16:59

==================== End of FRST.txt ============================

troianjoerg 03.08.2016 10:53
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-08-2016
Ran by user (2016-08-03 11:13:00)
Running from C:\Users\user\Downloads
Windows 10 Home Version 1511 (X64) (2016-07-26 15:46:19)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3427957863-554338918-1319331597-500 - Administrator - Disabled)
adminuser (S-1-5-21-3427957863-554338918-1319331597-1006 - Administrator - Enabled) => C:\Users\adminuser
DefaultAccount (S-1-5-21-3427957863-554338918-1319331597-503 - Limited - Disabled)
Guest (S-1-5-21-3427957863-554338918-1319331597-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3427957863-554338918-1319331597-1005 - Limited - Enabled)
user (S-1-5-21-3427957863-554338918-1319331597-1002 - Administrator - Enabled) => C:\Users\user

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat 9 Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000004}{AC76BA86-1033-F400-7760-000000000004}) (Version: 9.5.5 - Adobe Systems)
Adobe Acrobat 9.5.5 - CPSID_83708 (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000004}_955) (Version:  - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Creative Suite 5 Design Premium (HKLM-x32\...\{02698606-3A21-489D-9D2A-75C9E8D3E5BD}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\{6E9EF98E-259E-416D-B5F8-0ABDB99942CE}) (Version: 10.1.52.14 - Adobe Systems, Inc.)
Adobe Flash Player 10 Plugin (HKLM-x32\...\{BC41C09D-FAA9-4346-9FE6-1E0017BC551A}) (Version: 10.1.52.14 - Adobe Systems, Inc.)
AzureTools.Notifications (x32 Version: 2.1.10731.1602 - Microsoft Corporation) Hidden
Behaviors SDK (XAML) for Visual Studio (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio 2013 (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio 2013 DEU resources (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Build Tools - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DataQualityTools (HKLM-x32\...\DataQualityTools) (Version: 4.2 - Thomas Hainke Dipl. Inform. Univ.)
DataQualityTools (x32 Version: 4.2 - Thomas Hainke Dipl. Inform. Univ.) Hidden
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.2.0 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.2.0 - Dell Inc.)
Dell Data Vault (Version: 4.3.8.0 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{D850CB7E-72BC-4510-BA4F-48932BFAB295}) (Version: 2.9.901.0 - Dell Products, LP)
Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.16.1 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6817.107 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{3ED468C2-2235-4747-90AD-A7A34F0FE70A}) (Version: 1.2.2.8 - Dell)
Dell Update (HKLM-x32\...\{E3CECF25-A529-415E-8F9A-D53C40E5E94C}) (Version: 1.3.9000.0 - Dell Inc.)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
Devenv-Ressourcen für Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Dienstprogramme für Xerox WorkCentre 6605 Ver.1.0.0.1 (HKLM-x32\...\{63C4C8DB-0D95-41D0-95FA-A28AE5A3116C}) (Version: 1.0.0.1 - Xerox)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4954.46574 - PreEmptive Solutions) Hidden
Dotfuscator and Analytics Community Edition Language Pack (x32 Version: 5.5.4954.46574 - PreEmptive Solutions) Hidden
Entity Framework Tools for Visual Studio 2013 (HKLM-x32\...\{08AEF86A-1956-4846-B906-B01350E96E30}) (Version: 12.0.20912.0 - Microsoft Corporation)
Erforderliche Komponenten für SSDT  (HKLM-x32\...\{3FF082A7-A5DE-4BDA-B56A-1D2BEFD617A3}) (Version: 11.1.3000.0 - Microsoft Corporation)
Fiddler (HKLM-x32\...\Fiddler2) (Version: 4.4.9.4 - Telerik)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
FotoSketcher 2.95 (HKLM-x32\...\{E7C6D565-2E48-4303-A114-AFE7B2E561AF}_is1) (Version:  - David THOIRON)
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
Intel(R) Chipset Device Software (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1168 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{B991A1BC-DE0F-41B3-9037-B2F948F706EC}) (Version: 3.1.1228 - Intel Corporation)
JavaScript Tooling (Version: 12.0.21005 - Microsoft Corporation) Hidden
Language Pack (DEU) für freigegebene Windows Azure-Komponenten für Microsoft Visual Studio 2013 - v1.0 (x32 Version: 1.0.10829.1601 - Microsoft Corporation) Hidden
Lexware Info Service (x32 Version: 16.00.00.0040 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Installations Dienst (HKLM-x32\...\{6FF55A3A-4E59-4CF8-9248-2EE747168B3E}) (Version: 5.01.00.0040 - Haufe-Lexware GmbH & Co.KG)
Lexware online banking (x32 Version: 22.04.00.0043 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware PDF-Export 5 (x32 Version: 5.00.01.0009 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware warenwirtschaft pro 2016 (HKLM-x32\...\{a0c7a525-c3da-4a38-96b3-2ae2220ddae1}) (Version: 16.1.0.154 - Haufe-Lexware GmbH & Co.KG)
Lexware warenwirtschaft pro 2016 (x32 Version: 16.01.00.0199 - Haufe-Lexware GmbH & Co.KG) Hidden
LocalESPC Dev12 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
LocalESPCui for de-de Dev12 (x32 Version: 8.100.25984 - Microsoft) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.189 - McAfee, Inc.)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{21B0F482-5EF9-45DA-8840-340AFE705A6C}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (Deutsch) (HKLM-x32\...\{CBD7095F-7211-43FD-9FE7-FB08D753AF79}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Expression Web 4 (HKLM-x32\...\Web_4.0.1460.0) (Version: 4.0.1460.0 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.1 Sprachpaket - DEU) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Lync Web App Plug-in (HKLM\...\{530923FF-A970-4952-9D2F-5FF3C874B50A}) (Version: 15.8.8308.920 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office FrontPage 2003 (HKLM-x32\...\{90170409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK - DEU (HKLM-x32\...\{F351AA2C-723C-4CFE-A7CB-8E43AB164F7F}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{F09DEB00-9F41-4BC9-BA81-9F131B12B3D5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{D4E30517-FE6F-491E-942F-AE10E1B18F38}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (x64) (HKLM\...\{B4EDAE03-DB34-4DD0-BA7E-2ED80DEA50B1}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{269A8DF6-BBDA-441F-932B-233F9B746D72}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{EC75BD20-F9CA-4E77-825F-ABD77E95BE91}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{0BF65908-D137-4A9E-B7C9-78F32F74F6FD}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{93945D16-4C3D-433E-B7E4-3D0D86B284C8}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{6F173435-3F19-4043-BA3D-A46AA8472859}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL-Sprachdienst  (HKLM-x32\...\{1D812D86-D8EF-41AC-A518-BA12E1913747}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU  (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (12.0.30919.1) (HKLM-x32\...\{7CC03C58-3471-43D2-A251-EC9AE225E772}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - DEU (12.0.30919.1) (HKLM-x32\...\{BCB8A870-2B3D-4CC0-87D6-F931E065AC0C}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{D434E072-F482-4F52-AB97-7B19DD5DAEB5}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{485F4AC6-F79E-4482-A0D2-EDF0CCE1E124}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.40820 - Microsoft Corporation)
Microsoft Visual Studio Professional 2013 (HKLM-x32\...\{3ea69e8e-ae6e-445b-bc1d-809ecb789ec4}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft Web Deploy 3.5 (HKLM\...\{3674F088-9B90-473A-AAC3-20A00D8D810C}) (Version: 3.1237.1762 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2012 (HKLM-x32\...\{43341417-7882-4F34-8390-53DFD00F6C0F}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2012 (x64) (HKLM\...\{24440413-490E-41CA-BD33-0B30FD3EBE3A}) (Version: 11.1.3366.16 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 47.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 de)) (Version: 47.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.2 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Open XML SDK 2.5 for Microsoft Office (x32 Version: 2.5.5631 - Microsoft Corporation) Hidden
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 RC für Windows Store-Apps (Deutsch) (x32 Version: 4.5.21005 - Microsoft Corporation) Hidden
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PreEmptive Analytics Client German Language Pack (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
PuTTY version 0.60 (HKLM-x32\...\PuTTY_is1) (Version: 0.60 - Simon Tatham)
Python Tools - Umleitungsvorlage (x32 Version: 1.1 - Microsoft Corporation) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.232 - Qualcomm Atheros Communications)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7544 - Realtek Semiconductor Corp.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
SerialLetterAndFax 3.30 (HKLM-x32\...\SerialLetterAndFax) (Version:  - )
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SharePoint Client Components (Version: 15.0.4481.1505 - Microsoft Corporation) Hidden
SHIELD Streaming (Version: 3.1.200 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.42 - NVIDIA Corporation) Hidden
SuperOffice 7 MailLink (HKLM-x32\...\{A8F9AAC1-49CE-4B21-8878-85DE535A8C86}) (Version: 7.5.5387 - SuperOffice AS)
SuperOffice 7 MailLink (HKLM-x32\...\{B9BC55D7-FCDC-482D-A359-B36542AAC5F8}) (Version: 7.3.5350 - SuperOffice AS)
SuperOffice 7 Web Extensions (HKLM-x32\...\{DE878E7A-1B71-49E8-ACDD-CE4E9A25DD48}) (Version: 7.5.5387.244 - SuperOffice AS)
SuperOffice 7 Web Tools Plugin (HKLM-x32\...\{BF0F4126-F901-4041-9CA5-5EA25122ED05}) (Version: 1.0.1.0000 - SuperOffice AS)
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45862 - TeamViewer)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
WCF Data Services 5.6.0 DEU Language Pack (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services 5.6.0 Runtime (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2013 (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2013 DEU Language Pack (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation)
WE Client (HKLM-x32\...\WE Client_is1) (Version:  - EfficientLab, LLC.)
WebsiteChat.net (HKLM\...\{57256648-9DE5-44BC-A4BA-94B174C93827}) (Version: 2.5.3 - WebsiteChat.net)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version:  - )
Workflow Manager Client 1.0 (Version: 2.0.30813.2 - Microsoft Corporation) Hidden
Workflow Manager Tools 1.0 for Visual Studio (Version: 2.0.30725.1 - Microsoft Corporation) Hidden
Xerox 6600/6605 Print Experience 2.0 (HKLM\...\{B33B22F6-512D-2B4D-459E-138D560ACCBD}) (Version: 6.71.9.5 - Xerox)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{03591BA5-DCAD-4868-9DCB-B63E243009DF}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{23D93182-830B-4137-ABB4-0C63979850BC}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{2659E951-5EFF-41A8-847A-15A801A17968}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{378F79D3-6FA1-4071-BA34-4734B3E35A35}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{39AB7A13-B531-450E-8F7A-EA94C3F3C05F}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{3E8E0584-1B63-46DF-8783-EAE6DB9859DD}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{3F7E2E8D-CEB0-4FBD-A9B6-61BDAD285EE8}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{493BC73A-F8B0-4368-94CD-FD26978B188C}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{4BC25952-118E-4558-AC1F-9F88E9996D20}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\user\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\user\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{66760592-5054-4165-A04D-B5DAA78173FC}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{AFE25AC5-11E3-4F5A-8E40-E697689402F4}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{C3B05695-AE2C-4FD5-A191-2E4C782C03E0}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{D2DC6CF0-29EB-430F-A2F1-882620FBD661}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{D47BA7B2-899F-4F60-95C7-4DF5714F6F18}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\user\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{ED323630-B5FD-4629-BC6A-D4CC44BE3F00}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{EF28EEAA-E881-4A49-B538-789907742DDE}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{F429108D-6DD8-4827-9F01-8C13BE5CF8DD}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{F83A7F92-5133-4159-B8BD-BFDB9F27FB94}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{03591BA5-DCAD-4868-9DCB-B63E243009DF}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{23D93182-830B-4137-ABB4-0C63979850BC}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{2659E951-5EFF-41A8-847A-15A801A17968}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{378F79D3-6FA1-4071-BA34-4734B3E35A35}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{39AB7A13-B531-450E-8F7A-EA94C3F3C05F}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{3E8E0584-1B63-46DF-8783-EAE6DB9859DD}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{3F7E2E8D-CEB0-4FBD-A9B6-61BDAD285EE8}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{493BC73A-F8B0-4368-94CD-FD26978B188C}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{4BC25952-118E-4558-AC1F-9F88E9996D20}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\user\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\user\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{66760592-5054-4165-A04D-B5DAA78173FC}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{AFE25AC5-11E3-4F5A-8E40-E697689402F4}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{C3B05695-AE2C-4FD5-A191-2E4C782C03E0}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{D2DC6CF0-29EB-430F-A2F1-882620FBD661}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{D47BA7B2-899F-4F60-95C7-4DF5714F6F18}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\user\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{ED323630-B5FD-4629-BC6A-D4CC44BE3F00}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{EF28EEAA-E881-4A49-B538-789907742DDE}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{F429108D-6DD8-4827-9F01-8C13BE5CF8DD}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)
CustomCLSID: HKU\S-1-5-21-3427957863-554338918-1319331597-1002_Classes\CLSID\{F83A7F92-5133-4159-B8BD-BFDB9F27FB94}\InprocServer32 -> C:\Program Files (x86)\SuperOffice\SuperOffice 7 Mail Link\SORedemption64.dll (Advanced Messaging Systems LLC)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0174004E-9236-4D0A-8720-3BDA61468427} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {0640B211-76FE-451F-BF9E-400703D155C7} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {08E00B64-7478-4EF0-AA4A-B601B7D8965B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {0E31B4EA-9D09-4911-93C8-99FD6F6D0D4F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3427957863-554338918-1319331597-1002UA => C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2016-05-11] (Google Inc.)
Task: {18052F9B-DF69-4CAA-9ECD-FDA9C9AAEAF8} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-04-22] (Dell Inc.)
Task: {2C66990C-2006-484C-8B0A-28AFE6D5793E} - System32\Tasks\Xerox 6600_6605 Printer Configuration - Periodic Refresh => c:\program files\xerox\xeroxprintexperience\6600_6605\XeroxPrinterConfiguration.exe [2013-12-02] (Xerox Corporation)
Task: {2CC35E43-4569-444D-9A70-723A29D8E670} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {2E687A41-837A-45F6-81A0-C1EE662526F3} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2016-07-12] (PC-Doctor, Inc.)
Task: {3EAC94EC-EA1E-4EDE-AA31-836112E23EEB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {3FDA86A0-7652-4F49-A3B4-DE2707AC7BA4} - System32\Tasks\AdobeAAMUpdater-1.0-technik-wirtz-adminuser => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {3FF3EC8C-FC13-4084-90CD-099AE746E210} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {443B77F1-0390-4E04-9EB9-1E12783E5B54} - System32\Tasks\AdobeAAMUpdater-1.0-technik-wirtz-user => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {54C8CDFC-572A-49EC-B6B5-2076410482E7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {568EEB87-CCAF-4C3A-AA5B-3E5F8C50CA59} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-05] (CyberLink)
Task: {576F5AED-AE7A-40B8-816D-4C03A970A1DB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {5E4D0C90-3AEE-4D72-9E14-17AC4316A0D2} - \Microsoft\Windows\Setup\EOONotify -> No File <==== ATTENTION
Task: {660D998A-9B0A-4692-94D3-C9EE177D0C58} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {6E720077-196A-42A2-AD6F-1C6963CBC42C} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {746D47B3-90C0-47E2-82E9-518703625C7E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-07-13] (Microsoft Corporation)
Task: {765730F2-9A63-4155-A3D7-30CA61C7673B} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {8EBD7182-AA5C-428B-9107-3A2F9B5B4C89} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-22] (CyberLink Corp.)
Task: {9B3B5B45-F6F1-4C8A-AF82-C6FF837AB9A7} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {A9FAAA15-6B8B-46B0-9704-0431D73B67FB} - \CreateChoiceProcessTask -> No File <==== ATTENTION
Task: {ADDD18F8-E18B-48D2-A3A6-F70167E492CA} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3427957863-554338918-1319331597-1002Core => C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2016-05-11] (Google Inc.)
Task: {B4563337-925B-42E9-9C96-3FD39E99FD73} - System32\Tasks\Dell\Dell System Registration => C:\Program Files (x86)\System Registration\prodreg.exe [2012-07-09] (Dell, Inc.)
Task: {C1FC93E3-B722-4F26-868B-C612B6CC335F} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2016-07-12] (PC-Doctor, Inc.)
Task: {C7DE574E-99B6-472A-94EF-30F42F4F384A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {CBDF2988-3561-4598-A5B3-672B8C00851D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {D07E8BE6-8950-4AD6-AA4C-D62AA25FFBA6} - System32\Tasks\Xerox 6600_6605 Printer Configuration - New or Changed => c:\program files\xerox\xeroxprintexperience\6600_6605\XeroxPrinterConfiguration.exe [2013-12-02] (Xerox Corporation)
Task: {D4332CD1-BB98-4933-8891-62855E59B7C8} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {E5AEEDFB-53F4-4295-BE05-976FB1264B76} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {E62B21FF-2B49-45F2-8A7F-9BC09EF70EE6} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {E7C57AB8-D795-4539-943F-19A47E71CB95} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {FA0D667B-73DF-4A05-8A55-B6DDC18233A1} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {FB0A84F6-B447-44E2-97D2-4ABBD148C3F2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {FC3C2144-AD7C-4B95-8874-A62EBD42B7AB} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3427957863-554338918-1319331597-1002Core.job => C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3427957863-554338918-1319331597-1002UA.job => C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Network Shortcuts\My Web Sites on MSN\target.lnk -> hxxp://www.msnusers.com

==================== Loaded Modules (Whitelisted) ==============

2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2012-11-19 15:34 - 2012-11-19 15:34 - 00347064 _____ () C:\Program Files (x86)\Dell\Client\prtct64.dll
2014-12-03 11:44 - 2014-12-03 11:44 - 00029184 _____ () C:\WINDOWS\System32\ssa6mlm.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-07-26 17:52 - 2016-07-26 17:52 - 00959168 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2010-07-15 06:44 - 2010-07-15 06:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2009-12-09 13:18 - 2009-12-09 13:18 - 00004096 _____ () C:\Program Files (x86)\Dell\Client\weprtct.exe
2016-07-27 02:55 - 2016-07-27 02:55 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-07-27 02:55 - 2016-07-27 02:55 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-08-13 13:23 - 2015-08-13 13:23 - 00788000 _____ () C:\Program Files (x86)\DnsBlock\DnsBlockTray.exe
2015-10-30 11:09 - 2015-10-30 11:09 - 00044032 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.10.22012.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2014-04-04 15:25 - 2014-04-04 15:25 - 00098304 _____ () C:\Program Files (x86)\Dell\Client\nfapi.dll
2014-05-06 23:05 - 2014-05-06 23:05 - 00335872 _____ () C:\Program Files (x86)\Dell\Client\ProtocolFilters.dll
2014-05-07 07:16 - 2013-03-05 05:40 - 00626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-03-05 20:41 - 2013-03-05 20:41 - 00015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2016-07-26 17:52 - 2016-07-26 17:52 - 00679624 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2009-02-27 21:28 - 2009-02-27 16:39 - 00019968 _____ () C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.deu
2015-07-07 10:38 - 2015-07-07 10:38 - 00176168 _____ () C:\Program Files (x86)\Lexware\Update Manager\Haufe.Core.Diagnostics.Logging.Targets.Etw.dll
2015-07-07 10:38 - 2015-07-07 10:38 - 00043048 _____ () C:\Program Files (x86)\Lexware\Update Manager\Haufe.Core.Diagnostics.Etw.dll
2014-02-20 03:51 - 2014-02-20 03:51 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2015-11-11 03:42 - 2015-11-11 03:42 - 01045672 _____ () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll
2015-10-30 11:09 - 2015-10-30 11:09 - 00151040 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.10.22012.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2015-10-30 11:09 - 2015-10-30 11:09 - 02884096 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.10.22012.0_x86__8wekyb3d8bbwe\MessagingNativeCore.dll
2015-10-30 11:09 - 2015-10-30 11:09 - 00583168 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.10.22012.0_x86__8wekyb3d8bbwe\MessagingEntityExtractionProxy.dll
2015-10-30 11:09 - 2015-10-30 11:09 - 18818048 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.10.22012.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2015-10-30 11:09 - 2015-10-30 11:09 - 01280000 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.10.22012.0_x86__8wekyb3d8bbwe\MessagingNativeBase.dll
2015-10-30 11:09 - 2015-10-30 11:09 - 00156160 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.10.22012.0_x86__8wekyb3d8bbwe\MessagingNativeSkypeExternal.dll
2015-10-30 11:09 - 2015-10-30 11:09 - 01845248 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.10.22012.0_x86__8wekyb3d8bbwe\SkypeCore.dll
2015-08-13 13:25 - 2016-08-03 08:47 - 00012288 _____ () C:\Program Files (x86)\Google\Chrome\Application\WTSAPI32.dll
2016-06-19 20:17 - 2016-06-15 11:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-19 20:17 - 2016-06-15 11:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3427957863-554338918-1319331597-1002\...\dell.com -> dell.com
IE trusted site: HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\dell.com -> dell.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3427957863-554338918-1319331597-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Dell\Win LTBLUE 1920x1200.jpg
DNS Servers: 195.50.140.114 - 195.50.140.252
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3427957863-554338918-1319331597-1002\...\StartupApproved\Run: => "BrowserChoice"
HKU\S-1-5-21-3427957863-554338918-1319331597-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "BrowserChoice"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{F9BA062A-0E6D-473A-80FC-1FF4DD8D41B4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A822E7D1-C95A-44F7-9F4F-2DCB09E53BF1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{29EE74FF-BD7C-4192-AEAD-4F892D1B0ADE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{CB54D83E-582D-426F-B808-AC0900CE7A1A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B0CB3037-3A2E-4BB9-8B7E-1211C5C2F02A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{05A6FB5C-AA91-43B4-8AAF-0B82D304E046}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{30685548-317E-4940-996E-9501BF279926}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{536C5044-45B4-450D-953C-6777875BED08}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{DEEC3309-C9E3-4151-925E-2CF090A97E37}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B743E769-BE88-496E-B017-5AB0532AFDAA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0D500FBE-015C-4333-8CE8-421D0A1EA630}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{844B91DA-FC43-4893-B896-E7E3F81CC9EE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E260C952-0628-4892-B8D9-5B31ADC25B94}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{14E1C044-DC64-4ADC-94A7-F8D3D2BEF7B1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9FEABCB8-F0B8-403D-BB90-E2A4A6CB649F}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FD559AB6-8B0F-4619-A519-B82452D920D4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E05BF783-5B30-4551-BA81-2A0B94719699}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6ABCCB1B-8EAF-4C38-B6DE-E02CE39674F4}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{3AC73F03-703B-4138-B860-742557893FFB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3F5A16D8-8642-422C-B806-A378F0892D3A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{991DDC5E-3C48-4C18-A598-B841D48B5D23}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{9A5E07D1-2B5A-48D8-8087-47071F91760B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9F819BCB-AF86-4F32-8E98-C8471E480E64}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{749EE719-56F6-43BD-B35C-E3725ECF6E7E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{54F814A9-FD24-49F8-A363-0400BE860DDD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C18FB5EC-4BDF-498C-841E-1C555A5FD513}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{EF1A0260-3714-4001-86E6-B529889C7520}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B7664F5A-99B2-45EF-A598-4DA06C7FECD0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{BFFD411F-C099-4A26-954E-7F74A60FB829}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{1EB26AD8-3150-4BFB-AC0E-9AC28C6B34A0}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{CDDC3982-6C44-4B89-9EB8-90DC72C37C86}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5D7A9B85-7D2E-42FF-8E6D-1286B50E5EFF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{AD99EB1F-9EBB-45A7-BF38-EFFA4F5798AF}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{7099B598-26B7-46B3-B893-F02B4A00CD44}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6911A24D-DB45-4BC1-89A3-C31DAE699FF3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{670D2A01-5898-413F-AFB8-316E4F51A69A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D5A9F808-3020-4C87-A138-114AB13B1D40}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9C720F2B-B7A3-4608-9D5F-14D3B349516C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B99E5169-017B-452E-877B-B9B13A61CC93}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{AF5815A3-8C17-49E9-A697-DB7AE4F2BFA4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9275C966-BDD4-40CF-BDB0-E3CDC7AD7443}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{7441476B-13CA-4DB7-956D-BB80BEE5FFE7}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B3F33A60-A7F5-4BD7-B3BD-1B9655738D56}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{528CA337-DBD4-4DB5-975A-29DD9D90A944}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{51B64E11-B6B6-48C7-A8A6-E5095A702A74}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2A549718-D14C-437C-89D4-717BDAAB958D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{05CB933B-E56C-4124-A36B-3F8E54BC4814}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{48A97BC6-1AB7-4FD3-A4B8-D2508B04CA45}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E636B60C-9237-46CA-989B-E7D2A5DCCF02}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{DB94C063-645E-4FE9-8038-3ACC683CEC22}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{90435E10-0580-40C6-9D80-F37C3D289294}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{87D7E021-E2CE-44CE-B9EA-63E30FF26892}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{DA63084A-BE39-461C-BB48-74FA35BD7DBB}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{34E5624B-EEDF-4B8E-B9E5-E7094D92EC17}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{4895693A-C1BB-4D18-A649-50BB06E39F5F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B9F410FB-50FB-4380-9CC9-6AF76F434E5A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{819B73C9-88D8-493F-9A17-E88ACF6B107C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D2CDEC40-F0FB-47DF-928E-409AF4BA32DA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D6D8D4A3-B90D-4315-95D7-1931321E9857}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{ED0E8700-036D-488B-83A4-C3E36FF84B73}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{090F79E0-663A-454A-8CCD-7507876980B7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{14430FE6-C821-40E1-AE20-47EECE4F9271}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{2AE2461E-18AB-4026-96F2-23F5D1A78B29}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{C1DF7F16-B319-46A8-B302-D7071F92E7E6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{DA02456B-035C-4495-86BD-75B256342C91}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{44392852-5ECF-485D-98C8-BBB24F4E8214}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{CB92BD3B-7529-4DFF-A119-4C7F7380586F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3F971AB5-E92E-412A-BCBA-CDC14A26992C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E2940B30-52E5-4C5F-9976-DC10C45B790C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FD480446-4A45-4C1B-9E29-CEF5CAB383DF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A603ABE3-2401-4E10-B993-3038C4656CC9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{67D96BA0-0E19-4E55-8486-ABB147E578D5}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{1CC5E528-363F-4870-BD84-00622771F5A3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2B992B4B-2A11-4148-B5E0-B774C5C829E8}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F62E762A-41B2-4486-8480-CA214C386080}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FCBC1009-CD2C-4536-A9C4-AE3F8A2E3026}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0BBDFEA5-1AA7-42EC-9823-DB5C58D6D193}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{AD4B2C71-5C02-4323-B22B-B86E0BC179D8}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{13F09534-F2D5-4349-82FF-B0FC2EB60B18}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C4F24E14-4F2B-4A54-A8FD-09B63F2EBF99}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{68D990D6-1FCE-44BF-A485-375CCE135E04}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{47B1DDDB-4069-4625-8E39-A717A7CF1FF1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{27C0F53C-2665-4CB6-ADD6-F8662D78EDF5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B9685DB8-7C1E-493E-A5A0-C9BB853ABDED}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{3FF3202E-513F-4D66-A43A-9E03C6CE9661}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{EC2C1910-AC74-4BB9-B825-373387958CD0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{82C75F4E-1EAC-4356-AA7E-784D5CCD45B2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B0207C96-3127-4A0A-8BA7-079D5D79E7F9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{F71CBB8D-0971-408C-B05E-7751022AC874}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E18365CB-4454-4B39-B2BA-2964CCA54404}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{CBE82A96-C27C-415F-8116-8D884B898C1D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B18AB207-3BFB-4262-9102-19B145467710}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B907D616-7262-433E-A7EA-E3F1D0145A15}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F415BEB3-A609-4937-90CA-6E8B1EBEFC09}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C645676C-8C68-4710-97E0-865D38EB33B0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8584B160-0486-4603-9451-FB515345BE0D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{2D263273-397B-4292-86D7-0FAD1C885FFF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{42AC486C-B5E6-4600-97A0-E1667CBB0167}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{1B151831-9F72-4CBE-A9C3-BA8BBD5833B2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{493A2D00-8CD9-471A-A762-C93574295DCE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{139EAFD5-1048-4A05-B5B2-E043FDCD4929}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{40995746-C030-4F77-8BF5-ACA7E9B0D727}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{CB1938D7-A738-4ABB-BFE9-D73447FF7F81}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B7E15F45-153D-4AE8-8E8B-1646DEC407F2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{00141E08-D38E-42D1-9E5E-4D96D384B32E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A7CD4D31-F90F-4FDE-A445-CD3D8124DA2C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{052F21F2-C190-4148-AF9F-AAFB6AD1C925}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E45976EF-6A14-4D23-9B25-EF5246EF260B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A7023468-5FB8-4CC0-9339-1B6DC34C4383}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{EDD66A35-CF9E-4DD9-AB03-196CFD9F1E3D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{1D4C71AB-6D43-4380-A5EA-949066675FAC}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{92A5FCC0-6AE5-4DEB-BECA-C7B559646D5C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{316D3BB1-68F1-4338-90AF-2BA951930F45}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B6687DC6-94B7-4BF9-AC5B-741D366C824F}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{07BFABEF-8DD1-4353-9D69-DB8445C191FA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{182C56F4-CABB-4410-AE3F-0D134D6AF6FD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D3D0E191-E223-4430-BD7B-33DE89E43DCF}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FE97F2F3-05BF-469E-8E7D-7129B80536F0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{AFCED92A-321D-4077-ACBB-A3DFB6AD70E3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{1E1DBDBB-9C56-40F2-A41D-7F5C3E908A11}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C090338D-AEC1-400D-9110-73F83BC3B3F4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{03C75638-2E70-49D8-B42C-EBC37268E268}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{BC890BA0-17C7-4DAD-8034-C6E467212978}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{2191497B-2A76-4D7A-B33C-2098A68DF59C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6FB6A2AF-5527-4119-BD34-BA4FEBF944FC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{77C48C2C-DA20-49B7-BD9C-A771BCFD3BAC}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8418D020-44B5-4A3A-ADFF-A881DA1ED670}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8E5995BA-D71B-437B-ADD6-391A12AF5639}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{62F46F43-1FC9-4A66-A525-47BA51ACBAB3}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{059197FF-5E41-403F-A3E6-5798D96667F9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{25606B96-DD56-4E02-95BB-8D1C9AB22BBA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{781C18A2-B686-4673-AC78-E0990A7F3411}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{706B85A9-E56A-40D5-8D9B-1C4ECAF939F1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9AEDEE5F-2C3B-41AE-8F3E-93A6C5D38695}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{2E4A8EAA-D00D-49C4-BE94-0FBD4716714B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DDCA3C03-9958-430F-B902-FE5266E9734A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C17E74F8-78C7-449F-BBDE-628062A61794}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{AF70ECD2-04FA-493D-83CE-BAE519D80EA3}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{7C32B9D0-F7A9-42E3-922B-B5C9B1DF8FD3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1DF7C479-49E1-42F9-BEFC-8480F3E353C5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{432DFF7A-B735-4636-924F-0A89ACCC89B8}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0728B6E2-D9C4-4595-AD7E-550FAB46E8D0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6A57B189-93E9-4089-85D7-2005F04BB97A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8AD9E37B-A6E0-42A7-923A-ACEC05B55856}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{ECC45074-68F3-4D1E-B0C8-194FFF91BFEE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5E7AA2AA-849F-475F-A460-AB68F97B07BB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6163F40D-FCC6-4EC8-9748-99C4382EE777}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{AC8380EF-636D-4BA1-BFED-F931A30B0184}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B7D228E7-506B-47CD-837C-65A697FE2668}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{345E6A4F-6123-41C1-9370-8F98DFE6B409}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [UDP Query User{91389211-A3F0-42CB-B0E5-6E512D90FD84}C:\windows\system32\wfs.exe] => (Allow) C:\windows\system32\wfs.exe
FirewallRules: [TCP Query User{0B99C79D-9A3E-405D-BD56-5BD2009E2C52}C:\windows\system32\wfs.exe] => (Allow) C:\windows\system32\wfs.exe
FirewallRules: [{97603998-CD11-472C-87AA-74F8E909ACC8}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E3A6ED90-87E7-44DF-9DEA-A11C435E3C0A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C47EBEEC-856F-4F2E-AD59-9C86D2D23D67}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{9FB06BFB-60ED-4A12-8DBA-40CAF3BDAA5B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2B7AD7B1-8167-46E2-AB7C-31655D529995}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B201B253-97BA-48DD-95C8-7016F318A72A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D0C521D6-71DB-4EA5-B66E-EB724B930C16}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{422A9AB1-89AD-4A93-8C8F-DC4860722AB2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{57B4EBC5-816B-4D73-B990-82BDF2E4CB9E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{895A3F7B-6CEC-441E-8205-E20E510C770B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0A04A99E-0C43-4B0D-A9F8-38150C99C8CE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4C8673E1-1CF8-45CA-8645-AF6C112BC0DC}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0F8A0AE6-7071-43C3-A1EB-0E710E933361}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{75F3485A-720E-4D43-8E10-645408D3973F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A2639A5F-51E9-4FF5-9DE7-DEF343B392D9}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{2AEFF84C-E680-4D9B-8E80-052643BA4810}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{00585CB9-840D-41E1-87E8-02BDD36FEDF6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{2962A5B8-1C57-4292-9B04-576045B49805}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4F281670-2598-4A6F-BF08-40FFE7D71CC6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{AA2EC2B0-F83C-49D5-B33C-5DB95DF72342}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F8D0DE07-9F79-41BF-9FD7-09C0E0868A39}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{59F1AD8E-37A7-4D5F-8831-AD745175259E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{7FF2FF70-ECF1-4E97-A171-7B061A1C48AA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4F17995B-5C62-4EB4-BCEE-EDBC9F59B57E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{1ABF374D-44E9-492C-A051-A3FDD2B949F9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8DAC45F0-E21F-4BD3-A8F8-C8F4659A4655}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{2F03FC19-DA39-4554-A8DF-8B1B79670FCD}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F8DEC001-714E-4ABE-9FCD-E646773D1F79}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8261852C-D152-4E74-B189-84F40443A598}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F1A47B5A-C11E-453A-AAC9-CB326899C581}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{11359C4A-16D8-422D-9E32-F160E87D89BC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5CC9757C-72D6-499A-A860-F32F87F20AA4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{570829BC-DF46-454B-B3E1-7B944C59E6C7}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B8972385-EBD4-43CC-9080-60EC8D0E363D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3308D14C-1AFD-4C18-BDFD-70395AD0CD94}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{39C00CFE-90B8-408F-B7A9-7E871134C56F}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{CA693712-BE90-4C03-B38D-869EDE153213}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{BAF1AE6D-1DEA-4707-BADB-4DE052378E5A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{EE1B7A8B-18D7-4DC2-9A91-27EFFC4DF2ED}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{7C617552-A3B4-4D4F-B57D-9D92A2BA3681}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{64E38B94-4857-4705-BF6E-4C2D547B35F3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{5994A806-9166-4FD3-999E-FB7E826F8460}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DFFEB37F-1036-427A-8A63-F30422F45E6E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5DB4B165-C24E-4ECD-9342-A6BF947AC6A9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{28722F57-FEBF-46F9-99A6-D790ED2DEF8C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{3C40367D-811D-4D56-90D2-75FC5183FD4F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{AC41329E-E1C7-4482-8342-D33704D091A3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B6491D78-AAF4-4163-A620-1935330CF4DD}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{71A86C37-4574-4D8B-835A-1E1561D7C271}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{714DA0BF-B379-4CD8-B1DE-A7CC39C7B8CC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{CFA8FB5E-EE43-4789-8295-30B9135DE3A2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{10D35E42-3019-42C4-BEAF-A52565E4064D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{4D38EC2B-080A-46E1-B7E3-8C9483254942}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9CFC680F-F12C-48AF-B6AE-3349133A70D8}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{456970C5-8F5C-4AFD-9896-4169A9ADD760}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{67D711FE-B231-43A1-B916-4FC55B32ADE2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F654D1FB-D024-4BE5-AFBD-D6FD3AE88B62}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F793A88B-E315-4157-BCAF-D7737B8AE35F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{52185CD3-A08A-4C07-82E5-AB00A34B2FF0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D2E71881-D336-44FE-A909-95570CDD8972}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F326EF51-5A86-4523-AA0D-CF86C3331B7A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B5B90435-1A06-4E2B-B186-B92D0FE903C7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{86E798F2-54D7-4005-947B-13EF30B195BB}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{9581D2C5-5440-44D0-B232-03CCFFE1F088}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{CB77EBE0-0678-409D-8967-1B59CE694861}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C32AEE24-176D-4EDE-A70C-6E5F91C504AB}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{29E262FE-4056-4D16-866F-569CF00037C6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{860AD28F-ADBC-43A5-A8F9-E1DCD6222D4C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{413ECF39-E62E-4958-A453-A3B2A3499FB5}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DF88AAFF-AAE3-45C6-A15A-D1E9A484A1C0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3A76C04F-CC56-4552-A677-7A22F12C3B0E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8CA18C0B-EC01-4455-9755-AB1E2D7264F2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{07344B65-BFA4-4576-AD33-045D36C5CB26}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{13446825-6999-4FC5-B2CD-605C631DB774}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8CF2D7F8-64A2-4F3E-9A87-6F64B59638DC}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FFBD2877-346C-4137-A6DB-83A187C3DF22}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9568B7C2-5F9F-409C-BFB6-A25A27B97792}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{AF7B9F6F-3927-4E3F-8A3A-ACC155C1AECF}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{5CE57090-6B77-4299-945A-E226A9065A8E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{BB3B5C8F-880C-4CFA-AA8C-905E026B15DA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{7A1C7083-1BCD-472F-ABFB-4793A381921C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0FE40151-AC8C-436D-BBB9-C542122C4DE6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{868671C0-DC53-4790-BC26-3D320647C4F1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{2195EFAD-3F0E-4592-AB5C-7E9F0794DB7F}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{99AE23ED-8735-4DCC-8130-6E4D94AA24B1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{361C5BA2-597C-4977-AE2E-411C834E8EA3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C56B3160-FCD6-4E84-A940-9EB66F5DD1C1}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{AD9BB1B4-8258-4387-ACAD-F14E51E6498A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{AB65F17F-BD76-4D6C-9C1B-3B6969BBEDD4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F491FED6-A070-4931-BF17-0280D0A0A08D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{568C8238-7106-4A41-9F60-B37AA00D2A77}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0EEAC468-E10E-4731-A2C9-0398C619CA24}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{984D7F0D-CC26-4CC9-AFA2-8978467553C1}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{884C6435-8573-4474-8BF3-4DF732DDE3E6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D3D1583B-8123-4AA7-86E5-5E72C995B4DF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C1830D62-D865-45ED-89C3-2C72647049A5}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{832C5202-1A5F-455C-AF24-B70AC2CE7670}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C81BDD05-0A20-4C8B-ABC8-94A469ADCBBA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{7F95A31A-42C9-43AC-88DB-2E32179D6FEA}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C3879D14-2CC0-48B5-85F4-DC28F6BCB104}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3E026E58-41F6-4036-8163-638A00CD2226}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{10B94F45-31B5-4624-B327-5BDA4651052B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4D3477C7-F6C7-497B-9A40-C4AFDEDFAD21}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{79B2E07E-0AFE-4486-955E-2581CD0410EB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{989A46AA-6113-42BF-B3BC-730FAF3B8AFE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8146DE7D-6B85-464E-BBD2-A07223F8F3C2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{7BD13976-6AB1-4A3C-8340-5A6FE4E16530}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{7D01DF3C-97FB-45B5-ABA5-746F81B93DC4}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{60B513A4-CF5A-4BA1-AF52-58F3CEDD1F0E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{587D7B5D-C84E-4E28-BCF4-24501B2A3A74}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{DD36FDEA-0BA5-4568-8706-607BA4448E9C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C2EB858F-1A4C-42F0-8944-4E2DA781710D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{132E06E0-255B-4712-B6F4-120B1E874115}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C10660B8-B4E9-4EA7-A5B2-3EF0E05E777D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{AB50071D-5F92-4279-B163-4E3A55291717}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{EF98D9A7-35B6-4441-9EF0-A354E669A7AA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{31E4D2B8-BAED-4B48-B860-2EC7B38662AA}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{BF2D6E8E-5778-48B0-8625-0B45137E052D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{DF41E923-6871-451E-86C6-D79572B4F9C4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{3D6E98DD-7462-4D72-A4D2-0A85F4BAD51F}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E384D0E8-2B63-44EC-AAEE-225CF6946392}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9F9DBF2C-E6F8-40A1-B20F-482E42F2722D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{16C7FA3A-1499-4B23-B3B0-105F78610C17}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F77947FC-4A93-49DF-A751-5D28B3F25D28}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{19A609F0-5C38-442E-9C48-BFA8DEE6E58B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{51252081-5DE4-4861-A4F6-21A8BF70FBF5}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FBB85D8E-A63C-4A2C-949C-502B37682770}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C6CFB27E-330A-4134-AAEA-A1C8EBD1890C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{44AEC890-3C69-44CC-B882-DA5BF2A04C2D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{AEDABC80-8C1A-45DE-9BFE-6ECBDA01C512}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{88C65996-7974-448D-96BA-6247F8AFF9B2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{16D67815-2992-4D06-AFCB-62D42DCB237D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{37E6DB92-55C7-4264-96CD-3018C7EA3BF0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3ABE9129-CE17-4C2E-8908-15E3F72DCEC9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{3D144DE8-2F8E-4C38-B61C-714AD9D81976}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{598E98A4-1579-4AF7-A9F0-4A036BEF9BA9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{7B69FE44-9DDC-4046-9C73-86491A7703AD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C6E94DD8-C0BA-42F9-B30D-3E5D4FFCB19C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{40F21ADF-5ACC-4AB5-96C8-705A1FCA962E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{834828E7-09D0-4537-AB03-ECCC22A68E2C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{72B766F5-00B1-4933-AFAD-77926EBFB72A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DE4CFBC6-5145-4DB9-86EF-6365D8CB5B16}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C0170388-FC6A-435D-824B-C424807926E5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{3EC0AFF5-824B-4A8A-AE63-C963F5091B18}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C7584FD1-57F6-4B2C-8C89-FC0B67016741}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{097C74AC-190F-46FA-8DF9-82F3AA4B0565}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{10E0E1FC-4C2A-4791-8813-A9DB4D0AF2B7}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4ACD5E58-9F9E-41A2-BEBB-A7440C6F1DF0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8334B4AD-46C4-4467-BBE7-F96E0F88E7FD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C264F722-8955-445A-9C87-955D050916DC}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{44899433-E55A-434A-B504-7F343974D902}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{49B15F4F-3DE4-45E9-88B3-3C8EA04C11D9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{EAE25504-5419-4E7C-837B-E76FA3BFACE6}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0B2D7B4A-B6B6-4D8F-BD88-B985355CEAAE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{27F8BAF6-83E3-4F50-BAAB-A832DD65AFCD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{7A91096C-78F3-43E3-AA81-E8C7269CC764}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0242B4E5-E6B2-43A9-83D1-2DBA08E97C92}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{68663942-9155-4000-ACDB-8BA3C7C82828}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe

troianjoerg 03.08.2016 10:53
Code:
FirewallRules: [{B522B50F-D592-4FC7-8C25-5C626AE74C01}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0ECDE2D6-4BE4-490E-AA15-7A232174D0DD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{27E6FF3E-6593-4101-B8D4-8D79192971BA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A346F4F6-072E-413A-8921-2B41AB37A358}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{356791F3-F6B8-4478-BC1E-976BF06BAAD5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3D81DBD0-D2D7-41EF-9E19-CCD2115A6E28}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E380190B-E755-491E-860F-1560A38F4ED0}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A137DD2A-EAB5-44DD-84DB-7EC94D0B9C86}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E950BB0F-E917-4B71-84E7-7271CF75FDC7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A6C587C1-3880-4BDF-9CDB-20BB51EF5AB1}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F82F90E9-F514-4CA4-80DC-8FA849CC8315}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E900A14D-B7C7-4F05-83AD-548630428DB6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{01BA1CC7-8A3F-4CFC-AD95-70B4E6D8EA92}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{208D6A54-3054-4392-A57A-A664A28F54C5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3B1AE5A4-3FC4-4A71-BE72-8894E2B0D4DF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E166124A-6BE2-4018-A1AB-73E144C43A6E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{7D98558A-6659-4D77-AA51-1F48E2784923}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1B9D5601-6A25-4B17-8765-11C6FE57A39C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{CFADB31F-5762-4FF2-B223-3E6E1CAD5430}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{EB4E59C9-5F2D-46C6-90C8-50F05F6DF9AF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D1302F73-4715-4672-8A19-D56BED76D991}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{39E9E1C1-3D28-427B-9CC9-3E4BE4DA08F4}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{382293E8-A66C-494E-8EEA-9E62260D1010}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{61FCC79A-736B-45F4-BC4C-3BB065560A9F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B5716F0B-1C4E-41B5-9532-213D729415AB}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8B182EDC-89F5-48A4-8440-CD8660BE8BB0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D7A60FEB-2349-4EE4-89E5-7050C88F6417}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{38BE315E-696A-4D55-9733-C247B4472022}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B1AFC68B-1E7F-4718-AFB5-A751574960F3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{DF3ADF22-C64F-4C2D-A197-639A674F97AE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{0BCAF525-1F5A-4FBC-83D4-6DDEC8838B34}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{CAF1D9F9-AF74-4540-B7FF-471497485728}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1B7E2596-D379-4ADE-BB38-5F0D4C4D9A42}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{03D3D07C-D4BB-404B-ABD6-DBC0448F73EB}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B21D2EEA-6A89-4964-8452-FADE5A7470A8}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{23CC4AD1-FEF3-454E-83A1-1F217A1930F3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{DEEB9DF9-283D-45FB-B313-743410418637}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B238E1FB-995E-47B1-93F4-037734E46A67}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{CE3AA6A0-F2D3-4C87-AF80-EE71397EF4F6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F5733B84-2947-47B6-92C8-29213E817CB0}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DFB3C5C3-01D6-41F6-AD96-18FBF932C73C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2E236F3B-D5A9-4538-9A61-4AA2785CDED2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{5D8A14FC-76EA-421C-9A55-BC17880EB432}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8358B623-5A2C-4048-A7DA-D5E4A24F5BC6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{BDCD40E9-041D-470A-AE36-88789C1ECDAD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{30C21C34-CCEE-475A-AEB3-F4C427F11246}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{04AA85BA-7BBD-46A0-82B8-881BEE0FB138}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8F3C884C-347C-48A8-8CB6-6A4F16985CC2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E58A8483-4BD4-49B8-A8AC-B932B7A9389E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{589BA5B9-44C9-49A4-84E8-83A9017FC47E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{59D20536-4B28-4B30-B658-F29839580AFE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F53A2EE9-12F7-4AAD-8A2B-7AE33AA8E231}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{245B3F95-F304-4B8C-A7B9-45890350C590}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C29C8839-24F6-4F38-9B88-35FA2AF7F19E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{580744C6-F54D-4F1F-B325-21B830983052}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F259CEAE-A9FA-4315-9FC6-1152E8FE4071}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{82C88072-0B99-492A-BAD1-3FD19D74F01C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D7C2FA1E-2B03-40D0-85E5-54A01DEE2449}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{507B7A93-B4CD-4793-9878-E20C0C2CE36C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C19B1F5B-D7AA-43F9-93F0-980627C30160}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{22CD3A14-C6EB-4E30-B89D-FCEA6279B1BD}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E4BBFA85-C2F2-428C-B7C3-F54449488A93}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{736F02DC-258F-4EC4-901C-720CCA06F92D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A1DB4C3B-89B7-498A-ADF2-31E759507E2E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FF4DD58E-7F5F-46D2-98FE-DE9327C04350}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E0C9B7DE-B138-408A-8528-01AF94105B9A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{51F20D5B-831B-4DB2-A332-2EAD8291A0EC}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{5B390AA4-BA67-44DE-B6F2-36A06E8B1B98}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0747E7F0-AC65-4580-BBFB-85DE3B344F43}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D2B3B8FD-E062-457A-A36B-86959AD1C5FE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{24870647-FE80-4F88-ABF3-D76D74767735}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{06B87D90-B801-4D92-8080-93B76B499EAF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{0BF2B1A0-FCC1-4AB3-AC36-3FACB5039A01}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F0D19DA2-AC59-43BF-96CB-C5A86EB43826}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{64609BF1-4B99-42E1-9C1D-8E9C00D752BE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F7E23FC3-4F5D-420E-8C0B-2BDE0B9850DD}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{95DE60A8-23FC-4D21-B8F7-872E6D265095}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{51CF994B-5DFA-4D86-8D39-4DCE6309A289}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A1584916-8297-4884-8B6E-DC576B888427}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{816A34CB-E5BB-4F02-B420-0F685B8B17D6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{10914AC5-605C-466F-9C09-7E98FC10B663}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{774A109C-4A6C-42A2-815C-3D019DCE488C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A10756B9-6285-43E0-A379-8BCFCEBE7598}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{89FF6A2F-6AFB-49D3-B7D4-10AC51734670}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{13D82EC1-CCC5-4648-8C83-8C65D9EF9858}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DB70C879-C71A-498C-B8F4-A4E438B2072C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9DD1FDAF-E917-48F1-9DC6-6C05D89627E6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B8A6A9BC-836D-4999-8375-0EC946FD7B5A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6D6F7DE7-255F-4F0B-BF4D-DA1E24FA5013}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{CD27CA35-AED1-443C-8F48-628628FC2F4E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{66A1DC94-1E39-4C85-AC20-442517AB09FF}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{ED60F47C-141D-4096-A574-F2B05C4CC2F3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C261FC7B-02B3-48F6-AC3C-89196244B454}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D80A9020-17A1-4A0D-8759-A569E9CAE4CF}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F4648AC3-0F67-49C5-9B4C-5B0DEAA158B4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{F340A722-627C-4D49-9184-443296DFC7E7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{786C63FF-1613-45F7-ACD4-34632829DF36}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0402A9E2-2FB6-40EF-ACA0-94388CCC5C83}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B00B13DD-65EC-4B61-88F8-2134853A15C6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{90AA1688-4913-4CC8-AC5D-401F4C9B54E7}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{83BBC6BF-139B-44D8-A9F2-1EE2EA8683F0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6AB26391-7686-4830-A6B0-D7F06F6672FF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{065E8227-828A-496A-856C-FB198078BF2A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E49550C5-941C-4C57-966D-BC8B9B831700}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9CC42908-FF70-49A2-9B1E-524DAA0C5B6E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{ACD730EA-D899-442F-87F2-39421457BFBC}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C5561F9B-34AF-4F3F-AF31-67FEF5F0CEE0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{FEB275D4-D574-4B51-888D-0A9A60AE8EE6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C1D4A6CC-29B8-40AC-9448-148C25C58C50}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A3F0CAA4-0BE2-436E-9788-02325AD794EB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D72CB364-C2C1-4858-B182-67B87BA3ABDF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4C5916C6-AE8B-4191-B28A-BD5C9C4B85E9}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{67E373A0-A22E-43D4-B1DA-6DF916DE0861}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1B1446A9-1781-46A3-9AB2-CC522408D420}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{644ADDC1-64AC-49F2-BDCE-4B907861BA9E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{5002E6A9-F60B-45EE-95D4-CDCD946515B7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D112F606-E7FE-45D0-976D-B8C4FEEE3A45}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C6DD4A23-B422-426E-A984-0A32D39F6A33}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E4604C0E-85A1-425A-AAEA-F9C38C51DF9D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{49F1B1A0-60A8-450E-AE39-DFAC01816AB6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{70FF8AE4-A5DD-4E4E-AB84-ADA5DFE5EBA9}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{50A4A95B-DE02-4F99-82D1-9E3339773E2A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B58A6B0F-16EF-45F2-AE0C-4AD25A2347DE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{CC776E14-2780-44C6-B4D8-8D85E0E24A18}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FFE8C174-79AB-4ACB-AB24-8A33285B7E33}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B2CB20F9-EB2A-4726-8BA6-D6FC4A845329}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{944C08AD-167A-4438-93D3-896E5CC7CBD6}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E372BC74-5475-4702-8055-89FE556EFA77}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2B3EFA4B-DF27-4C2B-A2C7-E839925B38D7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{DD616A33-7846-4EDE-9054-7D5FA326834D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0EFDE86D-8BB4-4C72-B01D-77AF1D02B8B2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{385DD5AA-162D-4F50-94E6-68CF1A1440E0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EBDFBCA2-17C4-4730-BE8E-1C0E9568FF0C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{AE593C08-077F-4FBA-9D44-B249E4F7A935}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A372CD66-6D60-4E6E-B1B4-51127A7461F5}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{45B9076B-3894-4805-96B0-3F0F84B0526D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0FC12AFB-967F-44A6-A342-4AAA99A07A80}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{5E058561-1E97-4B2E-8D15-122C26586DFE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{5E83848C-296D-4ADD-BDEF-9B495317A923}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{420DA0B3-2748-4BCD-842E-0BB536527126}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{0DB42BB4-CCE5-49C0-A041-151E5CABB88E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F2FD0767-F8B6-4B9B-A3A5-60173A239118}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{AF23C7D1-1883-4E7A-B820-6FA78D1306A4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{2D96F3A3-E1F4-4F1B-88E2-92747AFA5F7C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{54B75E19-43F3-4526-AB28-81D8CBB55106}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{36A736D1-AFE2-4E2A-A07A-308A1184497F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4BECD79F-33A6-41DD-B272-9B71C4D32687}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{792441E5-3547-4E2D-9067-68C60606FDC8}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{24847EB0-A511-467A-9B03-7E06714B6063}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{67DC0FAB-F58F-4D03-93A0-55C322CC9DDC}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{3085AF52-5B31-4615-84CC-CA1BC5784C77}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{35FF5BED-1B4B-4247-BC16-285F954F723F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{54BF5589-2938-45F5-9553-C99B3CE33579}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E6EDA132-8C8E-42C9-90A3-0AFE4CAF86EE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5762CA3B-3078-4CB2-94D6-80245E6CD313}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{1183D09D-4F3A-4762-BBDB-528937656C07}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C8B1E019-E5A9-452A-B1ED-7DB4C9ACC14B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6310EA66-69F6-4E0F-A01D-00766636483E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{2C28F467-3D86-45F9-AE5E-A61840EA09A6}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DBA12D09-24D5-4550-924D-AFD085B98FAD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{4C4573B9-9241-4A3F-8907-439AFB1E6F3F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8D20C241-9B3B-4A73-AD20-1C687B4ED30D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{348C9DAE-52E4-44D6-AFFF-19BB950507C7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{7A3A6E5B-A5D5-4997-97FC-3901C17FB4E3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{70B1E7A5-27C7-4140-B5FD-E1DB175D478E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{9B8AA35A-0C62-437C-8FA5-7F95CB3CB76A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{F7021D1F-97D3-414D-B228-3A579D6209C3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6FC3AA54-BFC3-4415-ACD0-E9F62396EBAE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{05A07DAC-86C6-414D-8119-BBD974BFCB77}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3A5A99E5-5EBE-490F-816A-7251BBC24ED0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4E673C0D-95B2-4D65-938B-59F09DF743B8}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D81A811F-AACC-462C-8676-DFE147F9E38C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2BEF0C46-BACA-4453-8334-CEFE9760A9C6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{5B1BF9A5-CE9E-4F3B-83E7-967AA8FA784E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{5ED5A797-90BF-425C-89B2-9BEA41E5A78E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2984B9FF-E770-4548-AC53-74B712F1C5BF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D35B08B4-0162-4176-90B3-2C12840E37B6}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{76D9766B-8D5E-4089-BC41-817B7715C4AD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{EAB4A14B-F10C-4990-BDC4-FB43EA26905B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B9BE0AFC-0E42-4A55-9C32-D705268CB582}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C6A5DA29-6CB1-4613-BA02-1C02893E6B53}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{BED891B1-D9DA-4A46-A735-993F13217EE5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{77ACDE39-5F45-4426-BD79-9911BCE396BC}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{96E7CDCD-1778-4CA2-9D44-7129E4C0B86B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{7EB9AECA-AB72-42DB-B6C9-82662EDD0FB3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{DD808239-1250-4A07-AB11-70C28D46CC13}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{141F97B2-D526-4B3D-8B2C-9B27423EB366}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0027970B-4D81-49B5-8029-58A59FA1CFE7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E2970367-5D5D-47DC-B503-39BC19E11CCD}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4A5A6136-B290-4C36-9A81-872885C2B2D8}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{47A04D7C-3139-4269-BE81-60DD742F671E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{89A8BACE-B478-4D17-BAD2-0E912D12C7DA}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{BB2049B7-EA88-4C70-A509-133419AB531C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{4856F5EC-B68B-4C92-9095-AEB751EF028C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{083E9201-E0C3-45C8-A750-54DC16F7195E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6E70889A-F757-4799-9EE2-3B76FB04B82D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3CBC1101-D7EE-4ABA-AE20-3AD1540AEB8A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6507BA87-4A34-4E0B-B341-5848323CF369}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{21B1623C-3934-466C-B72E-6E229D63F5CD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D09849A3-D237-40F1-A376-2B5C6431126E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9CEC59D1-46E5-4979-AF49-5709F75B712D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{5F874EF2-F41E-4A2D-945A-D403A4A2A375}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9A25C5F9-6772-4CBB-B6DB-3BA73DE7899F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F1B3AB56-9706-4016-ADAC-F088DD16366A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{2BC6E51F-1102-4520-84A4-4B12AF4AA095}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{DBD4B097-DC94-4229-80B2-6AA2FEAAC9EA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{51CAD13F-D176-4810-B1E7-A20F678D8908}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C193558E-ADB5-42C1-AB4B-FDD99C1EC4BF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{05FC7364-0A24-4FBA-9EFD-506D08336E84}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4FE42F04-8140-4587-A0C7-A1275FABD723}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{02437222-C017-44FB-81A0-81549CB45C29}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A6635691-3B4D-4EB4-A84B-C3F3742BAD8F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C5C8CDAD-7547-4683-BBCA-C286BBD05C51}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B9231F13-493E-449B-BB23-519B8443CC0D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E59CC023-F7DA-44AE-B559-48EF55DA92B5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{AB2AB8DB-A2F4-4C0A-A925-2E596D431703}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8FBC3087-E0B6-4085-B947-A905419DDEEA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{022D1F14-BF0B-4E6F-B983-83BED30C205C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{1FFA4A16-4C6E-4BEB-AC6D-E970ED188634}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E4EA6D94-3223-4438-BC01-1C1DAD837560}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A0667588-76BB-485C-8B58-7AAAEC79D52F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{DFF6E100-FAF7-4ADA-9602-D4207CD094AE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D6F5310C-41F9-4ABE-9F77-D0742C636A5A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6B4BE9FE-4E48-46F9-868E-1D6D6502E3A7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D80AD915-1A3A-481D-A4E2-5D256C186B4E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{AB479C46-A32F-46C3-9EBB-198C99A92DEF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C5CADB3F-6ADC-44C0-9013-807E3779A022}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{86E7215C-C411-408E-81D9-E5994317CC8C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F44A8BF4-D34B-4606-B27D-2A513F2EE54F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5DF9E34E-E01F-497F-9C26-57C006B90E10}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{0F80A286-036E-4163-A0B7-D1B431663B9B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{9881879C-43A5-40C8-B099-06DF20B19FC2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6EB17E03-AF0B-4E86-8982-1634B696E17B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{552ADC6B-3950-4229-9AE1-CE3F4ADFD949}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4FCDE18F-4801-4BF2-A8A6-244DD3592F04}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D60DA2D7-31B0-47F1-83E1-7C4B9E38577E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{DBA2A2A8-2FD7-4313-93ED-01B0DD08BEBD}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4D154170-3037-49FE-8EEE-9BBE6495E780}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{10796B40-A926-4EF5-B869-A85207EA6255}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E2A8DD2F-FA25-402D-AA35-FF5B2AE03ECE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{73D83DD9-4118-4C9F-BD85-A8FA7536540E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{90256F36-C34D-4177-B101-DDC08180A845}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F27E7371-B704-442C-8514-EFE0A00DEDD3}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8B9A62CE-34B3-4A32-A8B9-A6712DD0901A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2F467836-2631-4F02-BAEF-36596CA0BFBA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{350BA00E-EB88-4400-B93A-38521871295D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{3898C964-4D3B-4585-B99A-D3063B4F9901}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{502E24E8-3913-4A9D-AFA0-06C82FE2BE4B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C9F1CE14-1554-423A-ADD3-E4183A384C99}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D6F645CD-1A42-47A1-8F93-9DDC1287649B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D3BAF82D-D68C-4D5C-8D52-2FDFD667C8C7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6300F7FB-9552-44D2-806A-F4D4E7FCEECF}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D3C4929B-AD13-410D-9107-83F6049E7765}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{413D1DD5-DD55-4C6E-B1AF-249C2DC28E13}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9AF5DE12-4C17-44C2-AED4-F80137B5A534}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{9958D7BE-3D48-473A-A8AD-2EE71B70AC17}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0273C3B4-71D1-4BE6-B6C3-98EE24D2F00E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{33DC64F9-4B24-40B5-B7B2-1B19114F7C88}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{59612048-ED20-4FE0-BA26-A23390FDF6BC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C0158C62-5796-4D09-A183-785A1283B137}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{96794144-51F2-488F-9A3E-0FF2E250D3D1}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{ABEBA19F-955B-400B-87C8-2B1E7EB9C1D4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0CB92398-57EF-4BD5-8C73-85DB4EBEAAA1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{CC03321A-D1C6-43A9-95A1-6CA800167B71}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C4F03310-5001-4BD8-98B3-D5FC3A14F8ED}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E369094E-C97B-4CDB-9154-3300B114EBE9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4F4DCA23-DF6D-4364-A2F1-FF38CA7C591E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{EC5184FE-79B5-4EF4-B545-C39EDC101C50}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{83A5DE64-3FC0-491B-8C0B-9D848ED1F1FA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{705327B8-C21E-41E8-864E-300F4B454645}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{57C14F4E-B113-437F-82F1-1F91A1CDF052}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5A97A4C0-ECA0-4F1F-A358-5C33D9D1B9F2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E6E9D2BA-C7C1-4A58-AEBE-8E39F7D40C50}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8688EF57-8172-4D58-8B43-B6E6F75A09F0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{EADF6FC1-CDAA-481D-81F5-EC221A407570}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E7D24099-5960-4682-8DE9-DB507583DEE2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{23289AE4-9ECD-48BF-BFAE-6711F1306357}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{998678AB-6708-434C-8091-E5B7C354F641}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A343DA1B-CD8B-4134-A348-7CB6B5D4FD7A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{865A5E5F-88C5-40F8-9FA0-E2DD6DD4B4DB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2AF382CD-3B35-4755-9FE6-3997F15A827B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{1CB250DF-75D9-44D6-8718-CC06161D017A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{21D35ED9-A962-4FAB-8A25-E746839421F8}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{CF557F1A-97DB-46B6-ACD8-69D56DD116C4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{49B5FFBD-3535-4C27-90A5-AA5BFBEC6270}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{31EC350A-E93E-4E36-9D4D-F3F0B4A3C638}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C0710AA1-7D26-47FA-B360-37D734E19B34}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C61B9D3A-25DA-48E9-8988-727F66120109}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B5C4E481-231A-4691-BB46-93515594AB73}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5E4190E9-5D28-4E3C-83B0-B4B1B1074D89}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{CC0E5E2E-D191-4AA9-966C-F8EE1D1594F7}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DA22EEE1-DE73-48E1-89DC-E0BEE74AF700}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A98A0896-E75B-42A8-B0CB-EA58A0DF1224}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A4A812AC-890A-4D61-B9FB-09442015441D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{12E8E429-638E-43F2-B658-4437E97A0163}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{169CAAB5-B984-48EB-9DD7-1164F4F1EA53}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{845AB8CD-73DF-4F3C-AACB-4D00503671DD}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B4597000-5CBC-4D59-B182-A8946FD0D50D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{BE16BFEA-4603-45B0-8700-8A8962A091C1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{813C9F5D-078B-4481-A273-E9C1D82A061A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{94FA9412-25B3-461A-AC3B-D00EBDE251FC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D332F64D-9FA0-4F54-893C-19D5BE071482}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{7033B38E-1674-4B79-91B8-3B56D554784D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{32114F47-D4AF-411E-ACAC-7FA00FFEE414}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{25484005-4B1E-4DB3-885E-668ED7D1058D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{73182FF4-4757-4BA9-AF85-2CA3381AEAE9}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E786E283-D21D-41F0-8F1C-B930FB284EF8}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B5C44E5F-3FEA-4E4A-AD1E-778A55C689E2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{43CA8CE9-A66F-46EF-B94A-49323F21F3DE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{10532272-D9A1-48BD-9ED4-6D965F40FBF4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D4D00484-CCFA-4018-B4EB-7DF5C1B11757}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{523704B9-B3BE-44AC-8663-27F1E88A9673}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{90E4A048-50AF-4A5E-B206-E049E35DC7DF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{44CE2C6B-38C1-4168-BD92-0DF85D9BAEF4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8E38CAA7-AEEA-405D-9111-5D93BE707387}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{336DD682-C5B8-423E-A878-922C8939C18E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{EA7416F5-127C-4018-A3C3-EEF1A496E2AA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{EB423C08-8E65-4446-8D68-1904B8C9B045}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{750C3F8E-4321-4429-BE47-B5764F59A4D9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{83A3DF27-106F-41EB-BE9D-9B5E1D637634}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{849F3D45-A58D-48D2-B19B-F70B04994724}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E8634890-B583-4B26-9581-902D0A7D908F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6AB12819-7434-48D2-B2F3-EDA121269C91}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9BBC9B1A-70AC-4308-9447-1E7A349DFABB}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DA070BE5-B9A9-4CEE-8E6E-FF49CA06FF41}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9662B795-ED85-4D5A-9DD9-E3F47AE184DC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E7FAAD8D-D969-4BCB-91A5-4E2622406506}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{179B72ED-9DB8-4C3C-8B8D-BD1FCBCCACAC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A611257F-3D9E-4D43-A36C-B07890D14009}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{50D2B215-FF25-4B0A-A743-A2945D35973B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4C3254D3-B655-42B0-892A-1F05F8CE71B7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{10F5E3E3-D799-4966-9A0E-11529BD19ECE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{CB5F3973-D516-40BD-BF18-BF71D67F014E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{27C82B4A-FFFC-471F-A32D-C511BE7F89D4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C19BDDCE-4F63-4A2A-98C1-D908151DC338}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{5C7955CA-AA50-4482-BA55-2571DD45E95D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D6E85412-E20C-4828-9B50-790355D96C54}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{7EECA1D0-C109-4A11-B22D-0DDB2CA3B26B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{28A3F097-F720-4960-852D-3928D3383705}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{555DCAB3-44EE-4152-9DC6-E82D6DFDB5F3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{080EC29E-58D3-4FE4-B693-494A11DD8905}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{76DBD6C0-008D-4F72-A30E-F1FCA3DCA9D4}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FF4090D2-0E90-475D-90A5-E273F1A269CA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{413670C8-3400-49EC-8B6B-4C90DA4BF53B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{48ABC2DE-FB71-4C34-B011-2940D770AF49}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C5415DBA-541E-49F9-AA9E-E5E585148EED}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BD9738B8-D943-4A21-AACA-772F7955727A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{B75EF65C-22EA-4B61-9F80-AE15AE2A2723}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B632B3E1-4FE8-4C48-9D06-EEDF35A9D54C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{ABCF8C4B-BDB6-4B35-BDDC-3941C37B39A6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3418ABE1-C240-432E-8505-19E311513B92}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{105FC32F-6422-401A-A0A5-A75EFE1B2440}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0FFDAF67-ED13-4695-A2F2-21D77A76ABC6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{26257AED-4D8A-4623-9C30-B248084C4F5B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{0AD2E8A0-CFF0-41AE-A3C2-864182E58738}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{02BA922A-8EE3-4730-899B-1C0AD2AF75FD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D9463DA2-F2A1-4CBC-922A-04950AD567D2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{7040AF12-9B1A-4EB4-875C-0767FDE5410C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0FB7B54B-33C5-468F-AAC5-013A83C09F04}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{34185D9D-2B1E-4980-BD6D-C1985588DB21}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{29F5A281-2AC9-4796-951E-C7C1188C3C0B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{228AB265-AF68-483D-8F68-61C1AD49B712}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{F2E133F8-FC3F-4D86-881C-F2EAC6819814}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{922963EB-E8BF-4510-800F-B4B5C15EDDF5}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8756A6D7-5F04-45F1-BB6F-94C20B5151CC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{85D8B6F4-4DE1-4868-9BEE-5272C388EE45}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D04EA980-3156-4526-A5FE-59E0339EDA9E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{2190C441-39E0-4A7A-8C1D-9213EC200FE5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{30FC3B1E-B322-45C2-B40D-A45F7AC95B03}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{83A13890-23D7-4D63-8BA1-60EE9FC01517}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{3E11199B-3A2B-4B9A-8A0E-0A3FE1190A46}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E2AFC090-5D99-4141-984D-9CAD98BFB8DF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C556304D-17EE-475A-94C5-D3989B51F0D3}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DF25DEA9-C781-4A33-8E3B-509313E39BA6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D36F289E-50C2-4BEA-B379-2D99672E4AEE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{CE1E4172-B764-452B-A151-FBFA82DCB870}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D2D4354F-FA66-44FD-8B10-414772555408}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3CF7416C-4EC2-43B6-AEB4-597D9E82787B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{0E62D66F-8453-40FA-9030-DB4270AB85AD}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{35FC7FCB-52A9-48A5-B46E-C7DDA340ABDA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{13DBF356-35A7-40E7-B91D-FB0AC2342DED}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8D8636E4-DABA-47C3-92AC-B6B616037CAE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F3467D95-5683-417F-8F77-68EF841AAB04}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8AC25CA4-51C6-44D3-A117-0962B9CD01D1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{07BC51F4-7BE0-42B8-B1DA-DF4B74CCD239}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{3B05DF11-59DE-43EC-9F8A-A4CAF3F59151}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{316C48F0-1362-4A94-90F0-0908D060ED7A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9DE6510A-C602-4749-B23C-A6FAC62A7BFF}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{CB28BB25-6071-4C25-BF0A-C42EDF11379A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0E32D59D-A5B4-4838-80E4-8D0168E4A015}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8728D411-7C74-4ADC-89BB-190F5687B935}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{7BFE7692-F68C-4AE2-ABC7-771BA8CF4FF9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6CA61255-DB51-40E3-8C0F-3B5D8C94CFCA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C078F401-E7FC-4DCF-A18A-6339DFD96061}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E15C337D-AD03-4768-9107-036A0D24BA03}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3C921711-6110-4832-9EA4-84D8859E4E5B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C484CDBC-C5F3-4395-A6AD-8ACE8347DE9F}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6448FADE-7F6D-44CF-849E-0A33B17BD422}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B6F45270-F5EA-4922-87BD-CED46CE5E9D2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A38A7E1A-CB84-4DF1-9AB5-5F1BC96666E5}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D7450A8F-E748-4F2C-8ABF-C6625E7F0C0D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{27B55D41-779E-43BC-A13E-EEE014D812EB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{7FFB2463-4DB9-4A37-9B0C-2C52E7382143}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{21DA05F4-B2C6-410B-A1F1-302A59EAA007}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A382591D-3E92-4800-A2C6-FB4D996492B8}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{0E98A661-6345-4C76-8641-48041B3E247D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4B09E4F8-BE56-46A3-87B6-2BD657BAC299}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D5FA7014-DC5E-4182-9F2D-16E5D8B0E4D4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6F16E3DC-D3A8-4AFA-9B28-2320D8F36321}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C63329C3-0E75-4C48-811D-8F4E76F50EB6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6556FECC-01AA-48C8-8AD7-33E251D43F5F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{2DF67881-EF52-4F9E-9A1F-10232F251489}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{54935DBC-C457-438D-968D-AF004E89053A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{CB6B192D-042A-4548-83F9-9BC16BC7EC79}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4A612927-99CB-444F-A823-9F5F2ACFC38B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{BC2769CC-4176-4BBB-BEB6-90BC351157D3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8886BB5A-8EF5-4AF2-A5D4-9439225C6A47}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{FF1A12BE-0722-4603-A54F-9E49D11F44C0}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{93F53FF6-A297-46C8-97EC-11A7397E5DC4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{575898B7-3134-477C-B2F7-182C782EE118}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{CD9B4CE8-8291-4C41-A414-4BCAE3E5FD5B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{9837734B-2EC9-4DC9-B57B-6FFB8958BCD9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3017E048-ECBC-45AF-BE47-81723318D289}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{75BB52A8-3208-4082-8584-57FBD7C27EEA}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F99EFD8F-1136-4D2B-897E-67465A187048}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{F16F45C6-9D87-4847-B678-90A6A291848F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B454A07A-C814-46B3-8CC6-8E63E238D67B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B6A76ADA-61DF-438C-B4B5-7B9EDEC064CD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C9D509DD-7264-4B95-8439-257C7F2B64ED}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{13B22781-F14B-4EBF-B562-C921F6741369}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{775153AC-7ACC-41EA-BCA6-C94C6722AA74}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6382F7CC-8D73-436F-8B7C-64134FAD0772}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F5A8B2CB-EFDB-425A-8B1C-7543550618EF}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{2686AEA2-BD44-4B1C-ABF6-0C50A6A09FAF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{528453B2-5FDA-4C60-916B-3D43D8600F26}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{1EB7D28D-3BAE-4355-A84C-13AED5B84CD2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0783611E-2C7C-4F9B-BABD-38AD89195A77}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C2254DBF-5998-4D08-9964-29043DAA54F6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A9EF9214-9538-48CD-91EB-6DA347E6DA09}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DABFCCFA-A599-4E4D-8886-73BA80A9DDA5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{31C613F0-11CA-47DF-85E1-F996CB0ABE8B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F89FBBF7-65C7-43ED-B4FD-EC4CD9CDB4CE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{70C16C13-C3D4-4E14-B40F-FDF5A4DDB608}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1FC736D3-1A2B-4959-9FEB-F3AFB87CC019}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E1177B30-FC7E-40EE-A7C4-F6404ED3C5E6}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C103D212-E0C9-4709-855E-379F65ED3A2C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0B9BC2C5-9994-4F24-98B5-8C5592BD0C6E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{413B8CDC-C05D-428A-950A-BDA23AC32A53}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{24DD75EB-1C94-4BD4-881D-74C9C045B831}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{25288CCF-AFA6-4CB2-83CA-4C8C82A7BD8B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C1EF4D58-F550-4222-AC07-1865245610D6}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{3D0E230F-C471-4569-AFF5-AC92FD195CD0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5405FC28-86E1-43D6-A2CF-848F340E5BB3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6F5E1784-B4E0-488C-8EAB-38155FFFFF96}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{35D162C3-5B08-4DDD-87A7-1655B8184982}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{53D20E5B-F8B0-48A9-9EC2-3629399FB813}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{485E95EC-1F2E-4AC3-BD26-1E6C86A28A6C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0FFB74E6-AD87-4320-B002-847BB4959CA2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E5E7C2CF-14A8-48C6-B2DB-6E111460667D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{824089AF-4174-4F9F-A8A9-7EA7827F2526}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{427D7CA7-B6C0-4F17-A8AF-3339B366E1D5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C1DAEDD1-A6D4-4FE8-BEBA-F060761DF913}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D4581BFB-75BD-4C68-8109-8C75FAB52D48}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A835FCE3-A522-497D-B3DC-7E8FADE71417}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{BC0B81AB-7E60-4BAD-A1D4-967A1F1B20BF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{38ED9F5D-93EB-4EB9-A794-1B03A3C0C345}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E190923D-2E04-4407-A6D4-3C098442A49E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{DAAD6B2A-9FED-4B05-A07E-8D4151853427}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6070F94A-1B6E-460D-BACF-87A9DA9D3309}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{9E712B80-1B96-4212-8197-897DCD3CD3D2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8373B196-9945-48C2-8891-7ADD51B51BB3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{98815D88-0A43-479F-8856-78FFFFEA596B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FFA27F7C-AA9F-4071-9417-9D6619262F2C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A8A80C58-7F83-412F-AC7A-961C056AB4EA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B7FAD3B0-F13B-464C-B99E-8DC19402A251}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E399DADC-1F52-494B-94FD-D6D57FA17287}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B3B7B43D-AF29-4B1B-BFCA-18BF115F652A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4295B0C7-0C64-4AA6-8AC0-E777C95A223B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{14A76231-D1FA-4842-9816-2A6B5FF17B3C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3DB3DE06-BA3E-46B7-8293-7BF966C7EAF0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E0CB4A6C-907B-48EB-B90E-F89B4F459036}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{1419B3B7-2DE7-4680-A3AC-C3E18919458D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{864A3979-EDAD-4813-A5EB-A554A0832559}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8E61C5B9-C90C-48D3-85EC-13D6B6D1CB54}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D13AB91F-6C95-4EBD-B6D4-24F8012F2BEB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{DA7F965B-16D8-4711-B5A0-DFB0B07DF2DD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{98BEE332-7189-4D1A-8397-594995F98DD8}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FCB77C5D-D1ED-4F3A-B6AC-FD0BB579443C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8F20407A-2484-407C-BD47-174C3C98F431}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4C9772BA-4CE3-4BE2-8EC3-BD320530350F}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{540EB172-A119-4053-84B6-8A8BF28BDD03}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{BDFF0ACE-5E60-4166-8D58-BF3287711773}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{EE3F0365-339C-47DB-B92E-9E0181CE19E6}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{59549C8A-9B3B-43A3-90C7-4EBA6AEAF0C0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3971D581-FD34-485A-902E-F905CE3A2FCA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E063F6CB-39CA-40DC-AE75-D9E17758C791}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0F9966DE-059C-4765-9008-D56781AE7FCB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3EAEC194-A6BB-4BEF-8C69-69DEDECEB4D3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4175EB1C-C234-40D4-8D39-CB28B43AD675}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0E8A819F-4336-4033-AC0A-3E77B4D43C80}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1C2EDBEE-38CC-4A44-97D6-CAA4F9D21E4E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9C796D53-A98B-4814-AD9C-A328F047A473}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B383D8A1-7675-422B-832C-8982F95F645A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{7BBC84CB-E8F4-47D8-BAE1-513506249BAB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C997E3EC-A64D-4B6B-96C2-F4670357C1E3}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{386A339D-D180-4BE3-AB33-9E9943130E72}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{F9DB02B1-03A5-4505-8554-3DC085A3C736}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{23F11D6B-1CF3-49B3-B355-C2BB0FC7BFCC}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{EB9913F4-4256-4F53-8800-7A358D4E42DA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3A468124-04C8-45FF-8B41-EA58CA86444C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F778F4CA-1A00-4FD5-AF3E-2F75418DB6E9}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{667823FE-B599-48F8-86E6-95599281886A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{AE91FBBC-DE80-4B83-B476-1F81AC780605}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{52C6AA60-76AF-4ED6-9951-635EFC44B7EA}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0CA4EC07-7498-4292-A839-5779DBB81312}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C4D6E8D9-B373-4313-AEC6-835EA84C843E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{DC2C3E63-877A-469F-A96C-B81F07E4F316}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{48CFE376-EFB1-4E63-AC36-79B08682A393}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{00E68A65-2963-4E76-8F82-5835B690DABD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B4D66F86-F47A-4311-88B5-9B393FD9D092}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{55862476-E335-4AC6-954E-3EBCC0C9E7C2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{78EA7B86-AB7C-4F55-B395-2C0EB7BEAFE7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{3D64426E-F4AA-4451-8A1E-613C0F55F34D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{AB5D7AF0-910B-4EC6-8A9A-C6C84C5C9396}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6B307271-55BE-4A32-B64D-B8BD48517D2F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{66D93B00-F2AC-48C5-845E-93D14D33C6F5}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B22DD9A9-654A-40DC-A2CA-8D0BCC1F6C7D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A03CB405-2842-4D95-BE7D-1E76EBF27ECB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{2F41D205-7643-4F7C-8944-06FD95D10625}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{493E8CB0-4CE5-4006-9B50-EB84FB1ABA7B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8FC90A98-ADBE-442C-A528-E960DCD28B67}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B891EB77-4573-457C-BE6F-D2A3B6088AF8}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D166C55B-2AF0-4A2D-AA1D-3593CBBC54C5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{533FB002-C278-4232-94BC-2AEB8B0C9F50}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B82A84D7-AE5D-48B0-AB44-1A149FC092F9}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{81EB3619-6A81-4319-8276-BA81BDAF9C9B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{F93BA932-E766-424C-8766-35BEC749A00E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{FCFABFCC-1A2B-4F79-9FED-2BFB9B54E48C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{307BD9D2-49B4-48F0-86C9-725814E69B4C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0B46B4FF-6A0D-4599-BD1A-025BA4B234A8}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{33502F7D-B653-4A37-ACB8-82295147D951}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{92BF5700-B397-4625-A077-F37D4D145082}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{85F649BA-00B5-4A32-B951-7674E2C808DC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6A8A80E0-7E2A-459E-9A63-55091C688992}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{17885126-6822-49FD-BD27-D8C0C153C389}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{CCB99A98-333F-4A24-B643-6EA66B82BB4C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{119FDFD8-D0C6-40B1-A12A-A375762A262C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{62A43B77-BA59-4444-933E-DADC6A2B6C29}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5812B998-2365-4158-BEA2-57F2249C95F5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{5D8DB441-623A-45B4-9EA9-EF3CE8B832E1}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{62F706FB-E06F-483A-A1B7-80661BEBE1AE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{60BF7588-3CA7-48C6-AE94-D65D5E1744F2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C5DADC09-AE2C-4F96-AE9E-55CF96A27647}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{704054EE-6935-4E8D-AC7A-486310981EF9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0C173067-53C4-4817-9BE6-C835E8C4841F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8D4D4ED0-B927-4A95-ACCD-846EAEECC996}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{51E9371F-B793-4587-BA0D-8EE43159238E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{73DB0D99-EAB1-48CD-883A-5613EB89406F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{52475380-123E-4529-B81A-EAE71B0FAEEA}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{1D321B6E-D58F-47E4-A694-0E6597F8C818}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{973E6B56-3A33-4960-B5DE-46FEE329C8E8}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C6B233F5-0C40-4A1A-ADF3-324D937AC19C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A8C0ED96-2C94-4AF7-8690-780EB052F7EA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D4E2497A-71F3-4733-92BC-7B8B8FD1AE15}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{3ADF31E9-03D6-4741-8DA7-D91F0761E708}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A27FCD56-7537-449C-986E-15608492F43F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{7A1AA27E-674A-4B31-A8D2-03DEA7322C6B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6F5B6856-0D25-49DD-945E-D5560671BBE7}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{01F45A75-D778-4A89-8933-47238AF42B12}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{50F60995-D726-4F42-BB1B-AA2E5625BF43}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{7213BF39-F14D-4914-8624-2C5FE754C97D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{1AF3D45C-DDA4-4213-82E4-1567C520B8FF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{AAD790E4-DBAF-4127-BD3E-B23F43F7A036}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C04A356D-73B0-421D-BF3B-7FF515C89ADB}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{845A7215-50B7-4193-AB46-AD75185AFCC6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8469C4AB-A8FF-49D1-BEDE-0B23B132B590}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{BA7C50C6-510A-4A4E-AF4F-4BF93DD7E9F9}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0E9BD617-6D5C-46CE-9B61-773BABF3D943}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D0C4D670-DBAF-4FC3-B21E-C591174A7751}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D928F8EC-F990-4854-B062-3496EBB613F2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{2CD9C71A-1AE0-4D95-9439-CA69A4DE8D88}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3F2CBA91-2304-4C68-81B1-7AE0AB6CD157}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{26BF118C-724C-46A6-A2CC-F3EE01C36201}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B64FEF9D-306C-4368-AABD-0B1C2CDA2D63}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D8F5E45E-4EF6-43AF-AE60-7FCA8D686DC0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B4185D8C-2E6A-4140-98C6-2BBAF014CAAB}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{80D09DB2-159C-4A2B-A0FC-01621486F529}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{ECA70FD7-C578-4441-BFF3-DC461B2A8C5C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F75CF05C-4AF6-438E-A911-6F8AC2EE004C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0A7FAB19-5DA6-4840-A97E-1061B05F8EC2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D0C54BC7-5612-4BF3-8B31-29092E4E7622}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{25169EC8-0572-4F2A-A3F7-49D0E0F5CB83}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{5C786718-D917-4FE0-AE8C-33FA7F8B010B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1F174BD5-C182-416B-8BC6-A2A82E171BF0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{709331D1-5207-4A97-BADC-378412817EAD}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4814EA43-2111-450C-A5D8-AA0F75E6A3CE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A7CD51C0-B0BE-4BA5-BEFB-736D09B66FCA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6C457D6A-43D6-4D82-ACF8-2D0B3C9F643B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E9702E1B-F115-4BE8-B190-7492366F384F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{54AD3631-FE62-4FAD-A248-0C8DC8B7CCBA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E41FD5D7-E61E-49CD-9297-EA146D30A57A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{29C57C2C-4028-4355-9CEA-567504962CB2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8556D625-BA24-4039-AADE-F6C82FAB1288}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D5B016A7-08C5-4100-8DEB-3EBC8D89F97B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E0ECBF96-CB16-4D92-8615-2A51A7E6939D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2C7E314F-23AB-47B3-A485-F75E6ECFDDAE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{33F0EE32-DE50-442C-9DFF-45DD1D34406F}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{15117031-65A6-4C35-9D43-2516B258F282}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{F02CACFE-7D34-49BA-869F-9793DE1A3DE4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6E695B3F-2BED-4A11-AF97-19AEFF6343B8}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0961BB59-EA0B-4EA1-A9DB-AEABC26CF174}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B056FC7D-42FA-4A36-8688-4511E3E508EB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B3CF1262-A7C9-420B-98CD-24D6F79D67BF}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FD200E45-38F8-4F68-9A95-83ADF2309D4E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{138694B2-33CE-40AF-861D-F0810ABE915C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{FA0E93D0-342D-4063-974B-11E83E8891F6}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B18CE3B7-298B-44E6-A7ED-A2569170C105}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{83E93F9D-F94A-4184-B805-226CA2D41DEC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F49451A1-ABB0-43E4-B86D-DA2A12D55C10}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8114A291-33C3-4E0F-ADF8-24509CA2BB9B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B76915C4-A79E-4407-9F79-B3B7749317C1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{574612FF-C6D9-4969-AA63-89401AB059CA}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{5C3D0018-C9DA-467F-9634-6167C4E5D1E4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5013D35E-6B4A-4F80-BBE9-BA09CFE535CA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{2490C004-4F7D-49F0-B7B7-642A86042944}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6C987A88-192D-4869-A94E-4DE2B86DB9EC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{7B8254B2-6E81-45D7-AC58-1D182398B497}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9361EF11-8AE9-4A7A-8A3B-26DE6872EC52}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6AD780D4-AF99-4DD7-BFCF-A270E9BBE43D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D62B70D4-868F-4752-AF89-DD390A2194B3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C0E9421C-006D-4897-A672-B6B9CC3E39D3}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A7808E76-7E7B-4AAD-AA76-66052884BD6A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6FCB1427-5C1C-416A-83AD-F296A65E011B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{950692BE-4CEB-439E-843F-5E8B4B94EF7B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8346CE05-FF86-4545-B0B8-B1EBFB3DECB0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D2BF31D4-F587-49D1-BCD7-3B2490513ED3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A87303AD-AC25-40E5-A727-0B0BDD3D5276}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{EC7753D4-1B95-423E-9B9F-DEBC73DF8492}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A2363AB1-E6DD-47EF-9815-D3DA29F9F350}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D184C8C0-8E1D-4CDB-98BC-E8D528CC8C3E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{160441A8-85C3-450B-84C5-D6A2431C4BE7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8B516322-AAB9-4699-89C2-2283D4A0C294}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{1494931B-7FEE-4400-AEC9-62C93B137CA1}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{7985AF7E-2761-4D26-A939-2AC98957540F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E4192B77-CE31-4465-B2FB-A1186D4EFF34}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{46C134CA-A444-4769-AEDD-D5F2B7942BB1}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{5C91EEFB-0829-4885-A285-1000DDBC3ECC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3A1F5791-8F1A-448D-A218-0F7CCCDC3301}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{2868A9E3-6A41-4891-BF10-62F1F485A86E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E6C6EDC6-C604-4D3F-8F0D-A751671F2ABD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{DF07CB00-3D5B-441C-A5D9-1B5E80D0E9CA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{37995322-0C8A-4593-B1ED-53DF202DB4B7}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6874A58B-D96D-4741-9491-BFCBEE777950}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B0DD9A3A-6D77-4C90-9178-74125E3970B5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{CF196320-3BF2-49EB-8380-DBE4B41F7B24}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6D501580-A618-4BFE-AD40-1F42D0945FFD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{188CF617-4F5E-4139-B3D0-89633FF978F5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8BC28E1E-2517-4EA6-AC75-5D77F7B44F9B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6B5FE358-E619-4730-BA09-81A3B884A54C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{74914103-36C1-4846-ACC8-2463EBDBF1A2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{3566F96E-B0CC-46BB-9DA8-724EF7147CFA}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B20D159B-1414-4974-A813-9C0C8293DDC1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{4AA1FB89-7E43-4392-BC0B-281F221BB19B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{1F50CD6F-1427-4959-950B-5A6672304732}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{1F631AC8-825C-4A12-9920-CAEF4432E383}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{05D5CDFC-26B1-4480-BF7B-7B8ADA26CDBD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{CB0A172C-A52B-4A28-A159-0E11293C578E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{40940A99-99FA-42C9-9971-C2FC0A0AAF5B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{264FF37F-EA8A-42CD-8E9C-EB865A2C2A06}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{5106D5CC-1D44-498A-BEB8-976975BAC6D0}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A2912576-1DB5-45E4-B8C6-D6744630E0C4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{12B970D1-A764-4CEA-A093-4707AF4E02D0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{985955FD-BA8C-4F2B-BC2B-99AC79226352}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{59EC9D35-8553-4BE9-A8DF-9A3D0CE7038C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5A5E9990-8950-4EC9-A7B1-05976AC2943E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{83C4042A-7ACB-407E-BAE6-B09FA23F939A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{74CCED4B-5BA9-46DC-B6C2-BE08200E267C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{448B1EFD-C6E8-402B-A8D2-94EE11669EA0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{EEA7DBAC-D21F-418A-AE16-46872ABFEAC4}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{00C2E12A-75C7-4F60-B933-EA716129215A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{19ADE063-E1BD-40CD-AC47-CFE9B314C326}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B895CAF2-356E-4940-B3C9-ACC483D6EFE1}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{909E76E8-C99D-45C1-AED2-58A4D2AEE3C3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{4F034E37-2CC2-4966-8DDE-8EB390CE0FDD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{FB8AAC2F-1EB8-4A5B-9EB1-D78E69444C60}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E66E703F-5BBC-45FE-A431-947DC67B45D7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0D4998D4-6C7C-41E7-9B40-0869BBB66F1A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9CAE75D5-80CD-4AD0-8968-493A1B51363E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{359941A1-DF5C-4C73-874C-FA1DF391BAF5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0CE91F63-EC42-40E4-A315-21F86ECA40AF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{207BC24F-611A-4A7A-B375-29D119487F78}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{22A2C182-B33C-4517-AC6C-3D77F9022DA0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{46E7BF3D-FA77-40EF-BA03-45D35CB45F85}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{02B0750C-9C34-4F88-84B9-4D9770C11829}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{48E5092A-F567-42AB-A8BF-7AF89065A394}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1BE40903-2B91-4139-B73C-0FF5B09C05AB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{AC8D8954-11AC-4CF3-B9DA-33F95C41F173}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{27B1F87A-C810-491A-9B93-747F1C67475C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{20D6C45B-F9D9-4BB5-9D97-0FA2E9C8321E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{44693378-76F3-47A7-B384-BD1599C8BA5A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{34CAE5F1-9EC8-4DEB-97C2-7B5ECAE5B2E6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9C65E04B-849B-417C-8AE1-935248D1DD0F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{91254C6E-85D6-41AF-AED5-E3F9B76030F8}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{497EEEEF-A83F-4A3D-9681-FB9F00FF1804}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B0BC3641-B8DC-4E66-9FA9-0E70B63C1C5D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{FBBF95F5-7FC5-4163-8F65-922C55297B87}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4CFD7F73-C3D8-4EEC-B407-1F07B7230350}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8A859E79-F4D7-40B9-9FDC-FF3B2DD9B1FF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C6D8A888-EC37-4FE7-BC83-755BE97B0691}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{57A257FB-2BEA-47BB-B43B-C63949C19164}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{AFB4800A-437A-4F40-A4DF-E1F98C75FAE9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8C82D6BF-358B-4841-B611-27F5DF19DF63}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B6B1F9E8-C433-4919-8D4A-D5087F058C55}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{291DD801-8C1D-4C23-818F-6B998B4EDED7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{1EDED189-B823-4FD1-A3CD-6C5A0F9A3919}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{89931647-9983-4226-A424-C6F4E2BC850C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{058B1A1A-EEAF-4645-BFE6-A8589AF8C76C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{286214CA-D9AB-425A-B28A-BEF3C8BFDC38}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C7FC7375-F052-49F5-9EA6-738E33AC4A26}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{FF52BC7E-EBA8-4EFB-949E-3AD08CA1735D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4E7D6BBE-C455-4CFE-89F8-5DEC20D39C42}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{24178214-94C4-4B0F-95F1-B57725DB1192}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{88642355-D445-4974-AC78-FF0DF7A36487}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{86C3029C-AC76-43ED-AA1E-B58C528EB35E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{9C8BCF9E-4E1F-45EA-BD7E-06C50904F83E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{994FA1CB-788E-4B97-B606-10191168FD6C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9B8E21E1-6EF8-4C5E-AC62-31DE86A94148}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{67D7B187-4506-474E-911D-89FCA2D120DF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{76412832-4F79-4B48-8599-D8BC70A2C028}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4343BEC3-DBEE-421F-BE81-5E89818BB00E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{95F4DDC9-6E6F-4A8E-BD1F-E6327B047F8D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9F9AEC1E-8972-440C-B920-EEF7D81BF296}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{11CBD275-C0DC-418A-AF23-BC28142CABC8}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{AFD8332C-0D97-48F3-A738-4AEF486012A7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{DA55AEDB-5B80-4F11-B577-88F9A5893ACE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9EEA9116-CC6C-4956-B90E-F44D4C36E2CB}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B99953B5-9529-4B36-81DA-21F8EDC34259}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8C31A05B-A9BB-401A-8D33-BD846A27D492}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{67975313-3464-4AB1-A78F-A72101734DF7}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{09EED4E7-126A-4BA4-A63F-4C74178513F9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1F075A51-2431-418C-9664-A91D006EA526}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9722DBF8-0A79-4EED-8931-0E363C9DD3EC}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{690135DE-269C-4A9D-BD29-1F489B617654}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C0266AC2-E66F-4EE3-9607-13FBD09F0A0A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C3638EA5-A9A5-4D17-951D-11F18EACC3AE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{3F25371B-2428-4E34-92E3-1662A527F330}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{556266AC-E381-4E00-BF6A-46CA657696EF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E727656A-C54A-4853-B95F-866E66992B45}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{55C7336F-6D4C-44C0-A02F-8E094FA27796}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B4D8003A-F85C-4195-9A92-3EA685656049}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{2E4B15F0-BA28-498F-8EB8-B717025A9243}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DC7C0933-EF58-4530-94CB-0F94DCB5C861}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{ABAA20EA-8961-40A4-8CCC-4D93099B9A38}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{58BE2589-0A61-4200-8C73-71C64034DF55}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{CD07A024-91E9-4928-9C3A-3AD2C6CADCD1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{12E9A1AB-B4DA-4711-B3C0-8DA37B4AADEA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A962E5A7-888A-4733-84B3-B372CDA283C9}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{EDB9D0FA-838E-48E9-B433-126D7065B3BC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E664B1D5-FF25-4427-901F-31CB2CA1B5A3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B72F7B90-0356-4847-A59C-E69E67F983D5}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{7D190563-4571-4666-8B90-01519E9C3A16}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{F6700875-039D-42BA-B06E-FF6E95D4EF2A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D331C90B-5995-4CE2-AECF-B81060244B7D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F82D7FBF-D03B-4DE8-BA77-C813CA0A357A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{11043618-7492-41B3-A98C-13832AEF1E94}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{DAA28638-8B95-43D2-9166-8DC8A7B4723B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4E692879-321F-41F9-B30D-D5C313258807}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{39BB5398-2256-4E19-AEE0-B56DC9358932}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{5570B0B5-26BC-4BB8-A322-7218923FBCC4}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DB9DAFA3-18AC-43C7-B23E-B0B2E174AD8B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{BB9FA081-382E-454A-8A54-6C9843169742}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{2F3B25C1-D92C-41FD-BC08-A900E3E90FBF}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FCB19D67-2AA9-43D5-A256-CE28D0A328D6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{EAD230BC-B7AC-487E-99C9-9C37AF0DEC3D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{AB3C536F-E0A8-44C3-B35A-225BDFCB987C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{54074133-419B-49DA-9513-29FB0EEA48D7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{71B86CD6-0EF8-4773-BB2A-338003DBA159}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A6E960C9-84E2-448B-A653-68562E0BD212}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F957EF87-586F-4635-86CF-E2907DD8044C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3BD67468-9B3C-4250-9C54-DC8E89D381BF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{77A54EC0-3306-4C8D-8855-4D0097F14E7C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{29A7A539-4849-480F-BD50-027761CC5767}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{CCF77C7A-E115-4CB5-9CB5-B29628D7FA48}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{38BEC667-8DAE-44AA-B25E-2BD24560656B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{3CB4B7B0-7426-4E11-9E88-555B422F82C8}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{48837371-86A1-429B-B7DC-799DDE2CCC44}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{BCB0D966-C61B-4D95-A3D3-FD66679DCD16}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C11E1D93-93F6-4C3F-9D81-198CDF8F0E8B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{CADBD04A-4625-4C01-8583-701E2717D376}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{EC2B051C-1F0C-4FF0-A8E9-B926DFE169E0}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{7391AC2F-5204-4D2D-BFB9-A7E7A686B020}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{554E7F14-CBCA-4564-AB75-8AB654145E28}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{14BC56B8-BF8B-405E-90CA-33AD8273B91A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F7FDCD41-3286-4192-BA94-E90F1F3FB700}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{AEED2BFC-4545-4A43-9CC4-E47CBDF5101E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{313B8EF3-4E51-45B4-BF7E-D308728188FD}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{2DCC08EF-0409-46E2-9899-986FFA35CA2D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{84BDB265-5C37-472A-BF27-B0B12DFD0DC0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6F5A6A20-5450-4F84-902C-D9105FD01C9D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4E5BDDD9-6EA8-4154-83B5-63118B3BC111}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9220D905-F3E9-4544-A2CB-17A9C1B0A1CC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9A74DF7A-DD51-47CA-B9BB-95649A5D637C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DC45A9E2-5748-4193-9B6C-C3C9B182FB0F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{74BA16AE-EEA9-4B58-B807-8C200A796E4A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{227DE9D7-6583-4F35-91FD-850812FCA1B3}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8680A556-CC45-4511-B880-EE2917B60F1D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1AA9DF4E-21EC-49F5-89D1-7496EE3663C1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{CC9C1603-F609-4963-A09A-41A7A00E33D6}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{62AE8BE4-B651-4856-A5FE-3482A8794A6E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{4B003FF5-EA50-40C5-A8CA-91A8224CBDD4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{87386910-C3F9-43BF-B0AF-0A688D3BBC16}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{73A141AF-E5E1-409B-BACE-3C6312E1FB72}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B0A38126-3F87-48BE-AEDA-E63977C84C8E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D0C4795E-17F2-4A96-B8B8-DE9A76FDF30B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6BE9E673-C790-4F42-9540-3F060BB51C54}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2EADF4E8-14E0-4F5E-BD5C-3C80B6698B31}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E1ED7EBD-3E8B-44F4-88C4-42BC161721E2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{AF1C2FAC-C536-47B8-9BEB-8D292A740298}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5DC2D91B-2A29-470C-9543-06B586117E43}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{7B0CE01E-A369-4DC5-BC9D-9C710F0AED99}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FC061C6C-BB11-42E4-9FB0-83592753CFB4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{89BB5A1C-CE4A-472B-8ABB-D07060F6AD4A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{CA25FAD2-5FB2-4E76-BAF1-692507B11406}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{978D4360-0677-435A-AB52-8455E306A402}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0B7835AE-855B-45C8-BAB5-D781B7F27FAF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F5AC061C-3CB3-4FEE-B5EF-BDA476A0F8D9}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D22DB86C-0E42-4214-A904-9617BA8BB83A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{14545B66-1602-4BF0-8AD9-322322D1A509}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A2E5E1FB-ECDB-4F52-BBD3-28251FC7BCA7}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{45D9D60B-9726-48C8-A30F-7724D61AC0E6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8DF24D06-5F99-4CD3-93B2-CE9A42715875}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{88ED2B21-82E8-45BC-A0A6-274B39CF81C7}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B12129AA-24D0-4567-BE67-05325471AF22}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6E2D4601-B191-4EFE-B172-72918B28DD7A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{11D42468-2E5C-42A0-B7D5-99A32246A9CA}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{AE7336E3-2FC7-426B-B1FA-FDD8C1BEF9B5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{EBDE0BB7-87BF-4BC2-B823-46CA3794B2F1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{BD3B18B1-E0B0-48C3-9BCE-17371768B4BB}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{9AC91526-4561-4049-B7A3-C3AB27C1AF45}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{47CA5F12-0C10-4A1F-BE7B-CE724BA89006}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8D5624BC-71A8-4E09-AC9D-B4910710591D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DA547B60-6D69-4B79-8454-A0C6339C14C7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5133BD8A-22E1-47F0-9E39-9F94A6996B15}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9E387DFB-77E0-4FA2-890F-6E1DAAF73C3D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E6290D27-A111-47EE-AE07-8EF13DF33FC3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{33DB8503-BE97-4308-B59B-657A0EE4E283}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A8DD9236-6A4A-4DCF-857B-128C4C24E628}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{517C7CFC-EBE9-443B-B9FD-3FEBD02F4C8F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0A5FD172-1613-4B46-A765-786E9D618B2B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{189F2A2F-0CAA-4E57-AEFA-26192B548FF2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{15AC8E97-9B13-414B-AF2A-558C656A397C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2D69E998-3A46-4D87-9E18-A8A0EF921239}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{FA12A685-13D0-495D-BB5D-797E1369AF5B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6B6473AD-52D2-4413-9A32-758C6B03F0B5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{49758F8B-23A3-4840-8E63-56414E6C5B36}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{3C02D27A-8BA7-4D69-A6CF-277A10522934}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D0FB58A2-B648-4342-94BC-2DF7F82A4E82}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{852F9F26-520B-4148-8620-47554350E60E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9EC6BE83-46E5-44C2-9FDF-C49385EF2B27}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{61810013-C84C-43DC-9FD6-84C61A9281DF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{32F40F3B-7C98-43B8-A934-1A14FE3479AD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{151512A0-BE9D-40A1-923A-E4667A39FBE9}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{EF5DBEF4-41F6-4EC5-9CA3-079260012BA2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{FDD05BE0-0AFD-47E0-B291-5391E82E07FD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe

troianjoerg 03.08.2016 10:54
Code:
FirewallRules: [{25F54E89-17D6-4501-9864-F3CF168DA69A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DC5708AB-199C-4189-92F3-130E78E57703}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{5BC6E861-7B50-46B4-AE0D-E15274C0035E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{819C4B39-E491-477B-B7BF-5DD3CF66490E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FBCB490E-314C-40CE-94A9-4D0CF6FE8EB6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2329738D-3F27-4242-9FA5-A900B115BA1C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{508B79CB-931A-4A4D-9A66-2D9D59F3ACED}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E3821E54-4F7F-45B8-A7AA-7D0F23819490}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{604A165E-2527-4FE5-A862-C9B1CFEB6E06}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D275AB36-1169-417D-8513-8732FFBF39A6}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{1294D145-C5BC-4304-8CD1-7D117F2F073B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8547CEF2-843F-4612-AB54-39AF6134254A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{07CAB72D-635C-480D-89D3-D53241B011BE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8AB5AC3D-8572-4F44-990D-4CE0CA096291}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3E0FBBB2-9365-4219-A0FF-E1DD857CACC9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{665A804E-1C46-4E68-919B-A118CBB18E96}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{0A0209F5-6BA3-46A3-9486-ECC44558E50F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2C6531AA-4DCE-44DA-A226-67510FA8F9E0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{7FFC8665-3457-4040-BA26-C4394841DF74}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{9F0E9679-9486-46E9-9B28-9002C0127F31}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1F904481-3EF3-403A-BCAB-16E3817AE811}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{13C93BEA-541B-4443-8DAA-9194E494D709}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{635651D7-4582-438E-A68A-1397F52D5629}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{03E06EBA-803A-4B6B-B869-52AF51C29246}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{BF0A2C91-96EB-41C8-B028-5083052D2199}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{1F520294-388C-4693-A473-1148CD6DA381}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{FA7A59EE-9DBE-480E-8A5A-14DF419EA0C6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{C701FB56-A7FE-4118-A04D-6549301C1014}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{5C57EF72-B56C-4503-B143-5DD60C96A8EA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D98EE955-7699-4FA7-8353-A8E6DAF88448}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{FC10E48E-FFF0-4857-8F96-1E9225E844AF}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B5C0F48E-1B71-4DD1-AD9E-94B93A73D1DB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{79AE5A61-4965-4A53-BFC9-B968539FA8ED}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E81AAD8F-B90E-426E-AEB4-202E707F08C5}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{92BE0AE7-3C80-4BF5-AC21-C78E5AAA762C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{545C227A-5F8F-4021-8E53-1D3543E36559}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6E8787B5-6852-4160-98E7-412AE20883D8}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F16624B6-B72D-4818-9903-3BA219A1B51B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{C950BEF6-69C8-45EB-99C5-C9E85AA9C2D0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{47EF46F9-B862-490E-87E0-DA88698DB2B3}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{83F2375B-54C2-4B1E-95F2-89D34282C6E8}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A865D82F-99A6-4E5C-8A89-9340BE774AEC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F669DBBA-0FA3-438D-BE75-08E45CAD5312}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{5312E103-4442-4CD5-844F-EE266ECAAEF6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{7D449C77-9400-4BE9-95A0-7364C4BFF41B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A0355262-07BB-4E6F-A976-56BD0460955E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D1BBD777-FCBD-4168-ACCE-59EEB282B1F5}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B7D1DE6E-E973-4AE8-960C-94ECC4DA7C0D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6B17F9FD-E7A9-4E3A-9B2C-025D03CBA05F}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A4C95AD1-82C1-4C0C-BDD8-73C2EE761B0D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A98A5DC8-939A-49CD-B3DC-995E366E9DF9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{842A131C-90F4-4D6A-BB62-1384B9186F8B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{39358920-1910-4F48-BCC9-622165D8D237}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{BDB522B0-8F69-4092-B28B-22517988C16D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{744E9969-A90B-419C-B4AA-51E55D910F62}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{2B47B97D-8B0A-4636-8CD0-C490108C1BDC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3A8B60F9-D79F-45ED-97D3-7CAFC2325982}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{1E3B5E01-17C1-4F60-8A7B-0C5DD12B28AF}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B69E767A-9A72-4839-9EC0-5D453A6B372C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{FE41D078-57B3-42CF-A288-1F30D716AE19}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{8127FFF6-55B4-428E-AC8A-9AD463B8EF87}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D6E9BE0E-E359-42DB-BF5B-137453444836}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{FD433932-BAFE-45BA-BAF2-3F545AA6B1D6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{70E27DAE-7CB8-41AA-B12D-C66D01DF3D0D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E18434C6-04D1-4601-8C8F-26E5726E317F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2ED08F79-15F1-4C29-9660-5AE9DC9E2426}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E73F5F53-FDAF-4C7B-AFEE-94AB532401A4}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{709A8E12-7318-440D-A0B5-1EE7714A7B16}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{AF43AB0A-E655-46AA-91F0-7A0A708A4CFC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{78FB8DB6-205D-4123-9DD2-7A880C865B90}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{9FFFF730-6577-4238-9272-96BC058A3806}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B5B3434F-EB94-4ACA-A497-5688668E6ABD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{1B762903-B08D-4E6C-9007-4BDCEC34BACD}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6F7884A7-DFA5-4658-8E24-5B3962BD462A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E82275B6-14D6-4AF8-ADEC-A03E2288AFD1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{684BF364-ADF6-482D-AEF8-607CFBBE3685}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C55539E1-47BC-46F0-8F88-CDB759A66FE1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9E315ED7-A4EE-4922-9139-783C6CDDC7EA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4E99E9F7-EE10-4AE3-B370-05C76FF48EA9}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{CDF755F2-9DB5-4890-83AB-0B770EC54965}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{45779515-91C8-4A17-869B-C8C6066FCF1C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{654ED45E-56AB-4960-94CB-9FF936BB8179}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{3EB1826C-F1EC-4AF3-A721-02EEC140078D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{41B949D6-4D17-4E80-9DF9-99280F88A2D0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9A9E3F09-01FA-431E-B7E9-DC988BD96878}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{12436820-390C-48FC-9550-187AE34C3AD4}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2069E7FA-6948-499D-8CCE-9CE4BF7A6C74}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{2FEB3F95-BCFE-4C84-9744-AB9C007AD5AE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{729493AA-B4BD-4E74-A79E-CFA1F80D1C3B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{6405677E-23A4-46BF-8FBF-8FA675236C38}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{98083781-BE43-40DE-976A-D763F03EFBF8}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{CD7DDDCB-840E-43E4-9785-BE17DDE1DBC3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{ED906EE7-BC3B-4FB8-A700-F88250002D61}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F789B0FA-1675-45AB-893F-53857A81521F}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4FD879BE-38C6-4FAB-8F49-1B151A642FCC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{B13D62EB-8D15-4C4D-B863-83817185F593}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D99159DA-BAA5-4998-8E01-1EDEE74699CA}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C7AF983C-B653-43F2-9AFA-732DFFBCA131}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D9611D52-9DE6-417C-90AC-0D5F612B54BE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{903A8DD4-A493-4934-AA7E-57DD4B178C88}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6FA5E2FB-DF21-4B8A-8E91-79477BA6FD24}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{622B254E-9B29-491D-99B7-9346EA58AB27}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E81675B8-306A-4D85-A30D-0016760CF6D2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{18C8DEF1-F8E8-4AD7-9006-918DCDDEC324}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1798724A-AC4D-4491-8BDB-B91D08F499F2}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{D56DC65B-B2A3-4761-9E5F-978DA54BB8AA}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{42EFCF1F-468D-4070-9E58-F4A3F9AC5908}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E0A6386A-5108-4770-A842-4D026E5E7521}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A120D0F9-0C6E-415E-949F-88B637A3D663}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D4BF27FC-E784-428B-977B-2DE3483F8283}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D9F78909-247A-4663-9BB2-EC75334A8759}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{573948DF-22C6-441C-B82B-30F1C16FB999}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{CA38CFD0-F90D-4E98-A3E7-9C112D729726}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A3BB2990-D748-41B9-B968-F1D79A58EA0E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9530BA8D-C5C1-44EC-B8AE-E91A5FAF845C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6E6F36EF-5A44-4417-9F66-7E7541A2CC48}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1469EA73-0639-49C6-A4CD-339059B9E357}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{62BF4F09-9BB5-4646-AED0-CE74B62A07B6}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{FD23BDD9-AF00-413A-9B79-40C2CA88956A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{ED09D223-5440-42CF-9D21-C20A7F6A851F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A4277561-2F9A-4E57-AFE8-03784AB6ACAE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F96229EA-1AB2-48EE-93DF-165DA71B172F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{BC56E512-6443-4B7C-BEB7-C1D36098FD94}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{855A4A68-4F73-43AE-806B-10164B8163D2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A16E2D75-988F-482C-9BD1-AABBC56DDCD6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{27E1E540-5EE6-4ADD-913A-02947531D98D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E820C4FA-7106-4A8F-A852-66E0DE4DD860}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D5013795-BAD6-4CE8-A5D4-8130230BCDAD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{154F9E79-652C-4B3C-8DD2-E8F654BD9137}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{7166C96E-9175-444C-B459-411306335C1C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{08849A78-36A2-48A0-9705-919B8DA1F533}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{2EDD8E47-0C27-4402-BDD5-7679EB45E39A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{0AB6E1BD-27E8-4C64-A505-265D7D33874C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{86D9736C-DAE5-48BB-9FA0-6393C8626C2A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{F35E9E83-4C45-4B3B-B44F-0D2CE9C53A8D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{EBD0F645-BCBB-4191-94BE-E25902F4D0F6}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{80971479-3385-4768-9C8B-F422D386A70B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{FC6A11DD-ADBD-4DE0-9F26-81C5D2659293}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E60854DA-560B-4544-BF20-498F3CE280D2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{5B52F4EC-367A-4D56-9CF7-2BC2CCA0FD3A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{BA66B34F-7C83-4597-B517-3B4C02F95E69}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A9551FA4-F837-4B30-BA30-16FDAC526DFA}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{505D735C-063E-4A56-A1F2-59F1BF7ADB5B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3D77A280-246C-4E42-B15E-606DD975BB33}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9D5C08DC-BC2C-4A1A-AD30-BBDFAADB1BC2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A1446EDF-CCC3-4838-8D7E-CAA7C0FE7D30}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{13C15004-7030-475F-892F-262B0452D7CA}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{5BC9A4EF-D3C7-451B-AFC9-6DD2A36485B5}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B754B178-8669-4928-BA30-32F050CBE83B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0D25278B-5F72-41A3-993B-8D796CBC7702}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{48AD946B-7BF9-4C64-999A-53968FF0F694}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{02B59DE2-A91E-482B-BDBD-18E42468022A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0C7F1237-905D-477F-B3A0-3977D99A38BB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B8CF7386-BF89-4D2E-B005-CC8971A82906}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D915B337-BC2E-4138-9104-D010FB4207EE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{67292603-0730-40F9-BB2A-C29F058A8778}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{56217189-874A-40B3-A9F9-CCB32AD2B179}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{1792E5D6-A35D-4D25-A764-CCA377DF80F9}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0C074780-EDCF-4D68-9EE0-6CF749A39FCB}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{713D15AC-2B19-469A-B102-B2E3BBE83903}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DD1F275D-03FD-48C5-BC2F-596CCCE7662A}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3E48634D-1A4F-41F6-AA54-C173AC72D718}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{29970724-481F-4972-AA4B-B2684C0D670C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A913AA33-ACA2-45D4-AF25-7C8225B59A98}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{CA65C9C9-7FB5-4946-B818-14F31B536618}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{9452E6E4-2BBD-4E84-9232-FD8CF1DAA28B}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D99A8345-5FFB-4995-8C62-DCB441B877C3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{40E7646B-65CE-4E11-B6D6-5596E5688279}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{EB366B36-AC0F-469C-9DA4-F45021034FB0}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{4B1E172C-8B51-46ED-B8FB-E0B5DD16C4A7}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{AF0D1BA6-4EB2-4960-9B64-FB5C0AF1B470}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{BA0C588F-A8D9-4AD7-868D-2E27C6F162D3}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{83893E8C-0178-45CD-97C0-7947F30DDD50}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{EBE8E5C0-0E05-4FA2-AADE-43E72781E3EC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{BD4CAE44-F5AE-46A7-B882-B3F0BBB428FB}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B71BEBB8-D8AD-44A1-9E40-C10106623B8F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{385942B8-6389-4C73-A25E-8A5D341EE94B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{16D0D2A2-C02C-47D5-85D0-9C78A9AECC8A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{D46768F9-6E03-48B0-BEF3-EC76B9DA69C3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{3AF79131-F04F-4628-8C96-B22D43AB61CF}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{EDA45BE4-EBED-4D81-AC17-44BABB4D73F9}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{01309032-28F4-430F-B1A7-CB380642886F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{02B8F675-45A6-4394-8A14-713D5FCBF071}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{FC56911E-0F90-46D0-8090-A28017AEDBDE}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{57CCA08A-49D2-4EC4-83D5-36F81C323AAC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1228B531-6B03-4358-BA07-A1FC66DADDAE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B82A3069-F4A0-4E03-BD29-816B657FC946}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{2707F11D-2508-444D-94E5-F9468E271002}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{AD8635C7-E548-4B3E-ACD8-0443B23B2BFD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{5FA5AD78-E854-4323-A97A-C51E4C80181A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{E04211ED-3EF6-4E63-8E9C-6C76B78C6E4D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{26D52E90-1A8A-4770-AAAF-3C94A93B0954}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6012239B-4D96-4E6D-BADB-E66D14202C8F}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{320F25C5-655D-4D93-8D6D-968B08E233BD}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0F00BC26-3915-4F9D-92D2-7474B422FCAC}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{0E173442-B905-4342-B1C2-0991B22E6EB7}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{3CCA45A7-978A-4878-B1E2-6D7C6DEDEE35}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{49FE8B5B-B40D-4B37-AA04-82DDCC5E39D1}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{DA0E9944-09A8-42B5-BA65-DC406ED89F4D}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{7D1741F0-1C9E-406F-A07F-F97EA0DC20E8}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{1B12BCFB-78ED-4E3F-8AA6-A535FA648F42}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6C1175B9-3856-4D8E-8299-1C3A0F6DB2F0}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8F307D12-A618-4F80-A5FC-210D9F4C2835}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{803B53B9-7BF4-4E1A-B3D2-5D0EE5A7D78E}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{25AA2241-7456-427F-8AE6-5068E9B8A1A8}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{7A46B698-9347-4E57-A9C4-66B189FD1309}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{978EEBF5-AC6A-486E-88C9-6CA40AA7BA16}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{421612DA-4D84-491E-9C15-6C1DE58AAEB5}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{B0F267C9-DADE-401B-AA0B-AC7B7618698B}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{FF17A11A-914A-4259-AAFC-5EFD17A8031F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{739C2A50-CB3F-49D1-A921-384EA393F728}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DF580699-4A52-41D0-973D-DA97B85865A6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{0216401F-B27C-40E8-BF29-A23FE4729793}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6439A7C5-1E8E-49E3-9C3A-A0EB8BF54F9E}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{DD7D6141-CD07-4A9E-987F-11EE6194E991}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{04BC02C5-0EDA-42F2-B2DD-0528613F4417}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{079136E9-8BB6-4353-AD95-846664C651C2}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{2248AACB-A812-481D-B3C5-8A6828BEC06F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{D4B7985D-831E-428B-ACC6-17B364A89B99}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{F9031BB0-E1F2-4052-A77C-EEBC1C3C649A}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{8C6F65C2-9C73-4571-B22B-9F38D4E5C2EE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{A916F431-7147-4A4D-A100-52BC220093E0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{6F5EAE81-8034-420D-9ACF-381BA5D1D08F}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{97D119EB-F757-4071-A7CE-2A814BD39C02}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{933F138D-07EE-4757-A8B1-80E094F61599}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E73C0E88-8F1B-48F4-90DC-26C5F2A50851}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{72547D71-026D-4EF6-916F-77070D55BA5F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{59CD75DA-157A-459B-BBB1-C829D53670AE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{E926FF4C-8F9B-43EB-A413-8908DDC29400}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{6B24A160-3CD4-48A7-9C68-379B887AB41F}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{79DCC22C-8176-48D1-91D6-E139A6EE5F79}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{36E0B24E-28FB-4868-9D67-F29B3AED4236}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{7A63C25E-EFFC-4206-9244-CED37DA557C0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{7E2BF116-8A7D-40EA-B7E0-E65E369B03D3}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{4D6DD33A-D248-444F-8905-F527B37F654C}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{F79674C4-110C-4A1A-843E-F0DB10FBEC09}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{E9F02898-7031-40AB-8C64-680D6841510D}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{EC5429F2-A092-4866-9D51-59576020CB46}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{A4833FB8-A49E-440B-9519-7895A08A0AB7}] => (Allow) C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe
FirewallRules: [{469ECB8C-9942-485B-8440-38BBA992BC73}] => (Allow) C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe
FirewallRules: [{1ECF1071-1241-417A-BEA7-77449FCE3CA1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8988CA1E-2838-4C5E-A353-68CAF93DE8BE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A714EAEA-9D0C-4F5F-ABDD-A4C37061310B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{1D249B55-84F2-4CB9-B18C-05FB4A2F53E2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{93A1058C-9D65-42F1-994C-457A401BD254}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{7D502237-05A2-4C8F-8971-95EE2F120600}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4FBB29FF-652D-4C40-B407-D5BFD013AE94}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{79AC8DE4-ADAA-48B7-8BCE-181628F790A7}] => (Allow) LPort=12292
FirewallRules: [{0DBAD7F4-B195-4E7B-8870-86A5A6510B0B}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\devenv.exe
FirewallRules: [{1185DF2A-909D-4C2B-A3A1-99F281539659}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{767EF648-E07F-4DB3-974A-7080FB413CD1}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{F2573A66-AB99-44EB-99CA-36A7DAFC741A}] => (Allow) LPort=1900
FirewallRules: [{3B232EDD-E1BD-4401-860B-20C59D7376D4}] => (Allow) LPort=2869
FirewallRules: [{789B1214-9E6F-4386-828C-5620981C6DEF}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{02EE7B0D-024C-4CB7-8268-EBB69D2B0A9C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
FirewallRules: [{7B147275-714C-4838-AF8C-6675690FD600}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{59A87BA5-0D7C-4D1B-AB63-A40D3CD501B1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{455AC582-D849-496C-961E-2C3943D5701B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{321EBC11-43F1-4568-9D7A-C64A4A4EC096}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{00A1472C-8149-40C7-A11C-FB4544E9C456}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{B7C7C0F1-42F7-477D-B651-BA38A4EB64D6}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{8E533B69-DD76-45F5-B056-4EDBC6712613}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{C939ECB4-A2EC-4C0F-A7F3-015553407C1C}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{45C96277-B3EE-4A5B-86C4-E7B58949B0D0}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe
FirewallRules: [{9111456C-521C-4032-8A3A-11FEF55EDCE0}] => (Allow) C:\Program Files (x86)\Dell\Client\wemon.exe
FirewallRules: [{CB71B2E9-14D7-4118-88DC-4A300FF2C178}] => (Allow) C:\Program Files (x86)\Dell\Client\wecmsg.exe
FirewallRules: [{A62C9B23-BD54-4385-82CA-C0382E5B3DEE}] => (Allow) C:\Program Files (x86)\Dell\Client\wecdt.exe

==================== Restore Points =========================

03-08-2016 08:48:39 Windows Modules Installer

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/03/2016 10:24:03 AM) (Source: VSTO 4.0) (EventID: 4096) (User: )
Description: Anpassungs-URI: file:///C:/Program Files (x86)/Common Files/Microsoft Shared/VSTA/Pipeline.v10.0/PipelineSegments.store
Ausnahme: Ausnahme beim Lesen des Manifests aus 'file:///C:/Program%20Files%20(x86)/Common%20Files/Microsoft%20Shared/VSTA/Pipeline.v10.0/PipelineSegments.store': Das Manifest ist möglicherweise ungültig, oder die Datei konnte nicht geöffnet werden.


************** Ausnahmetext **************
System.Deployment.Application.InvalidDeploymentException: Ausnahme beim Lesen des Manifests aus 'file:///C:/Program%20Files%20(x86)/Common%20Files/Microsoft%20Shared/VSTA/Pipeline.v10.0/PipelineSegments.store': Das Manifest ist möglicherweise ungültig, oder die Datei konnte nicht geöffnet werden. ---> System.Xml.XmlException: '', hexidezimaler Wert 0x01, ist ein ungültiges Zeichen. Zeile 1, Position 1.
  bei System.Xml.XmlTextReaderImpl.Throw(Exception e)
  bei System.Xml.XmlTextReaderImpl.Throw(String res, String[] args)
  bei System.Xml.XmlTextReaderImpl.Throw(Int32 pos, String res, String[] args)
  bei System.Xml.XmlTextReaderImpl.ThrowInvalidChar(Int32 pos, Char invChar)
  bei System.Xml.XmlTextReaderImpl.ParseRootLevelWhitespace()
  bei System.Xml.XmlTextReaderImpl.ParseDocumentContent()
  bei System.Xml.XmlTextReaderImpl.Read()
  bei System.Xml.XmlTextReader.Read()
  bei System.Deployment.Application.ManifestValidatingReader.XmlFilteredReader.Read()
  bei System.Xml.XsdValidatingReader.Read()
  bei System.Deployment.Application.ManifestReader.FromDocument(String localPath, ManifestType manifestType, Uri sourceUri)
  --- Ende der internen Ausnahmestapelüberwachung ---
  bei Microsoft.VisualStudio.Tools.Applications.Deployment.ClickOnceAddInDeploymentManager.GetManifests(TimeSpan timeout)
  bei Microsoft.VisualStudio.Tools.Applications.Deployment.ClickOnceAddInDeploymentManager.InstallAddIn()


************** Geladene Assemblys **************
mscorlib
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8689 (QFE.050727-8600)
    CodeBase: file:///C:/Windows/Microsoft.NET/Framework/v2.0.50727/mscorlib.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Office.Runtime.v10.0
    Assemblyversion: 10.0.0.0
    Win32-Version: 10.0.50903.0
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Office.Runtime.v10.0/10.0.0.0__b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Office.Runtime.v10.0.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0
    Assemblyversion: 10.0.0.0
    Win32-Version: 10.0.50903.0
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0/10.0.0.0__b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0.dll
----------------------------------------
System
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8690 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
Microsoft.Office.Tools.Outlook.v9.0
    Assemblyversion: 9.0.0.0
    Win32-Version: 9.0.30729.7079
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.Office.Tools.Outlook.v9.0/9.0.0.0__b03f5f7f11d50a3a/Microsoft.Office.Tools.Outlook.v9.0.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0
    Assemblyversion: 10.0.0.0
    Win32-Version: 10.0.50903.0
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0/10.0.0.0__b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0.dll
----------------------------------------
System.Windows.Forms
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8670 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Windows.Forms/2.0.0.0__b77a5c561934e089/System.Windows.Forms.dll
----------------------------------------
System.Drawing
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8681 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Drawing/2.0.0.0__b03f5f7f11d50a3a/System.Drawing.dll
----------------------------------------
System.Core
    Assemblyversion: 3.5.0.0
    Win32-Version: 3.5.30729.8693 built by: QFE
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Core/3.5.0.0__b77a5c561934e089/System.Core.dll
----------------------------------------
System.Deployment
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8670 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Deployment/2.0.0.0__b03f5f7f11d50a3a/System.Deployment.dll
----------------------------------------
System.Configuration
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8670 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Configuration/2.0.0.0__b03f5f7f11d50a3a/System.Configuration.dll
----------------------------------------
System.Xml
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8679 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Xml/2.0.0.0__b77a5c561934e089/System.Xml.dll
----------------------------------------
mscorlib.resources
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8689 (QFE.050727-8600)
    CodeBase: file:///C:/Windows/Microsoft.NET/Framework/v2.0.50727/mscorlib.dll
----------------------------------------
System.XML.resources
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8670 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Xml.resources/2.0.0.0_de_b77a5c561934e089/System.Xml.resources.dll
----------------------------------------
System.Deployment.resources
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8670 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Deployment.resources/2.0.0.0_de_b03f5f7f11d50a3a/System.Deployment.resources.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0
    Assemblyversion: 10.0.0.0
    Win32-Version: 10.0.50903.0
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0/10.0.0.0__b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0.resources
    Assemblyversion: 10.0.0.0
    Win32-Version: 10.0.40820.0
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0.resources/10.0.0.0_de_b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0.resources.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0.resources
    Assemblyversion: 10.0.0.0
    Win32-Version: 10.0.40820.0
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0.resources/10.0.0.0_de_b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0.resources.dll
----------------------------------------

Error: (08/03/2016 10:09:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe, Version: 10.0.10586.0, Zeitstempel: 0x5632d7ba
Name des fehlerhaften Moduls: ESENT.dll, Version: 10.0.10586.212, Zeitstempel: 0x56fa1686
Ausnahmecode: 0xc0000602
Fehleroffset: 0x000000000022885f
ID des fehlerhaften Prozesses: 0x9ec
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe0
Pfad der fehlerhaften Anwendung: svchost.exe1
Pfad des fehlerhaften Moduls: svchost.exe2
Berichtskennung: svchost.exe3
Vollständiger Name des fehlerhaften Pakets: svchost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: svchost.exe5

Error: (08/03/2016 10:09:19 AM) (Source: ESENT) (EventID: 908) (User: )
Description: svchost (2540) Der Prozess wird aufgrund eines nicht behebbaren Fehlers beendet: PV: 10.0.10586.0 SV: 10.0.10586.0 GLE: 0 ERR: -1603(fucb.cxx:359): dllentry.cxx(103) (ESENT[10.0.10586.0] RETAIL RTM MBCS)

Error: (08/03/2016 10:08:11 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm MicrosoftEdgeCP.exe, Version 11.0.10586.20 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 2354

Startzeit: 01d1ed5dfe56376c

Beendigungszeit: 68

Anwendungspfad: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

Berichts-ID: 694c1bfe-5951-11e6-8409-543530cc3100

Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_25.10586.0.0_neutral__8wekyb3d8bbwe

Auf das fehlerhafte Paket bezogene Anwendungs-ID: MicrosoftEdge

Error: (08/03/2016 10:08:04 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm MicrosoftEdgeCP.exe, Version 11.0.10586.20 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 878

Startzeit: 01d1ed537d90ce64

Beendigungszeit: 118

Anwendungspfad: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

Berichts-ID: 65700c53-5951-11e6-8409-543530cc3100

Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_25.10586.0.0_neutral__8wekyb3d8bbwe

Auf das fehlerhafte Paket bezogene Anwendungs-ID: MicrosoftEdge

Error: (08/03/2016 10:05:10 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm MicrosoftEdgeCP.exe, Version 11.0.10586.20 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 21b0

Startzeit: 01d1ed5d621ee231

Beendigungszeit: 106

Anwendungspfad: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

Berichts-ID: fde9301d-5950-11e6-8409-543530cc3100

Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_25.10586.0.0_neutral__8wekyb3d8bbwe

Auf das fehlerhafte Paket bezogene Anwendungs-ID: MicrosoftEdge

Error: (08/03/2016 10:02:30 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm MicrosoftEdgeCP.exe, Version 11.0.10586.20 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 107c

Startzeit: 01d1ed595887e8aa

Beendigungszeit: 60

Anwendungspfad: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

Berichts-ID: 9e0059ef-5950-11e6-8409-543530cc3100

Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_25.10586.0.0_neutral__8wekyb3d8bbwe

Auf das fehlerhafte Paket bezogene Anwendungs-ID: MicrosoftEdge

Error: (08/03/2016 10:02:06 AM) (Source: VSTO 4.0) (EventID: 4096) (User: )
Description: Anpassungs-URI: file:///C:/Program Files (x86)/Common Files/Microsoft Shared/VSTA/Pipeline.v10.0/PipelineSegments.store
Ausnahme: Ausnahme beim Lesen des Manifests aus 'file:///C:/Program%20Files%20(x86)/Common%20Files/Microsoft%20Shared/VSTA/Pipeline.v10.0/PipelineSegments.store': Das Manifest ist möglicherweise ungültig, oder die Datei konnte nicht geöffnet werden.


************** Ausnahmetext **************
System.Deployment.Application.InvalidDeploymentException: Ausnahme beim Lesen des Manifests aus 'file:///C:/Program%20Files%20(x86)/Common%20Files/Microsoft%20Shared/VSTA/Pipeline.v10.0/PipelineSegments.store': Das Manifest ist möglicherweise ungültig, oder die Datei konnte nicht geöffnet werden. ---> System.Xml.XmlException: '', hexidezimaler Wert 0x01, ist ein ungültiges Zeichen. Zeile 1, Position 1.
  bei System.Xml.XmlTextReaderImpl.Throw(Exception e)
  bei System.Xml.XmlTextReaderImpl.Throw(String res, String[] args)
  bei System.Xml.XmlTextReaderImpl.Throw(Int32 pos, String res, String[] args)
  bei System.Xml.XmlTextReaderImpl.ThrowInvalidChar(Int32 pos, Char invChar)
  bei System.Xml.XmlTextReaderImpl.ParseRootLevelWhitespace()
  bei System.Xml.XmlTextReaderImpl.ParseDocumentContent()
  bei System.Xml.XmlTextReaderImpl.Read()
  bei System.Xml.XmlTextReader.Read()
  bei System.Deployment.Application.ManifestValidatingReader.XmlFilteredReader.Read()
  bei System.Xml.XsdValidatingReader.Read()
  bei System.Deployment.Application.ManifestReader.FromDocument(String localPath, ManifestType manifestType, Uri sourceUri)
  --- Ende der internen Ausnahmestapelüberwachung ---
  bei Microsoft.VisualStudio.Tools.Applications.Deployment.ClickOnceAddInDeploymentManager.GetManifests(TimeSpan timeout)
  bei Microsoft.VisualStudio.Tools.Applications.Deployment.ClickOnceAddInDeploymentManager.InstallAddIn()


************** Geladene Assemblys **************
mscorlib
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8689 (QFE.050727-8600)
    CodeBase: file:///C:/Windows/Microsoft.NET/Framework/v2.0.50727/mscorlib.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Office.Runtime.v10.0
    Assemblyversion: 10.0.0.0
    Win32-Version: 10.0.50903.0
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Office.Runtime.v10.0/10.0.0.0__b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Office.Runtime.v10.0.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0
    Assemblyversion: 10.0.0.0
    Win32-Version: 10.0.50903.0
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0/10.0.0.0__b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0.dll
----------------------------------------
System
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8690 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
Microsoft.Office.Tools.Outlook.v9.0
    Assemblyversion: 9.0.0.0
    Win32-Version: 9.0.30729.7079
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.Office.Tools.Outlook.v9.0/9.0.0.0__b03f5f7f11d50a3a/Microsoft.Office.Tools.Outlook.v9.0.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0
    Assemblyversion: 10.0.0.0
    Win32-Version: 10.0.50903.0
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0/10.0.0.0__b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0.dll
----------------------------------------
System.Windows.Forms
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8670 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Windows.Forms/2.0.0.0__b77a5c561934e089/System.Windows.Forms.dll
----------------------------------------
System.Drawing
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8681 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Drawing/2.0.0.0__b03f5f7f11d50a3a/System.Drawing.dll
----------------------------------------
System.Core
    Assemblyversion: 3.5.0.0
    Win32-Version: 3.5.30729.8693 built by: QFE
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Core/3.5.0.0__b77a5c561934e089/System.Core.dll
----------------------------------------
System.Deployment
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8670 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Deployment/2.0.0.0__b03f5f7f11d50a3a/System.Deployment.dll
----------------------------------------
System.Configuration
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8670 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Configuration/2.0.0.0__b03f5f7f11d50a3a/System.Configuration.dll
----------------------------------------
System.Xml
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8679 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Xml/2.0.0.0__b77a5c561934e089/System.Xml.dll
----------------------------------------
mscorlib.resources
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8689 (QFE.050727-8600)
    CodeBase: file:///C:/Windows/Microsoft.NET/Framework/v2.0.50727/mscorlib.dll
----------------------------------------
System.XML.resources
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8670 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Xml.resources/2.0.0.0_de_b77a5c561934e089/System.Xml.resources.dll
----------------------------------------
System.Deployment.resources
    Assemblyversion: 2.0.0.0
    Win32-Version: 2.0.50727.8670 (QFE.050727-8600)
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Deployment.resources/2.0.0.0_de_b03f5f7f11d50a3a/System.Deployment.resources.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0
    Assemblyversion: 10.0.0.0
    Win32-Version: 10.0.50903.0
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0/10.0.0.0__b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0.resources
    Assemblyversion: 10.0.0.0
    Win32-Version: 10.0.40820.0
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0.resources/10.0.0.0_de_b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0.resources.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0.resources
    Assemblyversion: 10.0.0.0
    Win32-Version: 10.0.40820.0
    CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0.resources/10.0.0.0_de_b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0.resources.dll
----------------------------------------

Error: (08/03/2016 09:54:04 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: technik-wirtz)
Description: Das Paket „Microsoft.Windows.Photos_15.1001.16470.0_x64__8wekyb3d8bbwe+App“ wurde beendet, da das Anhalten zu lange dauerte.

Error: (08/03/2016 09:46:56 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: technik-wirtz)
Description: Bei der Aktivierung der App „Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App“ ist folgender Fehler aufgetreten: -2147024770. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.


System errors:
=============
Error: (08/03/2016 10:16:12 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (08/03/2016 10:11:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Lexware_Update_Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053 = Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (08/03/2016 10:11:26 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Lexware_Update_Service erreicht.

Error: (08/03/2016 10:09:15 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Sync Host_83d01 erreicht.

Error: (08/03/2016 10:09:15 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst User Data Storage_83d01 erreicht.

Error: (08/03/2016 10:09:09 AM) (Source: DCOM) (EventID: 10010) (User: technik-wirtz)
Description: {0002DF02-0000-0000-C000-000000000046}

Error: (08/03/2016 10:09:05 AM) (Source: DCOM) (EventID: 10010) (User: technik-wirtz)
Description: {B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}

Error: (08/03/2016 10:09:05 AM) (Source: DCOM) (EventID: 10010) (User: technik-wirtz)
Description: {B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}

Error: (08/03/2016 10:09:05 AM) (Source: DCOM) (EventID: 10010) (User: technik-wirtz)
Description: {B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}

Error: (08/03/2016 10:09:05 AM) (Source: DCOM) (EventID: 10010) (User: technik-wirtz)
Description: {B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}


CodeIntegrity:
===================================
  Date: 2016-08-03 09:18:18.115
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-08-03 09:18:18.103
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-08-03 09:18:18.086
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-08-03 09:18:18.075
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-08-03 09:18:18.043
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-08-03 09:18:18.033
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-08-03 09:18:17.987
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-08-03 09:18:17.973
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-08-03 09:18:17.953
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-08-03 09:18:17.943
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz
Percentage of memory in use: 34%
Total physical RAM: 12239.21 MB
Available physical RAM: 7985.94 MB
Total Virtual: 14095.21 MB
Available Virtual: 9732.58 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:917.66 GB) (Free:815.06 GB) NTFS
Drive d: (Disc) (CDROM) (Total:0.36 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 849E01DA)

Partition: GPT.

==================== End of Addition.txt ============================

cosinus 08.08.2016 10:32
Das Log vom TDSS Killer und das von Malwarebytes mit dem Fund fehlt, bitte nachreichen.

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

troianjoerg 08.08.2016 10:42
Code:
11:20:17.0915 0x19dc  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
11:20:17.0915 0x19dc  UEFI system
11:20:22.0146 0x19dc  ============================================================
11:20:22.0146 0x19dc  Current date / time: 2016/08/03 11:20:22.0146
11:20:22.0146 0x19dc  SystemInfo:
11:20:22.0148 0x19dc 
11:20:22.0148 0x19dc  OS Version: 10.0.10586 ServicePack: 0.0
11:20:22.0148 0x19dc  Product type: Workstation
11:20:22.0148 0x19dc  ComputerName: TECHNIK-WIRTZ
11:20:22.0149 0x19dc  UserName: user
11:20:22.0149 0x19dc  Windows directory: C:\WINDOWS
11:20:22.0149 0x19dc  System windows directory: C:\WINDOWS
11:20:22.0149 0x19dc  Running under WOW64
11:20:22.0149 0x19dc  Processor architecture: Intel x64
11:20:22.0149 0x19dc  Number of processors: 8
11:20:22.0149 0x19dc  Page size: 0x1000
11:20:22.0149 0x19dc  Boot type: Normal boot
11:20:22.0149 0x19dc  ============================================================
11:20:23.0192 0x19dc  KLMD registered as C:\WINDOWS\system32\drivers\05155779.sys
11:20:23.0942 0x19dc  System UUID: {1F752477-1F0E-A959-BEB2-91AEB1193823}
11:20:24.0546 0x19dc  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:20:24.0562 0x19dc  ============================================================
11:20:24.0562 0x19dc  \Device\Harddisk0\DR0:
11:20:24.0562 0x19dc  GPT partitions:
11:20:24.0587 0x19dc  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {9C08367F-9459-4943-9BEF-1F659CA45045}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0xFA000
11:20:24.0587 0x19dc  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {796BADD3-6BBF-4D9F-B631-466EB71A4965}, UniqueGUID: {94011857-C4C3-4FD8-8967-EA5F56585D03}, Name: Basic data partition, StartLBA 0xFA800, BlocksNum 0x14000
11:20:24.0587 0x19dc  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {867DC625-8248-4606-A3B0-A47AAD700259}, Name: Microsoft reserved partition, StartLBA 0x10E800, BlocksNum 0x40000
11:20:24.0587 0x19dc  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {2EBE5239-57FF-4682-9D29-A289E1A24D3E}, Name: Basic data partition, StartLBA 0x14E800, BlocksNum 0x400000
11:20:24.0587 0x19dc  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {273FCB84-FA86-48DB-A7FB-FD867EF7A396}, Name: Basic data partition, StartLBA 0x54E800, BlocksNum 0x72B52800
11:20:24.0587 0x19dc  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {F9055C9D-FAEE-4A4E-AE82-420B662599A8}, Name: , StartLBA 0x730A1000, BlocksNum 0xE1000
11:20:24.0587 0x19dc  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {EF9F0A4B-9F32-44E6-AB85-351E1AF907AA}, Name: Microsoft recovery partition, StartLBA 0x73182000, BlocksNum 0x15845B0
11:20:24.0587 0x19dc  MBR partitions:
11:20:24.0587 0x19dc  ============================================================
11:20:24.0589 0x19dc  C: <-> \Device\Harddisk0\DR0\Partition5
11:20:24.0589 0x19dc  ============================================================
11:20:24.0589 0x19dc  Initialize success
11:20:24.0589 0x19dc  ============================================================
11:20:40.0099 0x22c4  ============================================================
11:20:40.0099 0x22c4  Scan started
11:20:40.0099 0x22c4  Mode: Manual;
11:20:40.0099 0x22c4  ============================================================
11:20:40.0099 0x22c4  KSN ping started
11:20:42.0406 0x22c4  KSN ping finished: true
11:20:51.0550 0x22c4  ================ Scan system memory ========================
11:20:51.0550 0x22c4  System memory - ok
11:20:51.0551 0x22c4  ================ Scan services =============================
11:20:52.0619 0x22c4  1394ohci - ok
11:20:52.0628 0x22c4  3ware - ok
11:20:52.0649 0x22c4  ACPI - ok
11:20:52.0654 0x22c4  acpiex - ok
11:20:52.0658 0x22c4  acpipagr - ok
11:20:52.0678 0x22c4  AcpiPmi - ok
11:20:52.0682 0x22c4  acpitime - ok
11:20:52.0692 0x22c4  ADP80XX - ok
11:20:52.0712 0x22c4  AFD - ok
11:20:52.0722 0x22c4  agp440 - ok
11:20:52.0730 0x22c4  ahcache - ok
11:20:52.0779 0x22c4  AJRouter - ok
11:20:52.0787 0x22c4  ALG - ok
11:20:52.0792 0x22c4  AmdK8 - ok
11:20:52.0798 0x22c4  AmdPPM - ok
11:20:52.0805 0x22c4  amdsata - ok
11:20:52.0809 0x22c4  amdsbs - ok
11:20:52.0812 0x22c4  amdxata - ok
11:20:52.0850 0x22c4  AppID - ok
11:20:52.0877 0x22c4  AppIDSvc - ok
11:20:52.0879 0x22c4  Appinfo - ok
11:20:52.0882 0x22c4  AppReadiness - ok
11:20:52.0900 0x22c4  AppXSvc - ok
11:20:52.0902 0x22c4  arcsas - ok
11:20:53.0095 0x22c4  aspnet_state - ok
11:20:53.0107 0x22c4  AsyncMac - ok
11:20:53.0114 0x22c4  atapi - ok
11:20:53.0253 0x22c4  [ 35A831D8736ACC3D3BF38F5D4C4D03DF, 7A843A4D9E9DC5D7015BD4EDB41778BD0EAFA2A2A2BE135F080D26CB8C30FFF5 ] athr            C:\WINDOWS\System32\drivers\athw10x.sys
11:20:53.0326 0x22c4  athr - ok
11:20:53.0397 0x22c4  AudioEndpointBuilder - ok
11:20:53.0405 0x22c4  Audiosrv - ok
11:20:53.0446 0x22c4  AxInstSV - ok
11:20:53.0449 0x22c4  b06bdrv - ok
11:20:53.0458 0x22c4  BasicDisplay - ok
11:20:53.0460 0x22c4  BasicRender - ok
11:20:53.0464 0x22c4  bcmfn - ok
11:20:53.0466 0x22c4  bcmfn2 - ok
11:20:53.0470 0x22c4  BDESVC - ok
11:20:53.0478 0x22c4  Beep - ok
11:20:53.0489 0x22c4  BFE - ok
11:20:53.0503 0x22c4  BITS - ok
11:20:53.0505 0x22c4  bowser - ok
11:20:53.0532 0x22c4  BrokerInfrastructure - ok
11:20:53.0538 0x22c4  Browser - ok
11:20:53.0560 0x22c4  [ C6978F7EBA6F37D626482AC6B9390630, B4BF939AB9962A61DE9518604C20347DC2A6FCDCEB3D8AEF295AF12E6F2CDCF3 ] BTATH_BUS      C:\WINDOWS\System32\drivers\btath_bus.sys
11:20:53.0580 0x22c4  BTATH_BUS - ok
11:20:53.0623 0x22c4  [ 239A81CC18170F3369D389DA65E74342, 5E26976176A6651B149784B1ED86ECCA133B7755EBB8B04361A8DDB705767AA3 ] BtFilter        C:\WINDOWS\system32\DRIVERS\btfilter.sys
11:20:53.0652 0x22c4  BtFilter - ok
11:20:53.0676 0x22c4  BthAvrcpTg - ok
11:20:53.0682 0x22c4  BthEnum - ok
11:20:53.0687 0x22c4  BthHFEnum - ok
11:20:53.0690 0x22c4  bthhfhid - ok
11:20:53.0705 0x22c4  BthHFSrv - ok
11:20:53.0720 0x22c4  BthLEEnum - ok
11:20:53.0723 0x22c4  BTHMODEM - ok
11:20:53.0726 0x22c4  BthPan - ok
11:20:53.0730 0x22c4  BTHPORT - ok
11:20:53.0733 0x22c4  bthserv - ok
11:20:53.0738 0x22c4  BTHUSB - ok
11:20:53.0741 0x22c4  buttonconverter - ok
11:20:53.0841 0x22c4  c2wts - ok
11:20:53.0848 0x22c4  CapImg - ok
11:20:53.0867 0x22c4  cdfs - ok
11:20:53.0912 0x22c4  CDPSvc - ok
11:20:53.0920 0x22c4  cdrom - ok
11:20:53.0928 0x22c4  CertPropSvc - ok
11:20:53.0935 0x22c4  circlass - ok
11:20:53.0943 0x22c4  CLFS - ok
11:20:53.0963 0x22c4  ClipSVC - ok
11:20:54.0006 0x22c4  [ 3E76A1547F2448BCEE3D2F4AE3931AB5, 31B41723FAA4210A86B1AE02D6C052BD8B738C4B89FB0177C1AE997D24BA5B8C ] CLVirtualDrive  C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
11:20:54.0018 0x22c4  CLVirtualDrive - ok
11:20:54.0023 0x22c4  CmBatt - ok
11:20:54.0031 0x22c4  CNG - ok
11:20:54.0036 0x22c4  cnghwassist - ok
11:20:54.0357 0x22c4  CompositeBus - ok
11:20:54.0365 0x22c4  COMSysApp - ok
11:20:54.0374 0x22c4  condrv - ok
11:20:54.0407 0x22c4  CoreMessagingRegistrar - ok
11:20:54.0423 0x22c4  CryptSvc - ok
11:20:54.0495 0x22c4  dam - ok
11:20:54.0510 0x22c4  DcomLaunch - ok
11:20:54.0559 0x22c4  DcpSvc - ok
11:20:54.0578 0x22c4  [ B56714DED87E29377F1EE930691DADA2, B3C3BC4F546A786A93823C1471D560BF678A9C95237065E3B99B2B80E6C28131 ] DDDriver        C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys
11:20:54.0580 0x22c4  DDDriver - ok
11:20:54.0587 0x22c4  defragsvc - ok
11:20:54.0901 0x22c4  [ E554163D138B79CD8C6EDF73187FC635, 0EDC0B76437B145607C39288F3E6B92975E3B406859EA8213BBE635A0C21922D ] DellDataVault  C:\Program Files\Dell\DellDataVault\DellDataVault.exe
11:20:54.0981 0x22c4  DellDataVault - ok
11:20:55.0045 0x22c4  [ D8F74B93897C8FDF2EAF4C99E30500A4, 565D69AE486074C3E2D30EC8DCF11D720F1887BF45BF7EE1DF24DB012ED1F4A3 ] DellDataVaultWiz C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
11:20:55.0050 0x22c4  DellDataVaultWiz - ok
11:20:55.0069 0x22c4  [ DC3BD578642252FD9569B9CD75CEF81E, 63F44BC19389C19BA9F9E974BF2E5236AF7F66D9076943B9CF46775264BBE413 ] DellProf        C:\WINDOWS\system32\drivers\DellProf.sys
11:20:55.0070 0x22c4  DellProf - ok
11:20:55.0083 0x22c4  DeviceAssociationService - ok
11:20:55.0086 0x22c4  DeviceInstall - ok
11:20:55.0088 0x22c4  DevQueryBroker - ok
11:20:55.0094 0x22c4  Dfsc - ok
11:20:55.0126 0x22c4  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
11:20:55.0143 0x22c4  dg_ssudbus - ok
11:20:55.0151 0x22c4  Dhcp - ok
11:20:55.0204 0x22c4  diagnosticshub.standardcollector.service - ok
11:20:55.0222 0x22c4  DiagTrack - ok
11:20:55.0237 0x22c4  disk - ok
11:20:55.0262 0x22c4  DmEnrollmentSvc - ok
11:20:55.0282 0x22c4  dmvsc - ok
11:20:55.0291 0x22c4  dmwappushservice - ok
11:20:55.0314 0x22c4  Dnscache - ok
11:20:55.0326 0x22c4  dot3svc - ok
11:20:55.0339 0x22c4  DPS - ok
11:20:55.0354 0x22c4  drmkaud - ok
11:20:55.0365 0x22c4  DsmSvc - ok
11:20:55.0380 0x22c4  DsSvc - ok
11:20:55.0384 0x22c4  DXGKrnl - ok
11:20:55.0388 0x22c4  Eaphost - ok
11:20:55.0392 0x22c4  ebdrv - ok
11:20:55.0413 0x22c4  EFS - ok
11:20:55.0439 0x22c4  EhStorClass - ok
11:20:55.0449 0x22c4  EhStorTcgDrv - ok
11:20:55.0468 0x22c4  embeddedmode - ok
11:20:55.0470 0x22c4  EntAppSvc - ok
11:20:55.0473 0x22c4  ErrDev - ok
11:20:55.0478 0x22c4  EventSystem - ok
11:20:55.0481 0x22c4  exfat - ok
11:20:55.0484 0x22c4  fastfat - ok
11:20:55.0514 0x22c4  Fax - ok
11:20:55.0516 0x22c4  fdc - ok
11:20:55.0533 0x22c4  fdPHost - ok
11:20:55.0544 0x22c4  FDResPub - ok
11:20:55.0555 0x22c4  fhsvc - ok
11:20:55.0557 0x22c4  FileCrypt - ok
11:20:55.0566 0x22c4  FileInfo - ok
11:20:55.0569 0x22c4  Filetrace - ok
11:20:55.0665 0x22c4  [ F76D04F7413B07DAA029F6520B64B4E8, 3EB13C0EFE737880853FB8952381E7A57723F9472E0E4ED7CDA8A0D7DE8DC90D ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:20:55.0682 0x22c4  FLEXnet Licensing Service - ok
11:20:55.0685 0x22c4  flpydisk - ok
11:20:55.0688 0x22c4  FltMgr - ok
11:20:55.0690 0x22c4  FontCache - ok
11:20:55.0728 0x22c4  FontCache3.0.0.0 - ok
11:20:55.0739 0x22c4  FsDepends - ok
11:20:55.0742 0x22c4  Fs_Rec - ok
11:20:55.0835 0x22c4  [ 014195B03B378CFEAA029958CBC53695, 0F069F37CF83234929D618A78A58F369D0D033A4ABBC4AD02D37825E9857B731 ] fussvc          C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe
11:20:55.0848 0x22c4  fussvc - ok
11:20:55.0856 0x22c4  fvevol - ok
11:20:55.0864 0x22c4  gagp30kx - ok
11:20:55.0935 0x22c4  gencounter - ok
11:20:55.0944 0x22c4  genericusbfn - ok
11:20:56.0101 0x22c4  [ A27A06D8359BC5202F2F8E3240DE205F, C2BB64106D6894E6CF45121FE3ECCDE2A00CAE9268CF5ECA11F436C10DBFC6F0 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
11:20:56.0135 0x22c4  GfExperienceService - ok
11:20:56.0141 0x22c4  GPIOClx0101 - ok
11:20:56.0143 0x22c4  gpsvc - ok
11:20:56.0170 0x22c4  GpuEnergyDrv - ok
11:20:56.0246 0x22c4  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:20:56.0260 0x22c4  gupdate - ok
11:20:56.0273 0x22c4  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:20:56.0281 0x22c4  gupdatem - ok
11:20:56.0288 0x22c4  HDAudBus - ok
11:20:56.0293 0x22c4  HidBatt - ok
11:20:56.0298 0x22c4  HidBth - ok
11:20:56.0314 0x22c4  hidi2c - ok
11:20:56.0325 0x22c4  hidinterrupt - ok
11:20:56.0333 0x22c4  HidIr - ok
11:20:56.0342 0x22c4  hidserv - ok
11:20:56.0370 0x22c4  HidUsb - ok
11:20:56.0414 0x22c4  HomeGroupListener - ok
11:20:56.0419 0x22c4  HomeGroupProvider - ok
11:20:56.0422 0x22c4  HpSAMD - ok
11:20:56.0433 0x22c4  HTTP - ok
11:20:56.0437 0x22c4  hwpolicy - ok
11:20:56.0439 0x22c4  hyperkbd - ok
11:20:56.0442 0x22c4  i8042prt - ok
11:20:56.0449 0x22c4  iai2c - ok
11:20:56.0462 0x22c4  iaLPSS2i_I2C - ok
11:20:56.0465 0x22c4  iaLPSSi_GPIO - ok
11:20:56.0473 0x22c4  iaLPSSi_I2C - ok
11:20:56.0527 0x22c4  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA        C:\WINDOWS\system32\drivers\iaStorA.sys
11:20:56.0555 0x22c4  iaStorA - ok
11:20:56.0568 0x22c4  iaStorAV - ok
11:20:56.0706 0x22c4  [ 20E83F4632E15A5E9E716FF2E8AC7FAE, 7CA1A4924F432AD30ED7FA6247C6513DA173EE31132AE115E85C0ED7E5971029 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
11:20:56.0723 0x22c4  IAStorDataMgrSvc - ok
11:20:56.0730 0x22c4  iaStorV - ok
11:20:56.0738 0x22c4  ibbus - ok
11:20:56.0779 0x22c4  icssvc - ok
11:20:56.0783 0x22c4  IEEtwCollectorService - ok
11:20:56.0803 0x22c4  IKEEXT - ok
11:20:56.0939 0x22c4  [ 48AC5F706780BCC34811EA89A0727189, F76EC13A5A0FD24D9B63B7546FF749739022D1785357AD06E3FAA7F608E8C714 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
11:20:57.0023 0x22c4  IntcAzAudAddService - ok
11:20:57.0114 0x22c4  [ 4C17F57E43645E75800E9E84787E34E5, 6A1531D97462BA3B3DBDAD472AF15B717C958AA8C5CE2373DE0B2A41C35BE33E ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
11:20:57.0138 0x22c4  Intel(R) Capability Licensing Service TCP IP Interface - ok
11:20:57.0226 0x22c4  [ 2390C395882F7773AB7D6CC2547B41DE, 220EBA14BC4A686ED9879D27900AD66ACD937899759A4319297E0F15DFAB247C ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
11:20:57.0234 0x22c4  Intel(R) ME Service - ok
11:20:57.0242 0x22c4  intelide - ok
11:20:57.0249 0x22c4  intelpep - ok
11:20:57.0255 0x22c4  intelppm - ok
11:20:57.0259 0x22c4  IoQos - ok
11:20:57.0264 0x22c4  IpFilterDriver - ok
11:20:57.0281 0x22c4  iphlpsvc - ok
11:20:57.0284 0x22c4  IPMIDRV - ok
11:20:57.0288 0x22c4  IPNAT - ok
11:20:57.0303 0x22c4  IRENUM - ok
11:20:57.0313 0x22c4  isapnp - ok
11:20:57.0325 0x22c4  iScsiPrt - ok
11:20:57.0437 0x22c4  [ 16B5B394028D8ED80A569123A38DC4F7, 19839364B7A48584615F0ED56D94AB6E6F8159EAD826605F74C73845CE2C5C12 ] iumsvc          C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
11:20:57.0446 0x22c4  iumsvc - ok
11:20:57.0472 0x22c4  [ BDC9C7931DB723CB1AF9F7075EA06645, EEBD5DC9C4656F14F8F0A0A5E84657B6B2BA35283E0E571119DA82F131D5C21B ] jhi_service    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
11:20:57.0475 0x22c4  jhi_service - ok
11:20:57.0477 0x22c4  kbdclass - ok
11:20:57.0478 0x22c4  kbdhid - ok
11:20:57.0480 0x22c4  kdnic - ok
11:20:57.0482 0x22c4  KeyIso - ok
11:20:57.0487 0x22c4  KSecDD - ok
11:20:57.0490 0x22c4  KSecPkg - ok
11:20:57.0492 0x22c4  ksthunk - ok
11:20:57.0546 0x22c4  KtmRm - ok
11:20:57.0552 0x22c4  LanmanServer - ok
11:20:57.0555 0x22c4  LanmanWorkstation - ok
11:20:57.0601 0x22c4  [ 808AEDFB82408AF854A32EFBF54F7066, CBD0E6F367BD6DEE1A2C9F6754BC3BE18AFD5715D3D69399D3104406127BB32A ] Lexware_Update_Service C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe
11:20:57.0610 0x22c4  Lexware_Update_Service - ok
11:20:57.0612 0x22c4  lfsvc - ok
11:20:57.0613 0x22c4  LicenseManager - ok
11:20:57.0615 0x22c4  lltdio - ok
11:20:57.0635 0x22c4  lltdsvc - ok
11:20:57.0650 0x22c4  lmhosts - ok
11:20:57.0676 0x22c4  [ A7D2A96187E5C5F4F7650900A15788AA, F131C3E8206A89A9244ECF2507F4FC1A8550E594A58F75338939A54C973078AF ] LMS            C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
11:20:57.0682 0x22c4  LMS - ok
11:20:57.0685 0x22c4  LSI_SAS - ok
11:20:57.0700 0x22c4  LSI_SAS2i - ok
11:20:57.0702 0x22c4  LSI_SAS3i - ok
11:20:57.0704 0x22c4  LSI_SSS - ok
11:20:57.0708 0x22c4  LSM - ok
11:20:57.0710 0x22c4  luafv - ok
11:20:57.0714 0x22c4  MapsBroker - ok
11:20:57.0766 0x22c4  [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector  C:\WINDOWS\system32\drivers\mbam.sys
11:20:57.0767 0x22c4  MBAMProtector - ok
11:20:57.0847 0x22c4  [ 9611577752E293259C7DCE19E9026362, 8CB5DFD63FA15603BB6FA6B501E09ED7F4DE0E8F68CB28B78CECAC3711BEFD24 ] MBAMScheduler  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
11:20:57.0888 0x22c4  MBAMScheduler - ok
11:20:57.0960 0x22c4  [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService    C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
11:20:57.0979 0x22c4  MBAMService - ok
11:20:57.0999 0x22c4  [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy  C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
11:20:58.0002 0x22c4  MBAMSwissArmy - ok
11:20:58.0019 0x22c4  [ 898415AC0B5F1D2A9A48ABCB68A6DC4B, E1FD9AE5E22E3E5A18288E66A6184E92A4B63A1274DCE147A7728BB09C6A225E ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
11:20:58.0021 0x22c4  MBAMWebAccessControl - ok
11:20:58.0087 0x22c4  [ ED1D9AB517A038ACC0EC298CD62438CA, 61617915D0804C0D20C6EC0EDB46EA2B6FB37E3574DA9F8832D9743F1092E443 ] McAfee SiteAdvisor Service C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
11:20:58.0096 0x22c4  McAfee SiteAdvisor Service - ok
11:20:58.0221 0x22c4  [ 11F714F85530A2BD134074DC30E99FCA, BDB5FD3B2DF4ADD19B31965B3E789768B59E872B3EA85912B1FFB32B2AF9D5D8 ] MDM            C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
11:20:58.0234 0x22c4  MDM - ok
11:20:58.0239 0x22c4  megasas - ok
11:20:58.0242 0x22c4  megasr - ok
11:20:58.0257 0x22c4  [ AFEA4FAABCE6F0C299E9231FF4F466BE, BCF0C50F02C4AC2784139935F3756F5C4D24FCAF07ACD9567B87991A9D1F16DB ] MEIx64          C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
11:20:58.0260 0x22c4  MEIx64 - ok
11:20:58.0275 0x22c4  MessagingService - ok
11:20:58.0379 0x22c4  [ B8487AB1E90E38BF428216D2772F450F, 5416951B35F7A5B63434D371C9FA81DA2656852A82D2613191AC2056FB8F895A ] mfesapsn        C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys
11:20:58.0380 0x22c4  mfesapsn - ok
11:20:58.0382 0x22c4  mlx4_bus - ok
11:20:58.0385 0x22c4  MMCSS - ok
11:20:58.0387 0x22c4  Modem - ok
11:20:58.0390 0x22c4  monitor - ok
11:20:58.0392 0x22c4  mouclass - ok
11:20:58.0396 0x22c4  mouhid - ok
11:20:58.0398 0x22c4  mountmgr - ok
11:20:58.0457 0x22c4  [ D6F67A73E6557578B755F7B534E00F47, 769F3D6CB86B2DC4065BDE4CE39139879B7D96F455A3BE80C7ECEAD5494E8B79 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:20:58.0464 0x22c4  MozillaMaintenance - ok
11:20:58.0470 0x22c4  mpsdrv - ok
11:20:58.0487 0x22c4  MpsSvc - ok
11:20:58.0491 0x22c4  MRxDAV - ok
11:20:58.0494 0x22c4  mrxsmb - ok
11:20:58.0498 0x22c4  mrxsmb10 - ok
11:20:58.0503 0x22c4  mrxsmb20 - ok
11:20:58.0509 0x22c4  MsBridge - ok
11:20:58.0531 0x22c4  MSDTC - ok
11:20:58.0535 0x22c4  Msfs - ok
11:20:58.0559 0x22c4  msgpiowin32 - ok
11:20:58.0562 0x22c4  mshidkmdf - ok
11:20:58.0566 0x22c4  mshidumdf - ok
11:20:58.0569 0x22c4  msisadrv - ok
11:20:58.0593 0x22c4  MSiSCSI - ok
11:20:58.0596 0x22c4  msiserver - ok
11:20:58.0598 0x22c4  MSKSSRV - ok
11:20:58.0600 0x22c4  MsLldp - ok
11:20:58.0602 0x22c4  MSPCLOCK - ok
11:20:58.0604 0x22c4  MSPQM - ok
11:20:58.0608 0x22c4  MsRPC - ok
11:20:58.0611 0x22c4  mssmbios - ok
11:20:58.0613 0x22c4  MSTEE - ok
11:20:58.0615 0x22c4  MTConfig - ok
11:20:58.0617 0x22c4  Mup - ok
11:20:58.0621 0x22c4  mvumis - ok
11:20:58.0625 0x22c4  NativeWifiP - ok
11:20:58.0648 0x22c4  NcaSvc - ok
11:20:58.0654 0x22c4  NcbService - ok
11:20:58.0656 0x22c4  NcdAutoSetup - ok
11:20:58.0657 0x22c4  ndfltr - ok
11:20:58.0659 0x22c4  NDIS - ok
11:20:58.0661 0x22c4  NdisCap - ok
11:20:58.0662 0x22c4  NdisImPlatform - ok
11:20:58.0664 0x22c4  NdisTapi - ok
11:20:58.0666 0x22c4  Ndisuio - ok
11:20:58.0669 0x22c4  NdisVirtualBus - ok
11:20:58.0671 0x22c4  NdisWan - ok
11:20:58.0672 0x22c4  ndiswanlegacy - ok
11:20:58.0674 0x22c4  ndproxy - ok
11:20:58.0676 0x22c4  Ndu - ok
11:20:58.0678 0x22c4  NetBIOS - ok
11:20:58.0681 0x22c4  NetBT - ok
11:20:58.0682 0x22c4  Netlogon - ok
11:20:58.0693 0x22c4  Netman - ok
11:20:58.0700 0x22c4  netprofm - ok
11:20:58.0710 0x22c4  NetSetupSvc - ok
11:20:58.0841 0x22c4  NetTcpPortSharing - ok
11:20:58.0849 0x22c4  NgcCtnrSvc - ok
11:20:58.0852 0x22c4  NgcSvc - ok
11:20:58.0872 0x22c4  NlaSvc - ok
11:20:58.0883 0x22c4  Npfs - ok
11:20:58.0902 0x22c4  npsvctrig - ok
11:20:58.0914 0x22c4  nsi - ok
11:20:58.0917 0x22c4  nsiproxy - ok
11:20:58.0925 0x22c4  NTFS - ok
11:20:58.0950 0x22c4  Null - ok
11:20:58.0979 0x22c4  [ 7A0AA6E6967155DF0FDC82EA124B2E34, 3603954E5E33D73274464A3D4D52C5253E8298363D3DC33C43E1A74B1E3CDCF5 ] NVHDA          C:\WINDOWS\system32\drivers\nvhda64v.sys
11:20:59.0000 0x22c4  NVHDA - ok
11:20:59.0746 0x22c4  [ 2AA6C5CBB9AFEFC82A3A4CAF0740B4CD, 19B835B06272BE776338CBE62D273D0583F9331B1FE1C3EB8C15B99368FFBC38 ] nvlddmkm        C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
11:20:59.0919 0x22c4  nvlddmkm - ok
11:21:00.0089 0x22c4  [ 507E699BD36530491BA0F95251B22F06, BDE6EB91FADBCB8CE16C31EF43A97DC6CC5D0F4EBAEA7903810556D0D70F54BC ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
11:21:00.0373 0x22c4  NvNetworkService - ok
11:21:00.0427 0x22c4  [ 473EE68E7A5D9A21BE653C10B2665ACF, 3DD9A31B22DD4378D18D87E4EA8CB184CEAD225F0D3774FE9E7B12164FF89AEE ] nvpciflt        C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
11:21:00.0489 0x22c4  nvpciflt - ok
11:21:00.0561 0x22c4  nvraid - ok
11:21:00.0564 0x22c4  nvstor - ok
11:21:00.0600 0x22c4  [ 7E4C1879248629A2C9CC9ADF52CBB9B7, 856FF60FD111C3C80B137BC62B7EF92D3B95FBA462A29F97D65457A5A507506E ] NvStreamKms    C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
11:21:00.0601 0x22c4  NvStreamKms - ok
11:21:02.0282 0x22c4  [ C3EB27E4BC00283CA166A9FC42B90FC7, FED7F68D1C6EB442292E40DCFAEE7339AE21D5EF726A9DC9BCB6AB5C5873B3E0 ] NvStreamSvc    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
11:21:02.0634 0x22c4  NvStreamSvc - ok
11:21:02.0747 0x22c4  [ 25FEA7ECF2CCC69284BA2FE962AA7E30, 04A0F2316B3E08C330510DCD1CEAFD8E1170BB0842C64592722F913FA1B8A57A ] NvStUSB        C:\WINDOWS\System32\drivers\nvstusb.sys
11:21:02.0767 0x22c4  NvStUSB - ok
11:21:02.0951 0x22c4  [ 90566025EFD5BA4005A5C9A2773B230B, 9075981E7020250E38D25C046E39C69B252B46888A9F6F749FF50FB442907E37 ] nvsvc          C:\WINDOWS\system32\nvvsvc.exe
11:21:02.0970 0x22c4  nvsvc - ok
11:21:03.0003 0x22c4  [ 1AF619620613869C07F9C147BC37520F, 0AD4E100354E201D5E72BA236C1464F5083A7E3B58C4AC6BA712489D258955F5 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
11:21:03.0015 0x22c4  nvvad_WaveExtensible - ok
11:21:03.0017 0x22c4  nv_agp - ok
11:21:03.0029 0x22c4  OneSyncSvc - ok
11:21:03.0064 0x22c4  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose            C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:21:03.0067 0x22c4  ose - ok
11:21:03.0551 0x22c4  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc        C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:21:03.0663 0x22c4  osppsvc - ok
11:21:03.0718 0x22c4  p2pimsvc - ok
11:21:03.0725 0x22c4  p2psvc - ok
11:21:03.0745 0x22c4  Parport - ok
11:21:03.0749 0x22c4  partmgr - ok
11:21:03.0753 0x22c4  PcaSvc - ok
11:21:03.0764 0x22c4  pci - ok
11:21:03.0777 0x22c4  pciide - ok
11:21:03.0782 0x22c4  pcmcia - ok
11:21:03.0787 0x22c4  pcw - ok
11:21:03.0804 0x22c4  pdc - ok
11:21:03.0820 0x22c4  PEAUTH - ok
11:21:03.0843 0x22c4  percsas2i - ok
11:21:03.0862 0x22c4  percsas3i - ok
11:21:04.0523 0x22c4  PerfHost - ok
11:21:04.0541 0x22c4  PhoneSvc - ok
11:21:04.0566 0x22c4  PimIndexMaintenanceSvc - ok
11:21:04.0577 0x22c4  pla - ok
11:21:04.0611 0x22c4  PlugPlay - ok
11:21:04.0618 0x22c4  PNRPAutoReg - ok
11:21:04.0623 0x22c4  PNRPsvc - ok
11:21:04.0641 0x22c4  PolicyAgent - ok
11:21:04.0650 0x22c4  Power - ok
11:21:04.0657 0x22c4  PptpMiniport - ok
11:21:05.0311 0x22c4  [ 959F94AD1255BC749884EDDD14EC29C4, 2CD6DA9778EA36FA0B4080F6DB1C634712238E014E47546403CD3CDB35A1DCA8 ] PrintNotify    C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
11:21:05.0353 0x22c4  PrintNotify - ok
11:21:05.0358 0x22c4  Processor - ok
11:21:05.0372 0x22c4  ProfSvc - ok
11:21:05.0374 0x22c4  Psched - ok
11:21:05.0386 0x22c4  QWAVE - ok
11:21:05.0403 0x22c4  QWAVEdrv - ok
11:21:05.0405 0x22c4  RasAcd - ok
11:21:05.0423 0x22c4  RasAgileVpn - ok
11:21:05.0450 0x22c4  RasAuto - ok
11:21:05.0459 0x22c4  Rasl2tp - ok
11:21:05.0509 0x22c4  RasMan - ok
11:21:05.0511 0x22c4  RasPppoe - ok
11:21:05.0521 0x22c4  RasSstp - ok
11:21:05.0523 0x22c4  rdbss - ok
11:21:05.0526 0x22c4  rdpbus - ok
11:21:05.0532 0x22c4  RDPDR - ok
11:21:05.0555 0x22c4  RdpVideoMiniport - ok
11:21:05.0560 0x22c4  rdyboost - ok
11:21:05.0565 0x22c4  ReFSv1 - ok
11:21:05.0587 0x22c4  RemoteAccess - ok
11:21:05.0627 0x22c4  RemoteRegistry - ok
11:21:05.0651 0x22c4  RetailDemo - ok
11:21:05.0664 0x22c4  RFCOMM - ok
11:21:05.0737 0x22c4  [ CBE300DA6064C31F2AC4ED8A0722BEF0, D98D41937E36390426F521713AF2BAA1E49E750BBEAC420D1BD770EB303F1E4F ] RichVideo      C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
11:21:05.0756 0x22c4  RichVideo - ok
11:21:05.0768 0x22c4  RpcEptMapper - ok
11:21:05.0780 0x22c4  RpcLocator - ok
11:21:05.0784 0x22c4  RpcSs - ok
11:21:05.0788 0x22c4  rspndr - ok
11:21:05.0827 0x22c4  [ 9CF8593B62102545CB1652A1D8748FDD, 818639795720A7567CCE01EBC24A0119BFDCEA1B7A5ED4A11B5012D763C1B5CC ] RSUSBSTOR      C:\WINDOWS\System32\Drivers\RtsUStor.sys
11:21:05.0837 0x22c4  RSUSBSTOR - ok
11:21:05.0911 0x22c4  [ DBE1ADA144291F8E0F29ECC40AE14562, D85E5F698EFC6B2374FB330BE4C6828AA3E1A87D3F08BB855A790A5113D5ED5B ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
11:21:05.0925 0x22c4  RtkAudioService - ok
11:21:06.0062 0x22c4  [ 948D5E71CF9DB59961353A355EA45139, A23D012B07A92CC217C67C904CDFBA2BCCDCC2BD49B24FB694BD230D000F2B7B ] RTL8168        C:\WINDOWS\System32\drivers\Rt630x64.sys
11:21:06.0108 0x22c4  RTL8168 - ok
11:21:06.0155 0x22c4  [ 03E76CF0657BCABA2D7F7EE4384E6562, DCCAA648A34358B3DDBF908E2136C4A3460A297AC9E001B6709C65A9F320EB07 ] RTSUER          C:\WINDOWS\system32\Drivers\RtsUer.sys
11:21:06.0171 0x22c4  RTSUER - ok
11:21:06.0176 0x22c4  s3cap - ok
11:21:06.0191 0x22c4  SamSs - ok
11:21:06.0202 0x22c4  sbp2port - ok
11:21:06.0211 0x22c4  SCardSvr - ok
11:21:06.0213 0x22c4  ScDeviceEnum - ok
11:21:06.0216 0x22c4  scfilter - ok
11:21:06.0223 0x22c4  Schedule - ok
11:21:06.0232 0x22c4  SCPolicySvc - ok
11:21:06.0240 0x22c4  sdbus - ok
11:21:06.0242 0x22c4  SDRSVC - ok
11:21:06.0244 0x22c4  sdstor - ok
11:21:06.0245 0x22c4  seclogon - ok
11:21:06.0248 0x22c4  SENS - ok
11:21:06.0249 0x22c4  SensorDataService - ok
11:21:06.0257 0x22c4  SensorService - ok
11:21:06.0259 0x22c4  SensorsSimulatorDriver - ok
11:21:06.0261 0x22c4  SensrSvc - ok
11:21:06.0262 0x22c4  SerCx - ok
11:21:06.0264 0x22c4  SerCx2 - ok
11:21:06.0266 0x22c4  Serenum - ok
11:21:06.0268 0x22c4  Serial - ok
11:21:06.0269 0x22c4  sermouse - ok
11:21:06.0275 0x22c4  SessionEnv - ok
11:21:06.0277 0x22c4  sfloppy - ok
11:21:06.0279 0x22c4  SharedAccess - ok
11:21:06.0293 0x22c4  ShellHWDetection - ok
11:21:06.0296 0x22c4  SiSRaid2 - ok
11:21:06.0297 0x22c4  SiSRaid4 - ok
11:21:06.0299 0x22c4  smphost - ok
11:21:06.0302 0x22c4  SmsRouter - ok
11:21:06.0307 0x22c4  SNMPTRAP - ok
11:21:06.0319 0x22c4  spaceport - ok
11:21:06.0321 0x22c4  SpbCx - ok
11:21:06.0324 0x22c4  Spooler - ok
11:21:06.0326 0x22c4  sppsvc - ok
11:21:06.0398 0x22c4  [ 055B0DE7BCDB14FB18279F09DCA07954, 94944F996F2F73233A96F8E766606EA5CCC7142EA2AF4BCEFD2603578F2B4A4A ] SQLWriter      C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
11:21:06.0407 0x22c4  SQLWriter - ok
11:21:06.0411 0x22c4  srv - ok
11:21:06.0415 0x22c4  srv2 - ok
11:21:06.0419 0x22c4  srvnet - ok
11:21:06.0423 0x22c4  SSDPSRV - ok
11:21:06.0427 0x22c4  SstpSvc - ok
11:21:06.0475 0x22c4  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm        C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
11:21:06.0484 0x22c4  ssudmdm - ok
11:21:06.0486 0x22c4  StateRepository - ok
11:21:06.0594 0x22c4  [ 49B1E5AF3AA400752A20BE169CB73DFA, D990BC79B289912EB07F3FD50F1236C593A45C5E9B7BD8162269687258E07CE2 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
11:21:06.0615 0x22c4  Stereo Service - ok
11:21:06.0620 0x22c4  stexstor - ok
11:21:06.0624 0x22c4  stisvc - ok
11:21:06.0628 0x22c4  storahci - ok
11:21:06.0632 0x22c4  storflt - ok
11:21:06.0635 0x22c4  stornvme - ok
11:21:06.0640 0x22c4  storqosflt - ok
11:21:06.0642 0x22c4  StorSvc - ok
11:21:06.0645 0x22c4  storufs - ok
11:21:06.0647 0x22c4  storvsc - ok
11:21:06.0744 0x22c4  [ 1957C598952FBE08193EE43A109FD3DD, A0E77C20B263BD911AE3D7842210E65DD5D0E64191201553154205F64CFA8D70 ] SupportAssistAgent C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
11:21:06.0765 0x22c4  SupportAssistAgent - ok
11:21:06.0788 0x22c4  svsvc - ok
11:21:06.0792 0x22c4  swenum - ok
11:21:06.0967 0x22c4  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard    C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
11:21:06.0988 0x22c4  SwitchBoard - ok
11:21:06.0992 0x22c4  swprv - ok
11:21:07.0017 0x22c4  Synth3dVsc - ok
11:21:07.0024 0x22c4  SysMain - ok
11:21:07.0044 0x22c4  SystemEventsBroker - ok
11:21:07.0054 0x22c4  TabletInputService - ok
11:21:07.0065 0x22c4  TapiSrv - ok
11:21:07.0075 0x22c4  Tcpip - ok
11:21:07.0085 0x22c4  Tcpip6 - ok
11:21:07.0096 0x22c4  tcpipreg - ok
11:21:07.0103 0x22c4  tdx - ok
11:21:07.0185 0x22c4  [ 950AD1AE7498A492126FB9F9B2E27DB5, C4C9A972015F567FC87A4094C86835B2DD3476426AB8B40CD4872A725CA89CFC ] Te.Service      C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe
11:21:07.0196 0x22c4  Te.Service - ok
11:21:07.0680 0x22c4  [ CFC9B7B465283378D374D5E380D5D244, 5E66A62C6A6272B65181F116031AA80E8DCEDA3B7E2C1130DD631347DF644D79 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
11:21:07.0772 0x22c4  TeamViewer - ok
11:21:07.0794 0x22c4  terminpt - ok
11:21:07.0799 0x22c4  TermService - ok
11:21:07.0820 0x22c4  Themes - ok
11:21:07.0832 0x22c4  TieringEngineService - ok
11:21:07.0840 0x22c4  tiledatamodelsvc - ok
11:21:07.0842 0x22c4  TimeBroker - ok
11:21:07.0852 0x22c4  TPM - ok
11:21:07.0858 0x22c4  TrkWks - ok
11:21:07.0888 0x22c4  TrustedInstaller - ok
11:21:07.0891 0x22c4  tsusbflt - ok
11:21:07.0893 0x22c4  TsUsbGD - ok
11:21:07.0906 0x22c4  tunnel - ok
11:21:07.0921 0x22c4  tzautoupdate - ok
11:21:07.0922 0x22c4  uagp35 - ok
11:21:07.0929 0x22c4  UASPStor - ok
11:21:07.0934 0x22c4  UcmCx0101 - ok
11:21:07.0939 0x22c4  UcmUcsi - ok
11:21:07.0944 0x22c4  Ucx01000 - ok
11:21:07.0951 0x22c4  UdeCx - ok
11:21:07.0969 0x22c4  udfs - ok
11:21:07.0972 0x22c4  UEFI - ok
11:21:07.0987 0x22c4  Ufx01000 - ok
11:21:08.0010 0x22c4  UfxChipidea - ok
11:21:08.0031 0x22c4  ufxsynopsys - ok
11:21:08.0050 0x22c4  UI0Detect - ok
11:21:08.0057 0x22c4  uliagpkx - ok
11:21:08.0061 0x22c4  umbus - ok
11:21:08.0069 0x22c4  UmPass - ok
11:21:08.0079 0x22c4  UmRdpService - ok
11:21:08.0082 0x22c4  UnistoreSvc - ok
11:21:08.0087 0x22c4  upnphost - ok
11:21:08.0118 0x22c4  UrsChipidea - ok
11:21:08.0120 0x22c4  UrsCx01000 - ok
11:21:08.0123 0x22c4  UrsSynopsys - ok
11:21:08.0126 0x22c4  usbccgp - ok
11:21:08.0128 0x22c4  usbcir - ok
11:21:08.0131 0x22c4  usbehci - ok
11:21:08.0137 0x22c4  usbhub - ok
11:21:08.0150 0x22c4  USBHUB3 - ok
11:21:08.0163 0x22c4  usbohci - ok
11:21:08.0178 0x22c4  usbprint - ok
11:21:08.0185 0x22c4  usbser - ok
11:21:08.0194 0x22c4  USBSTOR - ok
11:21:08.0205 0x22c4  usbuhci - ok
11:21:08.0213 0x22c4  USBXHCI - ok
11:21:08.0226 0x22c4  UserDataSvc - ok
11:21:08.0246 0x22c4  UserManager - ok
11:21:08.0249 0x22c4  UsoSvc - ok
11:21:08.0252 0x22c4  VaultSvc - ok
11:21:08.0254 0x22c4  vdrvroot - ok
11:21:08.0257 0x22c4  vds - ok
11:21:08.0259 0x22c4  VerifierExt - ok
11:21:08.0262 0x22c4  vhdmp - ok
11:21:08.0265 0x22c4  vhf - ok
11:21:08.0267 0x22c4  vmbus - ok
11:21:08.0270 0x22c4  VMBusHID - ok
11:21:08.0312 0x22c4  vmicguestinterface - ok
11:21:08.0315 0x22c4  vmicheartbeat - ok
11:21:08.0320 0x22c4  vmickvpexchange - ok
11:21:08.0323 0x22c4  vmicrdv - ok
11:21:08.0326 0x22c4  vmicshutdown - ok
11:21:08.0341 0x22c4  vmictimesync - ok
11:21:08.0344 0x22c4  vmicvmsession - ok
11:21:08.0346 0x22c4  vmicvss - ok
11:21:08.0349 0x22c4  volmgr - ok
11:21:08.0352 0x22c4  volmgrx - ok
11:21:08.0353 0x22c4  volsnap - ok
11:21:08.0355 0x22c4  vpci - ok
11:21:08.0376 0x22c4  [ 9B4F6978628D07FAEBF77FF6F8F2960D, FC36FE6BE77445D55E4E92CE3EAF172E253EC8CF8D2EBCA204969CF21FFA5600 ] VsEtwService120 C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe
11:21:08.0377 0x22c4  VsEtwService120 - ok
11:21:08.0380 0x22c4  vsmraid - ok
11:21:08.0381 0x22c4  VSS - ok
11:21:08.0383 0x22c4  VSTXRAID - ok
11:21:08.0385 0x22c4  vwifibus - ok
11:21:08.0387 0x22c4  vwififlt - ok
11:21:08.0388 0x22c4  vwifimp - ok
11:21:08.0402 0x22c4  W32Time - ok
11:21:08.0404 0x22c4  WacomPen - ok
11:21:08.0411 0x22c4  WalletService - ok
11:21:08.0413 0x22c4  wanarp - ok
11:21:08.0414 0x22c4  wanarpv6 - ok
11:21:08.0416 0x22c4  wbengine - ok
11:21:08.0418 0x22c4  WbioSrvc - ok
11:21:08.0420 0x22c4  Wcmsvc - ok
11:21:08.0422 0x22c4  wcncsvc - ok
11:21:08.0424 0x22c4  WcsPlugInService - ok
11:21:08.0426 0x22c4  WdBoot - ok
11:21:08.0428 0x22c4  Wdf01000 - ok
11:21:08.0430 0x22c4  WdFilter - ok
11:21:08.0432 0x22c4  WdiServiceHost - ok
11:21:08.0435 0x22c4  WdiSystemHost - ok
11:21:08.0439 0x22c4  wdiwifi - ok
11:21:08.0446 0x22c4  WdNisDrv - ok
11:21:08.0477 0x22c4  WdNisSvc - ok
11:21:08.0480 0x22c4  WebClient - ok
11:21:08.0566 0x22c4  [ D41BC1D8D635E90DF0D6768E440060CD, B0D7BDB0FD87A6ACB0C96037987B96A3F12A607D45E92798E7B59EF0BB224996 ] weClientDataTransferService C:\Program Files (x86)\Dell\Client\wecdt.exe
11:21:08.0626 0x22c4  weClientDataTransferService - ok
11:21:08.0654 0x22c4  [ 73584ABD1CB73F8C34FA9769BD6261BE, 012D29D8DBB0DC5DE774CE63346C97BDEF3E5D68A607CEBC7F349150CFC1B6BA ] weClientMessengerService C:\Program Files (x86)\Dell\Client\wecmsg.exe
11:21:08.0675 0x22c4  weClientMessengerService - ok
11:21:08.0678 0x22c4  Wecsvc - ok
11:21:08.0680 0x22c4  WEPHOSTSVC - ok
11:21:08.0693 0x22c4  wercplsupport - ok
11:21:08.0695 0x22c4  WerSvc - ok
11:21:08.0703 0x22c4  WFPLWFS - ok
11:21:08.0705 0x22c4  WiaRpc - ok
11:21:08.0707 0x22c4  WIMMount - ok
11:21:08.0708 0x22c4  WinDefend - ok
11:21:08.0712 0x22c4  WindowsTrustedRT - ok
11:21:08.0717 0x22c4  WindowsTrustedRTProxy - ok
11:21:08.0719 0x22c4  WinHttpAutoProxySvc - ok
11:21:08.0721 0x22c4  WinMad - ok
11:21:08.0936 0x22c4  Winmgmt - ok
11:21:08.0946 0x22c4  WinRM - ok
11:21:08.0995 0x22c4  WINUSB - ok
11:21:09.0002 0x22c4  WinVerbs - ok
11:21:09.0011 0x22c4  WlanSvc - ok
11:21:09.0046 0x22c4  wlidsvc - ok
11:21:09.0051 0x22c4  WmiAcpi - ok
11:21:09.0068 0x22c4  wmiApSrv - ok
11:21:09.0115 0x22c4  WMPNetworkSvc - ok
11:21:09.0148 0x22c4  [ 2A9650FCC696DB28E45EA8B33B99B8E6, FBEBC6C05D50F578C6EEE0A7285EBE1DEADB08DD21FA3232630FD8D5A68FC3FB ] Wof            C:\WINDOWS\system32\drivers\Wof.sys
11:21:09.0163 0x22c4  Wof - ok
11:21:09.0170 0x22c4  workfolderssvc - ok
11:21:09.0175 0x22c4  wpcfltr - ok
11:21:09.0180 0x22c4  WPDBusEnum - ok
11:21:09.0184 0x22c4  WpdUpFltr - ok
11:21:09.0189 0x22c4  WpnService - ok
11:21:09.0192 0x22c4  ws2ifsl - ok
11:21:09.0195 0x22c4  wscsvc - ok
11:21:09.0197 0x22c4  WSDPrintDevice - ok
11:21:09.0199 0x22c4  WSDScan - ok
11:21:09.0201 0x22c4  WSearch - ok
11:21:09.0205 0x22c4  WSService - ok
11:21:09.0208 0x22c4  wuauserv - ok
11:21:09.0210 0x22c4  WudfPf - ok
11:21:09.0212 0x22c4  WUDFRd - ok
11:21:09.0234 0x22c4  wudfsvc - ok
11:21:09.0236 0x22c4  WUDFWpdFs - ok
11:21:09.0238 0x22c4  WwanSvc - ok
11:21:09.0239 0x22c4  XblAuthManager - ok
11:21:09.0246 0x22c4  XblGameSave - ok
11:21:09.0255 0x22c4  xboxgip - ok
11:21:09.0257 0x22c4  XboxNetApiSvc - ok
11:21:09.0334 0x22c4  [ 5193C637BD0E080A1EC881A9204A4310, DDF58E94544267AEDC20DC1BCA1E72A8F8014E46A050A457D9D50E7E978EEBC5 ] XeroxPrintJobEventManagerService C:\Program Files\Xerox\XeroxPrintExperience\CommonFiles\XeroxPrintJobEventManagerService.exe
11:21:09.0354 0x22c4  XeroxPrintJobEventManagerService - ok
11:21:09.0362 0x22c4  xinputhid - ok
11:21:09.0392 0x22c4  [ DCF1C283860C3CAB0BF0A71528A0136C, DFC44E5337A8B37C54CA57D53F74E41BE2C0495AF2A566FE1E9A37C045BF4C84 ] XtuAcpiDriver  C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys
11:21:09.0401 0x22c4  XtuAcpiDriver - ok
11:21:09.0401 0x22c4  ================ Scan global ===============================
11:21:09.0439 0x22c4  [ Global ] - ok
11:21:09.0440 0x22c4  ================ Scan MBR ==================================
11:21:09.0469 0x22c4  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
11:21:09.0490 0x22c4  \Device\Harddisk0\DR0 - ok
11:21:09.0491 0x22c4  ================ Scan VBR ==================================
11:21:09.0507 0x22c4  [ E19831703BC66066D86D836E18F7508C ] \Device\Harddisk0\DR0\Partition1
11:21:09.0562 0x22c4  \Device\Harddisk0\DR0\Partition1 - ok
11:21:09.0580 0x22c4  [ 06CC707FECFDA31348C48E2F43B3FA7D ] \Device\Harddisk0\DR0\Partition2
11:21:09.0654 0x22c4  \Device\Harddisk0\DR0\Partition2 - ok
11:21:09.0669 0x22c4  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
11:21:09.0683 0x22c4  \Device\Harddisk0\DR0\Partition3 - ok
11:21:09.0701 0x22c4  [ 6C1963B925DCD6FD2935BC842EDAAB7E ] \Device\Harddisk0\DR0\Partition4
11:21:09.0873 0x22c4  \Device\Harddisk0\DR0\Partition4 - ok
11:21:09.0895 0x22c4  [ 36E2E79A3A15291392D5F9A0E8DE88B0 ] \Device\Harddisk0\DR0\Partition5
11:21:10.0051 0x22c4  \Device\Harddisk0\DR0\Partition5 - ok
11:21:10.0093 0x22c4  [ 501AED2C959CE654E581FFBB74CC1CF4 ] \Device\Harddisk0\DR0\Partition6
11:21:10.0151 0x22c4  \Device\Harddisk0\DR0\Partition6 - ok
11:21:10.0185 0x22c4  [ DA36FEAE3D7336F302E5160B0FD77B59 ] \Device\Harddisk0\DR0\Partition7
11:21:10.0212 0x22c4  \Device\Harddisk0\DR0\Partition7 - ok
11:21:10.0213 0x22c4  ================ Scan generic autorun ======================
11:21:10.0878 0x22c4  [ 641B19018CB32619ADBD0AED4964E1D9, 4F85CD33E69A1EE9C145407E2FE28C0D6EAE0782576D656E583052A69677A910 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
11:21:10.0983 0x22c4  RTHDVCPL - ok
11:21:11.0120 0x22c4  [ BC5A40AEAC1CF7708D07CBC2F577F90B, A70B2C08CE007532739C60B474289459225D0554C8C5DA113DC649955BDC9DF6 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
11:21:11.0159 0x22c4  RtHDVBg - ok
11:21:11.0249 0x22c4  [ 4A0477ADCD07EC9D21257A2E456B16C5, CEF9C81730C12283A7600C3D921D89A62B14D1C46544B493F3AF7520DD2D1F79 ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
11:21:11.0257 0x22c4  IAStorIcon - ok
11:21:11.0307 0x22c4  [ 5447AF432CDA61159ADDE218C468FFD9, 63BD74521F679F195C24C1818267ECCBD8A7F5C2B4CEF3E60EC46B5AE0AC72A8 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
11:21:11.0359 0x22c4  AdobeAAMUpdater-1.0 - ok
11:21:11.0664 0x22c4  [ 4F011F572DAC7057DF9D6E9064AA77E8, CC05441572740A9996525C3B9382191022E4F918C45C09EC0DE4C11215F81008 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
11:21:11.0719 0x22c4  NvBackend - ok
11:21:11.0739 0x22c4  ShadowPlay - ok
11:21:11.0795 0x22c4  [ 27CFFB1E41A2BE2A25957A679BD84E10, 521DC8F3439EAA780AE0DA68B0FC6E671963AF76E165590EA83D2F6896B1C941 ] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
11:21:11.0805 0x22c4  AdobeCS5ServiceManager - ok
11:21:11.0827 0x22c4  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
11:21:11.0837 0x22c4  SwitchBoard - ok
11:21:12.0013 0x22c4  [ AEB3E8A6308604C3490A36D06D6685DC, CAFAE7697261CDA6934E324FC45D893BB452F23A1196FECC6930B72FFA8A2738 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
11:21:12.0020 0x22c4  Adobe Acrobat Speed Launcher - ok
11:21:12.0547 0x22c4  OneDriveSetup - ok
11:21:12.0550 0x22c4  OneDriveSetup - ok
11:21:12.0660 0x22c4  [ 45354238785AE4DCB7DFDC5C8440C19D, 2E7941F6BE02C2DF60436B0471876F26F9F02EA2B604666875F17DFFB7EFE277 ] c:\temp\anwesenheitsmail.exe
11:21:12.0661 0x22c4  Anmelde-Mail - ok
11:21:12.0806 0x22c4  [ 50FCC5C822A6B4FC6F377EE9F9F37C7B, 57BD4032367D91EF19931E927127AA1D54DA6118B36C219B0FFD95326A2FFCA0 ] C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe
11:21:12.0819 0x22c4  Google Update - ok
11:21:12.0885 0x22c4  [ 8F2EA5EE0695CCE2285D92C44108375C, 2C96A8E7E41E87C27B6A3325526F99A03333357EF2682C17A4892BE4A58D157E ] C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDrive.exe
11:21:12.0911 0x22c4  OneDrive - ok
11:21:12.0913 0x22c4  OneDriveSetup - ok
11:21:12.0949 0x22c4  WAB Migrate - ok
11:21:12.0950 0x22c4  Waiting for KSN requests completion. In queue: 46
11:21:13.0951 0x22c4  Waiting for KSN requests completion. In queue: 46
11:21:14.0952 0x22c4  Waiting for KSN requests completion. In queue: 46
11:21:16.0119 0x22c4  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.0 ), 0x61100 ( enabled : updated )
11:21:16.0146 0x22c4  Win FW state via NFP2: enabled ( trusted )
11:21:18.0500 0x22c4  ============================================================
11:21:18.0500 0x22c4  Scan finished
11:21:18.0500 0x22c4  ============================================================
11:21:18.0507 0x267c  Detected object count: 0
11:21:18.0507 0x267c  Actual detected object count: 0
11:22:24.0284 0x0604  Deinitialize success
Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlaufdatum: 03.08.2016
Suchlaufzeit: 09:37
Protokolldatei: mbam.txt
Administrator: Ja

Version: 2.2.1.1043
Malware-Datenbank: v2016.08.03.03
Rootkit-Datenbank: v2016.05.27.01
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: user

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 453706
Abgelaufene Zeit: 27 Min., 45 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 1
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockUpdateSvc.exe, 2064, Löschen bei Neustart, [d9d6a2a43169ef47794ea0178f72e41c]

Module: 24
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockA.dll, Löschen bei Neustart, [eac5c581bfdbc47216b330874db440c0],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockA.dll, Löschen bei Neustart, [eac5c581bfdbc47216b330874db440c0],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockA.dll, Löschen bei Neustart, [eac5c581bfdbc47216b330874db440c0],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockA.dll, Löschen bei Neustart, [eac5c581bfdbc47216b330874db440c0],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockA.dll, Löschen bei Neustart, [eac5c581bfdbc47216b330874db440c0],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockA.dll, Löschen bei Neustart, [eac5c581bfdbc47216b330874db440c0],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockA.dll, Löschen bei Neustart, [eac5c581bfdbc47216b330874db440c0],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockA.dll, Löschen bei Neustart, [eac5c581bfdbc47216b330874db440c0],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockA.dll, Löschen bei Neustart, [eac5c581bfdbc47216b330874db440c0],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockA.dll, Löschen bei Neustart, [eac5c581bfdbc47216b330874db440c0],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockA.dll, Löschen bei Neustart, [eac5c581bfdbc47216b330874db440c0],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockA.dll, Löschen bei Neustart, [eac5c581bfdbc47216b330874db440c0],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockB.dll, Löschen bei Neustart, [8a2575d1bedc2f079732d6e13dc4ea16],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockB.dll, Löschen bei Neustart, [8a2575d1bedc2f079732d6e13dc4ea16],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockB.dll, Löschen bei Neustart, [8a2575d1bedc2f079732d6e13dc4ea16],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockB.dll, Löschen bei Neustart, [8a2575d1bedc2f079732d6e13dc4ea16],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockB.dll, Löschen bei Neustart, [8a2575d1bedc2f079732d6e13dc4ea16],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockB.dll, Löschen bei Neustart, [8a2575d1bedc2f079732d6e13dc4ea16],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockB.dll, Löschen bei Neustart, [8a2575d1bedc2f079732d6e13dc4ea16],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockB.dll, Löschen bei Neustart, [8a2575d1bedc2f079732d6e13dc4ea16],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockB.dll, Löschen bei Neustart, [8a2575d1bedc2f079732d6e13dc4ea16],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockB.dll, Löschen bei Neustart, [8a2575d1bedc2f079732d6e13dc4ea16],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockB.dll, Löschen bei Neustart, [8a2575d1bedc2f079732d6e13dc4ea16],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockB.dll, Löschen bei Neustart, [8a2575d1bedc2f079732d6e13dc4ea16],

Registrierungsschlüssel: 25
PUP.Optional.DNSBlock, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\DnsBlockUpdateSvc, In Quarantäne, [d9d6a2a43169ef47794ea0178f72e41c],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\CLASSES\CLSID\{C654F3FE-8E84-4BB7-87CF-8D9171FC3C73}, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\CLASSES\CLSID\{C654F3FE-8E84-4BB7-87CF-8D9171FC3C73}\INPROCSERVER32, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C654F3FE-8E84-4BB7-87CF-8D9171FC3C73}, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\CLASSES\TYPELIB\{E7BF74EE-9106-4113-B216-2F980BA29141}, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\CLASSES\INTERFACE\{F2DB3739-77FB-41EB-9ED3-ABF34DF2DBF7}, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{F2DB3739-77FB-41EB-9ED3-ABF34DF2DBF7}, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{F2DB3739-77FB-41EB-9ED3-ABF34DF2DBF7}, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{E7BF74EE-9106-4113-B216-2F980BA29141}, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{E7BF74EE-9106-4113-B216-2F980BA29141}, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\CLASSES\DPBHO.DownloadProtect.1, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\CLASSES\DPBHO.DownloadProtect, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\WOW6432NODE\CLASSES\DPBHO.DownloadProtect, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\CLASSES\WOW6432NODE\DPBHO.DownloadProtect, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{C654F3FE-8E84-4BB7-87CF-8D9171FC3C73}, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{C654F3FE-8E84-4BB7-87CF-8D9171FC3C73}, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\WOW6432NODE\CLASSES\DPBHO.DownloadProtect.1, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\CLASSES\WOW6432NODE\DPBHO.DownloadProtect.1, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{C654F3FE-8E84-4BB7-87CF-8D9171FC3C73}, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKU\S-1-5-21-3427957863-554338918-1319331597-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{C654F3FE-8E84-4BB7-87CF-8D9171FC3C73}, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, HKU\S-1-5-21-3427957863-554338918-1319331597-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{C654F3FE-8E84-4BB7-87CF-8D9171FC3C73}, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DNSBlock, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{7b5da7f5-de7d-4e00-b330-a2e08e460095}, In Quarantäne, [7c332d19118912240ebabcfbac5549b7],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\CLASSES\APPID\DPBHO.DLL, In Quarantäne, [8728bd89ebafb1856e1fb0321ee58b75],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\DPBHO.DLL, In Quarantäne, [08a764e2c0dae94d84090bd72cd7d22e],
PUP.Optional.DownloadProtect, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\DPBHO.DLL, In Quarantäne, [dfd0ba8c61398ea8b0ddae34f90ad42c],

Registrierungswerte: 2
PUP.Optional.DownloadProtectExtension, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{13EFC634-39AC-418D-A8C0-E4E07093C996}, C:\Windows\Installer\{9F1F32F5-A54C-43C6-A82E-2D5D5BBD7D2E}\{13EFC634-39AC-418D-A8C0-E4E07093C996}.xpi, In Quarantäne, [159a15316b2f3cfa3b87970960a3f20e]
PUP.Optional.DownloadProtectExtension, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{D4F156C4-1806-47A2-9E73-864C0703DE74}, C:\WINDOWS\Installer\{65AE91B1-F12C-4B92-91AB-8A27305C721E}\{D4F156C4-1806-47A2-9E73-864C0703DE74}.xpi, In Quarantäne, [98179da93e5cb48200c2059bcb3803fd]

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 6
PUP.Optional.DownloadProtect, C:\Windows\Installer\{09233CE3-3433-4474-BCEA-46A619E71056}, In Quarantäne, [dad53610d1c9a09648753f615ba84eb2],
PUP.Optional.DownloadProtect, C:\Windows\Installer\{8F8AA500-CC0A-4A80-BAC5-0866C9047D28}, In Quarantäne, [8e21370fd5c5db5b7a43d5cb20e30ef2],
PUP.Optional.DownloadProtect, C:\Windows\Installer\{B97E776D-F9C8-4DAC-99EA-D5E3F8B7E126}, In Quarantäne, [04aba6a08713e15546773a66c93a7e82],
PUP.Optional.DownloadProtect, C:\Windows\Installer\{C7AC4F4F-9150-4AF8-B1CF-23D1D74C6CD4}, In Quarantäne, [c4eb3c0ab5e5ac8acdf0465a33d018e8],
PUP.Optional.DownloadProtect.ChrPRST, C:\Windows\Installer\{65AE91B1-F12C-4B92-91AB-8A27305C721E}, In Quarantäne, [2b8491b57129d660ec2e44a204ff07f9],
PUP.Optional.DownloadProtect.ChrPRST, C:\Windows\Installer\{9F1F32F5-A54C-43C6-A82E-2D5D5BBD7D2E}, In Quarantäne, [49665cea6f2b0036b76308de1ae9da26],

Dateien: 20
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockA.dll, Löschen bei Neustart, [eac5c581bfdbc47216b330874db440c0],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockB.dll, Löschen bei Neustart, [8a2575d1bedc2f079732d6e13dc4ea16],
PUP.Optional.DNSBlock, C:\Windows\System32\DnsBlockUpdateSvc.exe, Löschen bei Neustart, [d9d6a2a43169ef47794ea0178f72e41c],
PUP.Optional.DownloadProtect, C:\Program Files\{84A13FAB-F340-44D2-8D84-FBDD00D3D7EF}\{CD81E72B-6467-4C6A-9D13-C909504E4BF5}.bin, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DownloadProtect, C:\Program Files (x86)\{128A2B84-C68C-4F5C-9EE4-A8CB0E412E4D}\{4204356E-6D94-4625-A7C1-3EF72E730A67}.bin, In Quarantäne, [9e11c1851f7b39fdd1d9256a46bc9c64],
PUP.Optional.DNSBlock, C:\Program Files (x86)\DnsBlock\uninst.exe, In Quarantäne, [7c332d19118912240ebabcfbac5549b7],
PUP.Optional.DNSBlock, C:\Windows\SysWOW64\DnsBlockA.dll, Löschen bei Neustart, [cee1f84e9ffb69cdb3165463926fce32],
PUP.Optional.DNSBlock, C:\Windows\SysWOW64\DnsBlockB.dll, Löschen bei Neustart, [456aa0a62773d264e9e00ea9d829d927],
Trojan.Agent.WSB, C:\Windows\SysWOW64\msoeacdt.dll, In Quarantäne, [48673016e7b3003612f30be87190bc44],
PUP.Optional.DNSBlocker.BrwsrFlsh, C:\Windows\System32\dns.block, In Quarantäne, [bcf368def6a42313b7acdeb719eaf60a],
PUP.Optional.DownloadProtect, C:\Windows\Installer\{09233CE3-3433-4474-BCEA-46A619E71056}\cclolebfchjjacadbnfjdkgpbecegkhimrx, In Quarantäne, [dad53610d1c9a09648753f615ba84eb2],
PUP.Optional.DownloadProtect, C:\Windows\Installer\{09233CE3-3433-4474-BCEA-46A619E71056}\xclolebfchjjacadbnfjdkgpbecegkhimml, In Quarantäne, [dad53610d1c9a09648753f615ba84eb2],
PUP.Optional.DownloadProtect, C:\Windows\Installer\{8F8AA500-CC0A-4A80-BAC5-0866C9047D28}\cgpicdmgboidfeflapgikfedcihgapecirx, In Quarantäne, [8e21370fd5c5db5b7a43d5cb20e30ef2],
PUP.Optional.DownloadProtect, C:\Windows\Installer\{8F8AA500-CC0A-4A80-BAC5-0866C9047D28}\xgpicdmgboidfeflapgikfedcihgapeciml, In Quarantäne, [8e21370fd5c5db5b7a43d5cb20e30ef2],
PUP.Optional.DownloadProtect, C:\Windows\Installer\{B97E776D-F9C8-4DAC-99EA-D5E3F8B7E126}\cdgmgcljlfcmgfkckegojjodbfholadfdrx, In Quarantäne, [04aba6a08713e15546773a66c93a7e82],
PUP.Optional.DownloadProtect, C:\Windows\Installer\{B97E776D-F9C8-4DAC-99EA-D5E3F8B7E126}\xdgmgcljlfcmgfkckegojjodbfholadfdml, In Quarantäne, [04aba6a08713e15546773a66c93a7e82],
PUP.Optional.DownloadProtect, C:\Windows\Installer\{C7AC4F4F-9150-4AF8-B1CF-23D1D74C6CD4}\ciadlhfnjalachogoigppimkainnmmaedrx, In Quarantäne, [c4eb3c0ab5e5ac8acdf0465a33d018e8],
PUP.Optional.DownloadProtect, C:\Windows\Installer\{C7AC4F4F-9150-4AF8-B1CF-23D1D74C6CD4}\xiadlhfnjalachogoigppimkainnmmaedml, In Quarantäne, [c4eb3c0ab5e5ac8acdf0465a33d018e8],
PUP.Optional.DownloadProtect.ChrPRST, C:\Windows\Installer\{65AE91B1-F12C-4B92-91AB-8A27305C721E}\{D4F156C4-1806-47A2-9E73-864C0703DE74}.xpi, In Quarantäne, [2b8491b57129d660ec2e44a204ff07f9],
PUP.Optional.DownloadProtect.ChrPRST, C:\Windows\Installer\{9F1F32F5-A54C-43C6-A82E-2D5D5BBD7D2E}\{13EFC634-39AC-418D-A8C0-E4E07093C996}.xpi, In Quarantäne, [49665cea6f2b0036b76308de1ae9da26],

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)

Den renitenten "DNSBlock Tray" habe ich über durchsuchen der Registry gefunden, da war in einem der Run-Ordner noch ein Verweis auf eine .exe
Habe das aus der Registry entfernt, die Datei manuell gelöscht und bisher auch nicht wieder gesehen.

cosinus 08.08.2016 10:44
Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

troianjoerg 08.08.2016 12:03
MBAR sagt er findet nichts.

Code:
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2016.08.08.03
  rootkit: v2016.05.27.01

Windows 10 x64 NTFS
Internet Explorer 11.494.10586.0
user :: TECHNIK-WIRTZ [administrator]

08.08.2016 11:48:00
mbar-log-2016-08-08 (11-48-00).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 475481
Time elapsed: 40 minute(s), 44 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

cosinus 08.08.2016 12:14
Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!

1. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).




2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


troianjoerg 08.08.2016 12:38
Code:
# AdwCleaner v5.201 - Logfile created 08/08/2016 at 13:29:52
# Updated 30/06/2016 by ToolsLib
# Database : 2016-08-07.1 [Server]
# Operating system : Windows 10 Home  (X64)
# Username : user - TECHNIK-WIRTZ
# Running from : C:\Users\user\Downloads\AdwCleaner_5.201.exe
# Option : Clean
# Support : https://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\{128A2B84-C68C-4F5C-9EE4-A8CB0E412E4D}
[-] Folder Deleted : C:\Program Files (x86)\{6A107CDB-11AB-470E-8A43-B866F37CAB22}
[-] Folder Deleted : C:\Program Files (x86)\{B4FB8F49-FE29-40D9-84EE-2C679B233228}
[-] Folder Deleted : C:\Program Files (x86)\{C08E8B5D-04A1-4F71-8396-9B44AD4446B6}
[-] Folder Deleted : C:\users\user\AppData\Local\DnsBlock
[-] Folder Deleted : C:\Program Files\{05C93C7C-FA08-477B-B8E6-6F6189F68812}
[-] Folder Deleted : C:\Program Files\{84A13FAB-F340-44D2-8D84-FBDD00D3D7EF}
[-] Folder Deleted : C:\Program Files\{99AC82EB-DCEA-4A38-83FC-6C168E45C78A}
[-] Folder Deleted : C:\Program Files\{D9C2FFC3-05A3-4941-836A-E48151327E55}

***** [ Files ] *****

[-] File Deleted : C:\WINDOWS\SysNative\GroupPolicy\GPT.ini

***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1C6F51F8-BCE6-4702-8952-6A8233359FBC}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{C654F3FE-8E84-4BB7-87CF-8D9171FC3C73}]
[-] Key Deleted : HKCU\Software\DownloadProtect
[-] Key Deleted : HKCU\Software\OCS
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3427957863-554338918-1319331597-1002\Software\DownloadProtect
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\de.trovit.com
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\trovit.com

***** [ Web browsers ] *****


*************************

:: "Tracing" keys deleted
:: Proxy settings cleared
:: Winsock settings cleared
:: IE policies deleted
:: Chrome policies deleted

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [2223 bytes] - [08/08/2016 13:29:52]
C:\AdwCleaner\AdwCleaner[S1].txt - [2269 bytes] - [08/08/2016 13:19:52]
C:\AdwCleaner\AdwCleaner[S2].txt - [2342 bytes] - [08/08/2016 13:23:33]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2442 bytes] ##########

cosinus 11.08.2016 10:22
Logvon JRT fehlt immer noch

troianjoerg 11.08.2016 10:33
Sorry.... JRT habe ich überlesen. ;)

Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.7 (07.03.2016)
Operating System: Windows 10 Home x64
Ran by user (Administrator) on 11.08.2016 at 11:26:07,51
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 3

Successfully deleted: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\0h4y6p2j.default\user.js (File)
Successfully deleted: C:\WINDOWS\system32\Tasks\PCDEventLauncherTask (Task)
Successfully deleted: C:\WINDOWS\system32\Tasks\PCDoctorBackgroundMonitorTask (Task)



Registry: 1

Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BD99E9B4-B162-41E8-ABB1-9C2E45C05939} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11.08.2016 at 11:27:51,28
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

cosinus 11.08.2016 10:43
Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken

http://www.trojaner-board.de/picture...&pictureid=611

troianjoerg 11.08.2016 10:49
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-08-2016 01
Ran by user (administrator) on TECHNIK-WIRTZ (11-08-2016 11:45:40)
Running from C:\Users\user\Desktop
Loaded Profiles: user (Available Profiles: user & adminuser)
Platform: Windows 10 Home Version 1511 (X64) Language: Englisch (Vereinigte Staaten)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\MDM.EXE
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(Xerox Corporation) C:\Program Files\Xerox\XeroxPrintExperience\CommonFiles\XeroxPrintJobEventManagerService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(EfficientLab, LLC.) C:\Program Files (x86)\Dell\Client\wecmsg.exe
(EfficientLab, LLC.) C:\Program Files (x86)\Dell\Client\wecdt.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(EfficientLab, LLC.) C:\Program Files (x86)\Dell\Client\wemon.exe
() C:\Program Files (x86)\Dell\Client\weprtct.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760 2015-08-04] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2015-08-04] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2460488 2014-09-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LexwareInfoService] => C:\Program Files (x86)\Lexware\Update Manager\LxUpdateManager.exe [202280 2015-09-29] (Haufe-Lexware GmbH & Co. KG)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-3427957863-554338918-1319331597-1002\...\Run: [Anmelde-Mail] => c:\temp\anwesenheitsmail.exe [7680 2015-08-11] (Microsoft) <===== ATTENTION
HKU\S-1-5-21-3427957863-554338918-1319331597-1002\...\Run: [Google Update] => C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe [152216 2016-05-11] (Google Inc.)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll [2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll [2015-10-30] (Microsoft Corporation)
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SuperOffice CRM.Web Extensions.lnk [2014-10-06]
ShortcutTarget: SuperOffice CRM.Web Extensions.lnk -> C:\Users\user\AppData\Local\SuperOffice\SuperOffice 7 Web Extensions\SuperOffice.TrayApp.Client.exe (SuperOffice AS)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3f6e584f-9946-47cd-8e77-49cbf087401d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{826fe09a-4377-424f-b6ae-dc063eecd9ea}: [NameServer] 195.50.140.114,195.50.140.252
Tcpip\..\Interfaces\{826fe09a-4377-424f-b6ae-dc063eecd9ea}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-3427957863-554338918-1319331597-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/?hl=de&gl=de
HKU\S-1-5-21-3427957863-554338918-1319331597-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
SearchScopes: HKLM -> DefaultScope {BD99E9B4-B162-41E8-ABB1-9C2E45C05939} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKLM -> {BD99E9B4-B162-41E8-ABB1-9C2E45C05939} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-3427957863-554338918-1319331597-1002 -> DefaultScope {E23558D4-F1F3-4FDA-8193-955BF8B06A2D} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-3427957863-554338918-1319331597-1002 -> {E23558D4-F1F3-4FDA-8193-955BF8B06A2D} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll [2013-07-31] (Qualcomm®Atheros®)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-3427957863-554338918-1319331597-1002 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-07-29] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-07-29] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-07-29] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-07-29] (McAfee, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\0h4y6p2j.default
FF DefaultSearchEngine: google
FF DefaultSearchUrl: hxxp://www.google.de/search?hl=de&gl=de&lr=&ie=utf-8&oe=utf-8&meta=lr=lang_de&q=
FF SelectedSearchEngine: google
FF Homepage: hxxp://www.google.de?hl=de&gl=de
FF Keyword.URL: hxxp://www.google.de/search?hl=de&gl=de&lr=&ie=utf-8&oe=utf-8&meta=lr=lang_de&q=
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll [2014-05-15] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-20] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-13] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Air\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002: @talk.google.com/GoogleTalkPlugin -> C:\Users\user\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002: @talk.google.com/O1DPlugin -> C:\Users\user\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002: @tools.google.com/Google Update;version=3 -> C:\Users\user\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002: @tools.google.com/Google Update;version=9 -> C:\Users\user\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002: LWAPlugin15.8 -> C:\Users\user\AppData\Roaming\Mozilla\Plugins\npLWAPlugin15.8.dll [2013-03-13] (Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3427957863-554338918-1319331597-1002: www.superoffice.com/SuperOfficeWebToolsPlugin -> C:\Users\user\AppData\Local\SuperOffice\SuperOffice 7 Web Tools Plugin\npSuperOfficeWebToolsPlugin.dll [2014-08-25] (SuperOffice)
FF Plugin ProgramFiles/Appdata: C:\Users\user\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\user\AppData\Roaming\mozilla\plugins\npLWAPlugin15.8.dll [2013-03-13] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\user\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF SearchPlugin: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\0h4y6p2j.default\searchplugins\McSiteAdvisor.xml [2016-02-02]
FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016-08-10]
FF Extension: No Name - C:\Windows\Installer\{65ACC232-FCC4-4FF2-A366-5CE4AF03AEC5}\{D62573F9-6DAB-4655-81C7-6A63F1680518}.xpi [not found]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook
FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2014-10-08] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de
CHR DefaultSearchKeyword: Default -> google.de_
CHR DefaultNewTabURL: Default -> hxxp://www.google.de?hl=de&gl=de
CHR DefaultSuggestURL: Default -> hxxp://www.google.de/suggest?q={searchTerms}&hl=de&gl=de
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google-Suche) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (SiteAdvisor) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2015-07-07]
CHR Extension: (Google Docs Offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
CHR Extension: (Google Mail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-07]
CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-08]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-05-28]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-05-28]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2016-07-27] (Microsoft Corporation)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-03-11] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-03-11] (Dell Inc.)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2014-05-15] (Macrovision Europe Ltd.) [File not signed]
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2013-08-22] (Microsoft Corporation) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-02-01] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-02-20] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-02-20] (Intel Corporation)
R2 Lexware_Update_Service; C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe [66088 2016-03-03] (Haufe-Lexware GmbH & Co. KG)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [158952 2016-07-29] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19439944 2014-09-17] (NVIDIA Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [312056 2015-08-04] (Realtek Semiconductor)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31928 2016-04-22] (Dell Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5611280 2015-08-07] (TeamViewer GmbH)
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-04] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
U2 weClientDataTransferService; C:\Program Files (x86)\Dell\Client\wecdt.exe [1513928 2014-08-22] (EfficientLab, LLC.)
U2 weClientMessengerService; C:\Program Files (x86)\Dell\Client\wecmsg.exe [1669576 2014-08-22] (EfficientLab, LLC.)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
R2 XeroxPrintJobEventManagerService; C:\Program Files\Xerox\XeroxPrintExperience\CommonFiles\XeroxPrintJobEventManagerService.exe [238920 2013-12-02] (Xerox Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4318760 2015-08-13] (Qualcomm Atheros Communications, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [23760 2015-01-31] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2015-05-22] (Dell Computer Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-08-11] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [116736 2014-02-20] (Intel Corporation)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [46240 2016-06-06] (McAfee, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [410848 2015-08-13] (Realsil Semiconductor Corporation)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [216064 2015-10-30] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R3 XtuAcpiDriver; C:\Windows\System32\drivers\XtuAcpiDriver.sys [63840 2015-06-06] (Intel Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-11 11:45 - 2016-08-11 11:46 - 00024835 _____ C:\Users\user\Desktop\FRST.txt
2016-08-11 11:45 - 2016-08-11 11:45 - 02393600 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2016-08-11 11:45 - 2016-08-11 11:45 - 00000000 ____D C:\Users\user\Desktop\FRST-OlderVersion
2016-08-11 11:27 - 2016-08-11 11:27 - 00000952 _____ C:\Users\user\Desktop\JRT.txt
2016-08-11 11:25 - 2016-08-11 11:25 - 01610560 _____ (Malwarebytes) C:\Users\user\Downloads\JRT.exe
2016-08-11 11:25 - 2016-08-11 11:25 - 01610560 _____ (Malwarebytes) C:\Users\user\Desktop\JRT.exe
2016-08-10 17:05 - 2016-08-10 17:05 - 00021266 _____ C:\Users\user\Desktop\abgesprungene-kunden.xlsx
2016-08-10 11:05 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-08-10 11:05 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-10 11:05 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-10 11:05 - 2016-08-03 12:36 - 07469408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-10 11:05 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-10 11:05 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-08-10 11:05 - 2016-08-03 12:30 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-08-10 11:05 - 2016-08-03 12:23 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-10 11:05 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-08-10 11:05 - 2016-08-03 12:22 - 01322760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-10 11:05 - 2016-08-03 12:22 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-10 11:05 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-08-10 11:05 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-08-10 11:05 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-08-10 11:05 - 2016-08-03 12:21 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-10 11:05 - 2016-08-03 12:21 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-10 11:05 - 2016-08-03 12:21 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-10 11:05 - 2016-08-03 12:21 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-08-10 11:05 - 2016-08-03 12:20 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-10 11:05 - 2016-08-03 12:20 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-10 11:05 - 2016-08-03 12:19 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-10 11:05 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-10 11:05 - 2016-08-03 12:13 - 01988448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-10 11:05 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-10 11:05 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-10 11:05 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-10 11:05 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-08-10 11:05 - 2016-08-03 11:51 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-08-10 11:05 - 2016-08-03 11:46 - 22384128 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-10 11:05 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-08-10 11:05 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-08-10 11:05 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-08-10 11:05 - 2016-08-03 11:43 - 16985088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-10 11:05 - 2016-08-03 11:41 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-08-10 11:05 - 2016-08-03 11:41 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-08-10 11:05 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-08-10 11:05 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-08-10 11:05 - 2016-08-03 11:40 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-08-10 11:05 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-08-10 11:05 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2016-08-10 11:05 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-08-10 11:05 - 2016-08-03 11:40 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-10 11:05 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-10 11:05 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-08-10 11:05 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-10 11:05 - 2016-08-03 11:38 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-08-10 11:05 - 2016-08-03 11:37 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-08-10 11:05 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-10 11:05 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-10 11:05 - 2016-08-03 11:36 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-08-10 11:05 - 2016-08-03 11:35 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-10 11:05 - 2016-08-03 11:35 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-10 11:05 - 2016-08-03 11:34 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-10 11:05 - 2016-08-03 11:33 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-08-10 11:05 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-08-10 11:05 - 2016-08-03 11:31 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-08-10 11:05 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-08-10 11:05 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2016-08-10 11:05 - 2016-08-03 11:30 - 24613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-10 11:05 - 2016-08-03 11:30 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-08-10 11:05 - 2016-08-03 11:30 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-10 11:05 - 2016-08-03 11:29 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-10 11:05 - 2016-08-03 11:29 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-08-10 11:05 - 2016-08-03 11:29 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-10 11:05 - 2016-08-03 11:29 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-10 11:05 - 2016-08-03 11:29 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-08-10 11:05 - 2016-08-03 11:29 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-10 11:05 - 2016-08-03 11:29 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-08-10 11:05 - 2016-08-03 11:28 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-08-10 11:05 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-08-10 11:05 - 2016-08-03 11:28 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-08-10 11:05 - 2016-08-03 11:27 - 07536640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-10 11:05 - 2016-08-03 11:27 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-10 11:05 - 2016-08-03 11:27 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-10 11:05 - 2016-08-03 11:27 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-10 11:05 - 2016-08-03 11:20 - 13390336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-10 11:05 - 2016-08-03 11:18 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-10 11:05 - 2016-08-03 11:18 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-08-10 11:05 - 2016-08-03 11:18 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-10 11:05 - 2016-08-03 11:17 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-08-10 11:05 - 2016-08-03 11:16 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-10 11:05 - 2016-08-03 11:16 - 03589120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-10 11:05 - 2016-08-03 11:16 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-08-10 11:05 - 2016-08-03 11:16 - 01732096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-10 11:05 - 2016-08-03 11:15 - 07833088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-10 11:05 - 2016-08-03 11:14 - 04895232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-10 11:05 - 2016-08-03 11:14 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-10 11:05 - 2016-08-03 11:13 - 03025920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-10 11:05 - 2016-08-03 11:13 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-10 11:05 - 2016-08-03 11:12 - 02746368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-08-10 11:05 - 2016-08-03 11:11 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-08-10 11:05 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-08-10 11:05 - 2016-08-03 07:34 - 00501592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-08-10 11:05 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-08-10 11:05 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-08-10 11:05 - 2016-08-03 07:31 - 02921368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-10 11:05 - 2016-08-03 07:31 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-10 11:05 - 2016-08-03 07:31 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-08-10 11:05 - 2016-08-03 07:30 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-10 11:05 - 2016-08-03 07:30 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-10 11:05 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-08-10 11:05 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-08-10 11:05 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-08-10 11:05 - 2016-08-03 06:47 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-10 11:05 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-10 11:05 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-10 11:05 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-08-10 11:05 - 2016-08-03 06:40 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-08-10 11:05 - 2016-08-03 06:39 - 19351040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-10 11:05 - 2016-08-03 06:37 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-08-10 11:05 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-08-10 11:05 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-08-10 11:05 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2016-08-10 11:05 - 2016-08-03 06:34 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-08-10 11:05 - 2016-08-03 06:34 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-10 11:05 - 2016-08-03 06:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-10 11:05 - 2016-08-03 06:33 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-08-10 11:05 - 2016-08-03 06:33 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-10 11:05 - 2016-08-03 06:32 - 12585984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-10 11:05 - 2016-08-03 06:32 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-10 11:05 - 2016-08-03 06:32 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-10 11:05 - 2016-08-03 06:32 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-08-10 11:05 - 2016-08-03 06:31 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-10 11:05 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-08-10 11:05 - 2016-08-03 06:29 - 12133376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-10 11:05 - 2016-08-03 06:28 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-10 11:05 - 2016-08-03 06:25 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-10 11:05 - 2016-08-03 06:25 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-08-10 11:05 - 2016-08-03 06:23 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-10 11:05 - 2016-08-03 06:23 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-08-10 11:05 - 2016-08-03 06:22 - 02501120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-10 11:05 - 2016-08-03 06:22 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-10 11:05 - 2016-08-03 06:21 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-08-10 11:05 - 2016-08-03 06:19 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-08-09 13:36 - 2016-08-09 13:37 - 00775680 _____ C:\Users\user\Downloads\zeitarbeit-so.xls
2016-08-09 13:30 - 2016-08-09 13:31 - 00021387 _____ C:\Users\user\Desktop\rechnung-juni-heute.xlsx
2016-08-09 10:02 - 2016-08-09 10:02 - 00075950 _____ C:\Users\user\Downloads\Analytics www.dv-treff.de Seiten 20160403-20160806.pdf
2016-08-08 13:19 - 2016-08-08 13:29 - 00000000 ____D C:\AdwCleaner
2016-08-08 13:17 - 2016-08-08 13:19 - 03712064 _____ C:\Users\user\Downloads\AdwCleaner_5.201.exe
2016-08-08 11:47 - 2016-08-08 13:00 - 00000000 ____D C:\Users\user\Desktop\mbar
2016-08-08 11:47 - 2016-08-08 13:00 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-08-08 11:46 - 2016-08-08 11:47 - 16563352 _____ (Malwarebytes Corp.) C:\Users\user\Downloads\mbar-1.09.3.1001.exe
2016-08-08 11:40 - 2016-08-08 11:40 - 00012528 _____ C:\mbam.txt
2016-08-04 15:01 - 2016-08-04 15:01 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-08-04 14:25 - 2016-08-04 14:25 - 00000745 _____ C:\Users\user\Downloads\Auswertung-Zugriffe-7344105.csv
2016-08-04 13:46 - 2016-08-04 16:11 - 00000439 _____ C:\Users\user\Desktop\test.htm
2016-08-04 11:53 - 2016-08-04 11:53 - 00075754 _____ C:\Users\user\Downloads\Analytics www.dv-treff.de Alle Zugriffe 20160701-20160731.pdf
2016-08-04 11:53 - 2016-08-04 11:53 - 00075523 _____ C:\Users\user\Downloads\Analytics www.it-treff.de Alle Zugriffe 20160701-20160731.pdf
2016-08-04 11:27 - 2016-08-04 11:27 - 00000000 ____D C:\ProgramData\PC-Doctor for Windows
2016-08-04 11:27 - 2016-08-04 11:27 - 00000000 ____D C:\Program Files\Dell Support Center
2016-08-04 11:07 - 2016-08-04 11:07 - 00176128 _____ C:\Users\user\Downloads\Selection (10).xls
2016-08-04 11:05 - 2016-08-04 11:05 - 00067584 _____ C:\Users\user\Downloads\Selection (9).xls
2016-08-04 09:15 - 2016-08-04 09:15 - 00086814 _____ C:\Users\user\Downloads\TB-50184-19.pdf
2016-08-03 14:47 - 2016-08-03 14:53 - 00010406 _____ C:\Users\user\Downloads\2016-07-dv-treff.xlsx
2016-08-03 14:46 - 2016-08-03 14:46 - 00005108 _____ C:\Users\user\Downloads\2016-03-dv-treff.xlsx
2016-08-03 14:46 - 2016-08-03 14:46 - 00005096 _____ C:\Users\user\Downloads\2016-05-dv-treff.xlsx
2016-08-03 14:46 - 2016-08-03 14:46 - 00005092 _____ C:\Users\user\Downloads\2016-02-dv-treff.xlsx
2016-08-03 14:46 - 2016-08-03 14:46 - 00005067 _____ C:\Users\user\Downloads\2016-06-dv-treff.xlsx
2016-08-03 14:46 - 2016-08-03 14:46 - 00005067 _____ C:\Users\user\Downloads\2016-04-dv-treff.xlsx
2016-08-03 14:13 - 2016-08-03 15:14 - 00000000 ____D C:\Users\user\AppData\Local\FSDART
2016-08-03 14:13 - 2016-08-03 14:16 - 00000000 ____D C:\ProgramData\F-Secure
2016-08-03 14:13 - 2016-08-03 14:13 - 00524248 _____ (F-Secure Corporation) C:\Users\user\Downloads\F-SecureOnlineScanner.exe
2016-08-03 14:13 - 2016-08-03 14:13 - 00000000 ____D C:\Users\user\AppData\Local\F-Secure
2016-08-03 11:20 - 2016-08-03 11:22 - 00086192 _____ C:\TDSSKiller.3.1.0.9_03.08.2016_11.20.17_log.txt
2016-08-03 11:10 - 2016-08-11 11:45 - 00000000 ____D C:\FRST
2016-08-03 11:09 - 2016-08-03 11:20 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\user\Downloads\tdsskiller.exe
2016-08-03 11:09 - 2016-08-03 11:10 - 02393600 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2016-08-03 10:43 - 2016-07-01 06:35 - 01552104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-08-03 10:43 - 2016-07-01 06:35 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-08-03 10:43 - 2016-07-01 06:35 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-08-03 10:43 - 2016-07-01 06:35 - 00847656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-08-03 10:43 - 2016-07-01 06:35 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-08-03 10:43 - 2016-07-01 06:32 - 01603224 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-08-03 10:43 - 2016-07-01 06:19 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-08-03 10:43 - 2016-07-01 06:11 - 01522160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-08-03 10:43 - 2016-07-01 05:47 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-08-03 10:43 - 2016-07-01 05:47 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-08-03 10:43 - 2016-07-01 05:47 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-08-03 10:43 - 2016-07-01 05:45 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-08-03 10:43 - 2016-07-01 05:41 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-08-03 10:43 - 2016-07-01 05:40 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-08-03 10:43 - 2016-07-01 05:38 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-08-03 10:43 - 2016-07-01 05:36 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-08-03 10:43 - 2016-07-01 05:34 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-08-03 10:43 - 2016-07-01 05:32 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-08-03 10:43 - 2016-07-01 05:31 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-08-03 10:43 - 2016-07-01 05:29 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-08-03 10:43 - 2016-07-01 05:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-08-03 10:43 - 2016-07-01 05:25 - 01121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-08-03 10:43 - 2016-07-01 05:25 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-08-03 10:43 - 2016-07-01 05:22 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-08-03 10:43 - 2016-07-01 05:18 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-08-03 10:43 - 2016-07-01 05:15 - 02102272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2016-08-03 10:43 - 2016-07-01 05:08 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-08-03 10:43 - 2016-05-28 06:17 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-08-03 10:43 - 2016-05-28 06:15 - 00794624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-08-03 10:43 - 2016-05-28 06:12 - 00614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-08-03 10:42 - 2016-07-01 06:49 - 00337336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-08-03 10:42 - 2016-07-01 06:38 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-08-03 10:42 - 2016-07-01 06:35 - 01554152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-08-03 10:42 - 2016-07-01 06:35 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-08-03 10:42 - 2016-07-01 06:33 - 01750440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-08-03 10:42 - 2016-07-01 06:33 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-08-03 10:42 - 2016-07-01 06:33 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-08-03 10:42 - 2016-07-01 06:23 - 01349640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-08-03 10:42 - 2016-07-01 06:20 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-08-03 10:42 - 2016-07-01 06:19 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-08-03 10:42 - 2016-07-01 06:19 - 01355336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2016-08-03 10:42 - 2016-07-01 06:12 - 01866104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-08-03 10:42 - 2016-07-01 06:00 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-08-03 10:42 - 2016-07-01 05:58 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-08-03 10:42 - 2016-07-01 05:57 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-08-03 10:42 - 2016-07-01 05:53 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-08-03 10:42 - 2016-07-01 05:50 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-08-03 10:42 - 2016-07-01 05:50 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-08-03 10:42 - 2016-07-01 05:50 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-08-03 10:42 - 2016-07-01 05:50 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll
2016-08-03 10:42 - 2016-07-01 05:49 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Maps.dll
2016-08-03 10:42 - 2016-07-01 05:49 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-08-03 10:42 - 2016-07-01 05:48 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-08-03 10:42 - 2016-07-01 05:48 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-08-03 10:42 - 2016-07-01 05:48 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2016-08-03 10:42 - 2016-07-01 05:47 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-08-03 10:42 - 2016-07-01 05:47 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-08-03 10:42 - 2016-07-01 05:47 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2016-08-03 10:42 - 2016-07-01 05:47 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-08-03 10:42 - 2016-07-01 05:46 - 00714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-08-03 10:42 - 2016-07-01 05:46 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-08-03 10:42 - 2016-07-01 05:46 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-08-03 10:42 - 2016-07-01 05:46 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-08-03 10:42 - 2016-07-01 05:46 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-08-03 10:42 - 2016-07-01 05:46 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2016-08-03 10:42 - 2016-07-01 05:45 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-08-03 10:42 - 2016-07-01 05:45 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-08-03 10:42 - 2016-07-01 05:45 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-08-03 10:42 - 2016-07-01 05:45 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-08-03 10:42 - 2016-07-01 05:45 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2016-08-03 10:42 - 2016-07-01 05:45 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-08-03 10:42 - 2016-07-01 05:44 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-08-03 10:42 - 2016-07-01 05:44 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-08-03 10:42 - 2016-07-01 05:44 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-08-03 10:42 - 2016-07-01 05:44 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2016-08-03 10:42 - 2016-07-01 05:44 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-08-03 10:42 - 2016-07-01 05:44 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-08-03 10:42 - 2016-07-01 05:44 - 00276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-08-03 10:42 - 2016-07-01 05:43 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2016-08-03 10:42 - 2016-07-01 05:43 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-08-03 10:42 - 2016-07-01 05:43 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-08-03 10:42 - 2016-07-01 05:43 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-08-03 10:42 - 2016-07-01 05:43 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-08-03 10:42 - 2016-07-01 05:43 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-08-03 10:42 - 2016-07-01 05:43 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-08-03 10:42 - 2016-07-01 05:43 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2016-08-03 10:42 - 2016-07-01 05:43 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-08-03 10:42 - 2016-07-01 05:42 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-08-03 10:42 - 2016-07-01 05:42 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-08-03 10:42 - 2016-07-01 05:42 - 02012672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2016-08-03 10:42 - 2016-07-01 05:42 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-08-03 10:42 - 2016-07-01 05:42 - 01434112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-08-03 10:42 - 2016-07-01 05:42 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-08-03 10:42 - 2016-07-01 05:42 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-08-03 10:42 - 2016-07-01 05:42 - 00697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-08-03 10:42 - 2016-07-01 05:41 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-08-03 10:42 - 2016-07-01 05:41 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-08-03 10:42 - 2016-07-01 05:41 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-08-03 10:42 - 2016-07-01 05:41 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-08-03 10:42 - 2016-07-01 05:41 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-08-03 10:42 - 2016-07-01 05:41 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-08-03 10:42 - 2016-07-01 05:40 - 02103296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-08-03 10:42 - 2016-07-01 05:40 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-08-03 10:42 - 2016-07-01 05:40 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-08-03 10:42 - 2016-07-01 05:40 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-08-03 10:42 - 2016-07-01 05:40 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-08-03 10:42 - 2016-07-01 05:40 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-08-03 10:42 - 2016-07-01 05:40 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-08-03 10:42 - 2016-07-01 05:39 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-08-03 10:42 - 2016-07-01 05:38 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-08-03 10:42 - 2016-07-01 05:38 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IconCodecService.dll
2016-08-03 10:42 - 2016-07-01 05:37 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-08-03 10:42 - 2016-07-01 05:37 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-08-03 10:42 - 2016-07-01 05:37 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-08-03 10:42 - 2016-07-01 05:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-08-03 10:42 - 2016-07-01 05:36 - 03415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-08-03 10:42 - 2016-07-01 05:36 - 01141248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2016-08-03 10:42 - 2016-07-01 05:36 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-08-03 10:42 - 2016-07-01 05:35 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2016-08-03 10:42 - 2016-07-01 05:34 - 09919488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-08-03 10:42 - 2016-07-01 05:34 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-08-03 10:42 - 2016-07-01 05:34 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-08-03 10:42 - 2016-07-01 05:33 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-08-03 10:42 - 2016-07-01 05:33 - 06675968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-08-03 10:42 - 2016-07-01 05:33 - 02285568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-08-03 10:42 - 2016-07-01 05:33 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2016-08-03 10:42 - 2016-07-01 05:33 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WPDShServiceObj.dll
2016-08-03 10:42 - 2016-07-01 05:32 - 02563584 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-08-03 10:42 - 2016-07-01 05:32 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-08-03 10:42 - 2016-07-01 05:31 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-08-03 10:42 - 2016-07-01 05:31 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2016-08-03 10:42 - 2016-07-01 05:30 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-08-03 10:42 - 2016-07-01 05:30 - 00546816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-08-03 10:42 - 2016-07-01 05:30 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2016-08-03 10:42 - 2016-07-01 05:30 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-08-03 10:42 - 2016-07-01 05:30 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3ui.dll
2016-08-03 10:42 - 2016-07-01 05:30 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-08-03 10:42 - 2016-07-01 05:29 - 02609664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-08-03 10:42 - 2016-07-01 05:29 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-08-03 10:42 - 2016-07-01 05:29 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2016-08-03 10:42 - 2016-07-01 05:29 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2016-08-03 10:42 - 2016-07-01 05:28 - 03577344 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-08-03 10:42 - 2016-07-01 05:28 - 02876928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-08-03 10:42 - 2016-07-01 05:28 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2016-08-03 10:42 - 2016-07-01 05:28 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2016-08-03 10:42 - 2016-07-01 05:27 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2016-08-03 10:42 - 2016-07-01 05:27 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2016-08-03 10:42 - 2016-07-01 05:27 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-08-03 10:42 - 2016-07-01 05:27 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-08-03 10:42 - 2016-07-01 05:27 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-03 10:42 - 2016-07-01 05:27 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2016-08-03 10:42 - 2016-07-01 05:27 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2016-08-03 10:42 - 2016-07-01 05:26 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-08-03 10:42 - 2016-07-01 05:26 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2016-08-03 10:42 - 2016-07-01 05:26 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-08-03 10:42 - 2016-07-01 05:26 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sbe.dll
2016-08-03 10:42 - 2016-07-01 05:26 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-08-03 10:42 - 2016-07-01 05:26 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-08-03 10:42 - 2016-07-01 05:26 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2016-08-03 10:42 - 2016-07-01 05:25 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-08-03 10:42 - 2016-07-01 05:25 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-08-03 10:42 - 2016-07-01 05:25 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-08-03 10:42 - 2016-07-01 05:25 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2016-08-03 10:42 - 2016-07-01 05:25 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-08-03 10:42 - 2016-07-01 05:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-08-03 10:42 - 2016-07-01 05:24 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-08-03 10:42 - 2016-07-01 05:24 - 01487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-08-03 10:42 - 2016-07-01 05:24 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-08-03 10:42 - 2016-07-01 05:24 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-08-03 10:42 - 2016-07-01 05:24 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-08-03 10:42 - 2016-07-01 05:24 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-08-03 10:42 - 2016-07-01 05:23 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-08-03 10:42 - 2016-07-01 05:23 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-08-03 10:42 - 2016-07-01 05:23 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-08-03 10:42 - 2016-07-01 05:23 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-08-03 10:42 - 2016-07-01 05:23 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-08-03 10:42 - 2016-07-01 05:22 - 00965120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-08-03 10:42 - 2016-07-01 05:22 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-08-03 10:42 - 2016-07-01 05:21 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2016-08-03 10:42 - 2016-07-01 05:19 - 01987072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-08-03 10:42 - 2016-07-01 05:19 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-08-03 10:42 - 2016-07-01 05:19 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-08-03 10:42 - 2016-07-01 05:16 - 02771968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-08-03 10:42 - 2016-07-01 05:16 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-08-03 10:42 - 2016-07-01 05:15 - 04413440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-08-03 10:42 - 2016-07-01 05:15 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-08-03 10:42 - 2016-07-01 05:15 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2016-08-03 10:42 - 2016-07-01 05:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2016-08-03 10:42 - 2016-07-01 05:14 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-08-03 10:42 - 2016-07-01 05:13 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-08-03 10:42 - 2016-07-01 05:12 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-08-03 10:42 - 2016-07-01 05:11 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-08-03 10:42 - 2016-07-01 05:09 - 02632192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-08-03 10:42 - 2016-07-01 05:08 - 01976832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2016-08-03 10:42 - 2016-05-28 07:25 - 04268880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2016-08-03 10:42 - 2016-05-28 07:23 - 00388384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-08-03 10:42 - 2016-05-28 07:22 - 04387680 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-08-03 10:42 - 2016-05-28 07:22 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-08-03 10:42 - 2016-05-28 07:09 - 00170848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
2016-08-03 10:42 - 2016-05-28 07:04 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-08-03 10:42 - 2016-05-28 07:04 - 00111064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-08-03 10:42 - 2016-05-28 06:57 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-08-03 10:42 - 2016-05-28 06:57 - 00316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-08-03 10:42 - 2016-05-28 06:25 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-08-03 10:42 - 2016-05-28 06:24 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-08-03 10:42 - 2016-05-28 06:22 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-08-03 10:42 - 2016-05-28 06:21 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-08-03 10:42 - 2016-05-28 06:20 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-08-03 10:42 - 2016-05-28 06:20 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2016-08-03 10:42 - 2016-05-28 06:19 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2016-08-03 10:42 - 2016-05-28 06:18 - 00380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-08-03 10:42 - 2016-05-28 06:16 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-08-03 10:42 - 2016-05-28 06:16 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-08-03 10:42 - 2016-05-28 06:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-08-03 10:42 - 2016-05-28 06:15 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2016-08-03 10:42 - 2016-05-28 06:14 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-08-03 10:42 - 2016-05-28 06:12 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-08-03 10:42 - 2016-05-28 06:11 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-08-03 10:42 - 2016-05-28 06:03 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll
2016-08-03 10:42 - 2016-05-28 05:59 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-08-03 10:42 - 2016-05-28 05:53 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-08-03 10:41 - 2016-07-01 06:45 - 01613664 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-08-03 10:41 - 2016-07-01 06:43 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-08-03 10:41 - 2016-07-01 06:39 - 01557776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-08-03 10:41 - 2016-07-01 06:38 - 01083656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2016-08-03 10:41 - 2016-07-01 06:38 - 00256192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2016-08-03 10:41 - 2016-07-01 06:35 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-08-03 10:41 - 2016-07-01 06:32 - 06605544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-08-03 10:41 - 2016-07-01 06:32 - 06536256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-08-03 10:41 - 2016-07-01 06:32 - 01040800 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-08-03 10:41 - 2016-07-01 06:32 - 00106928 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2016-08-03 10:41 - 2016-07-01 06:24 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-08-03 10:41 - 2016-07-01 06:23 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-08-03 10:41 - 2016-07-01 06:23 - 00925576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-08-03 10:41 - 2016-07-01 06:23 - 00709176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-08-03 10:41 - 2016-07-01 06:23 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-08-03 10:41 - 2016-07-01 06:23 - 00451936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-08-03 10:41 - 2016-07-01 06:23 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-08-03 10:41 - 2016-07-01 06:21 - 28851224 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-08-03 10:41 - 2016-07-01 06:21 - 02403168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-08-03 10:41 - 2016-07-01 06:19 - 00836760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2016-08-03 10:41 - 2016-07-01 06:19 - 00569752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-08-03 10:41 - 2016-07-01 06:18 - 00064584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2016-08-03 10:41 - 2016-07-01 06:17 - 01536600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-08-03 10:41 - 2016-07-01 06:12 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-08-03 10:41 - 2016-07-01 06:11 - 00521152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-08-03 10:41 - 2016-07-01 06:10 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2016-08-03 10:41 - 2016-07-01 06:07 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2016-08-03 10:41 - 2016-07-01 06:03 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-08-03 10:41 - 2016-07-01 05:59 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-08-03 10:41 - 2016-07-01 05:58 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2016-08-03 10:41 - 2016-07-01 05:55 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-08-03 10:41 - 2016-07-01 05:55 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUX.dll
2016-08-03 10:41 - 2016-07-01 05:55 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-08-03 10:41 - 2016-07-01 05:54 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-08-03 10:41 - 2016-07-01 05:54 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-08-03 10:41 - 2016-07-01 05:52 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-08-03 10:41 - 2016-07-01 05:52 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2016-08-03 10:41 - 2016-07-01 05:51 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-08-03 10:41 - 2016-07-01 05:50 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimCfg.dll
2016-08-03 10:41 - 2016-07-01 05:50 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2016-08-03 10:41 - 2016-07-01 05:50 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2016-08-03 10:41 - 2016-07-01 05:49 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-08-03 10:41 - 2016-07-01 05:48 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2016-08-03 10:41 - 2016-07-01 05:48 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimAuth.dll
2016-08-03 10:41 - 2016-07-01 05:47 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-08-03 10:41 - 2016-07-01 05:47 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-08-03 10:41 - 2016-07-01 05:47 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-08-03 10:41 - 2016-07-01 05:46 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-08-03 10:41 - 2016-07-01 05:46 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2016-08-03 10:41 - 2016-07-01 05:46 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2016-08-03 10:41 - 2016-07-01 05:46 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll
2016-08-03 10:41 - 2016-07-01 05:46 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2016-08-03 10:41 - 2016-07-01 05:45 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-08-03 10:41 - 2016-07-01 05:45 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-08-03 10:41 - 2016-07-01 05:45 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2016-08-03 10:41 - 2016-07-01 05:45 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-08-03 10:41 - 2016-07-01 05:45 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-08-03 10:41 - 2016-07-01 05:44 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-08-03 10:41 - 2016-07-01 05:44 - 00677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2016-08-03 10:41 - 2016-07-01 05:44 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-03 10:41 - 2016-07-01 05:44 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-08-03 10:41 - 2016-07-01 05:43 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2016-08-03 10:41 - 2016-07-01 05:43 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-08-03 10:41 - 2016-07-01 05:43 - 00992256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2016-08-03 10:41 - 2016-07-01 05:43 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2016-08-03 10:41 - 2016-07-01 05:43 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-08-03 10:41 - 2016-07-01 05:43 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2016-08-03 10:41 - 2016-07-01 05:43 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-08-03 10:41 - 2016-07-01 05:43 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-08-03 10:41 - 2016-07-01 05:42 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-08-03 10:41 - 2016-07-01 05:42 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-08-03 10:41 - 2016-07-01 05:42 - 00429056 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2016-08-03 10:41 - 2016-07-01 05:42 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2016-08-03 10:41 - 2016-07-01 05:41 - 01847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-08-03 10:41 - 2016-07-01 05:41 - 01001472 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-08-03 10:41 - 2016-07-01 05:41 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-08-03 10:41 - 2016-07-01 05:41 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-08-03 10:41 - 2016-07-01 05:41 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-08-03 10:41 - 2016-07-01 05:40 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2016-08-03 10:41 - 2016-07-01 05:40 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-08-03 10:41 - 2016-07-01 05:40 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-08-03 10:41 - 2016-07-01 05:40 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2016-08-03 10:41 - 2016-07-01 05:39 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2016-08-03 10:41 - 2016-07-01 05:39 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2016-08-03 10:41 - 2016-07-01 05:38 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-08-03 10:41 - 2016-07-01 05:38 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-08-03 10:41 - 2016-07-01 05:37 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-08-03 10:41 - 2016-07-01 05:37 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-08-03 10:41 - 2016-07-01 05:34 - 04170240 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-08-03 10:41 - 2016-07-01 05:34 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2016-08-03 10:41 - 2016-07-01 05:34 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-08-03 10:41 - 2016-07-01 05:32 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-08-03 10:41 - 2016-07-01 05:32 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2016-08-03 10:41 - 2016-07-01 05:32 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimCfg.dll
2016-08-03 10:41 - 2016-07-01 05:32 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-08-03 10:41 - 2016-07-01 05:31 - 01385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-08-03 10:41 - 2016-07-01 05:31 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-08-03 10:41 - 2016-07-01 05:31 - 00882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-08-03 10:41 - 2016-07-01 05:31 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WmpDui.dll
2016-08-03 10:41 - 2016-07-01 05:31 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-08-03 10:41 - 2016-07-01 05:31 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-08-03 10:41 - 2016-07-01 05:31 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2016-08-03 10:41 - 2016-07-01 05:31 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimAuth.dll
2016-08-03 10:41 - 2016-07-01 05:30 - 02902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2016-08-03 10:41 - 2016-07-01 05:30 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2016-08-03 10:41 - 2016-07-01 05:30 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-08-03 10:41 - 2016-07-01 05:30 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-08-03 10:41 - 2016-07-01 05:30 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmdskmgr.dll
2016-08-03 10:41 - 2016-07-01 05:30 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-08-03 10:41 - 2016-07-01 05:30 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2016-08-03 10:41 - 2016-07-01 05:30 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityCommon.dll
2016-08-03 10:41 - 2016-07-01 05:29 - 04646912 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-08-03 10:41 - 2016-07-01 05:29 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-08-03 10:41 - 2016-07-01 05:29 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-08-03 10:41 - 2016-07-01 05:29 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-08-03 10:41 - 2016-07-01 05:29 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2016-08-03 10:41 - 2016-07-01 05:29 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2016-08-03 10:41 - 2016-07-01 05:28 - 02912256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-08-03 10:41 - 2016-07-01 05:28 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2016-08-03 10:41 - 2016-07-01 05:28 - 00442880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-08-03 10:41 - 2016-07-01 05:28 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-08-03 10:41 - 2016-07-01 05:28 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-08-03 10:41 - 2016-07-01 05:28 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-08-03 10:41 - 2016-07-01 05:28 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2016-08-03 10:41 - 2016-07-01 05:28 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
2016-08-03 10:41 - 2016-07-01 05:28 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2016-08-03 10:41 - 2016-07-01 05:27 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-08-03 10:41 - 2016-07-01 05:27 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2016-08-03 10:41 - 2016-07-01 05:27 - 00629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-08-03 10:41 - 2016-07-01 05:27 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-08-03 10:41 - 2016-07-01 05:27 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2016-08-03 10:41 - 2016-07-01 05:27 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcfile.dll
2016-08-03 10:41 - 2016-07-01 05:27 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-08-03 10:41 - 2016-07-01 05:26 - 01445888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-08-03 10:41 - 2016-07-01 05:26 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2016-08-03 10:41 - 2016-07-01 05:26 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-08-03 10:41 - 2016-07-01 05:26 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-08-03 10:41 - 2016-07-01 05:26 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2016-08-03 10:41 - 2016-07-01 05:26 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-08-03 10:41 - 2016-07-01 05:26 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2016-08-03 10:41 - 2016-07-01 05:25 - 01508352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmsipc.dll
2016-08-03 10:41 - 2016-07-01 05:25 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-08-03 10:41 - 2016-07-01 05:25 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-08-03 10:41 - 2016-07-01 05:25 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-08-03 10:41 - 2016-07-01 05:25 - 00645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2016-08-03 10:41 - 2016-07-01 05:25 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-08-03 10:41 - 2016-07-01 05:25 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2016-08-03 10:41 - 2016-07-01 05:25 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2016-08-03 10:41 - 2016-07-01 05:25 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2016-08-03 10:41 - 2016-07-01 05:25 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2016-08-03 10:41 - 2016-07-01 05:24 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-08-03 10:41 - 2016-07-01 05:24 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-08-03 10:41 - 2016-07-01 05:24 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2016-08-03 10:41 - 2016-07-01 05:23 - 03301376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2016-08-03 10:41 - 2016-07-01 05:23 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-08-03 10:41 - 2016-07-01 05:23 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-08-03 10:41 - 2016-07-01 05:23 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-08-03 10:41 - 2016-07-01 05:23 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2016-08-03 10:41 - 2016-07-01 05:23 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2016-08-03 10:41 - 2016-07-01 05:23 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2016-08-03 10:41 - 2016-07-01 05:22 - 03053568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-08-03 10:41 - 2016-07-01 05:21 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-08-03 10:41 - 2016-07-01 05:21 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc.dll
2016-08-03 10:41 - 2016-07-01 05:20 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2016-08-03 10:41 - 2016-07-01 05:20 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-08-03 10:41 - 2016-07-01 05:20 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-08-03 10:41 - 2016-07-01 05:19 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-08-03 10:41 - 2016-07-01 05:19 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2016-08-03 10:41 - 2016-07-01 05:19 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-08-03 10:41 - 2016-07-01 05:18 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2016-08-03 10:41 - 2016-07-01 05:18 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-08-03 10:41 - 2016-07-01 05:17 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-08-03 10:41 - 2016-07-01 05:16 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-08-03 10:41 - 2016-07-01 05:15 - 03459584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2016-08-03 10:41 - 2016-07-01 05:15 - 02679808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2016-08-03 10:41 - 2016-07-01 05:15 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-08-03 10:41 - 2016-07-01 05:15 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-08-03 10:41 - 2016-07-01 05:14 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-08-03 10:41 - 2016-07-01 05:14 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-08-03 10:41 - 2016-07-01 05:13 - 02849792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2016-08-03 10:41 - 2016-07-01 05:13 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-08-03 10:41 - 2016-07-01 05:13 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-08-03 10:41 - 2016-07-01 05:13 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-08-03 10:41 - 2016-07-01 05:08 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-08-03 10:41 - 2016-07-01 05:08 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-08-03 10:41 - 2016-05-28 07:23 - 00312160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-08-03 10:41 - 2016-05-28 07:20 - 00430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-08-03 10:41 - 2016-05-28 07:18 - 00357216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-08-03 10:41 - 2016-05-28 07:08 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-08-03 10:41 - 2016-05-28 07:04 - 00097096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-08-03 10:41 - 2016-05-28 06:57 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-08-03 10:41 - 2016-05-28 06:57 - 01372312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-08-03 10:41 - 2016-05-28 06:28 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-08-03 10:41 - 2016-05-28 06:26 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-08-03 10:41 - 2016-05-28 06:24 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys
2016-08-03 10:41 - 2016-05-28 06:24 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-08-03 10:41 - 2016-05-28 06:22 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-08-03 10:41 - 2016-05-28 06:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-08-03 10:41 - 2016-05-28 06:20 - 00511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2016-08-03 10:41 - 2016-05-28 06:20 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-08-03 10:41 - 2016-05-28 06:19 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-08-03 10:41 - 2016-05-28 06:18 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-08-03 10:41 - 2016-05-28 06:18 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-08-03 10:41 - 2016-05-28 06:18 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-08-03 10:41 - 2016-05-28 06:17 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2016-08-03 10:41 - 2016-05-28 06:16 - 00684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-08-03 10:41 - 2016-05-28 06:16 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-08-03 10:41 - 2016-05-28 06:16 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-08-03 10:41 - 2016-05-28 06:15 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2016-08-03 10:41 - 2016-05-28 06:15 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-08-03 10:41 - 2016-05-28 06:14 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-08-03 10:41 - 2016-05-28 06:13 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2016-08-03 10:41 - 2016-05-28 06:04 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll


Alle Zeitangaben in WEZ +1. Es ist jetzt 13:04 Uhr.
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131