Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Great Dealz und Preisvergleich Toolbar bei Firefox

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 01.04.2017, 22:15   #1
Torsten_
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



Hallo,
ich habe gerade meinen Rechner neu aufgesetzt und scheine beim Installieren der benötigten Programme auch gleich einen unerwünschten Beifang gemacht zu haben. Seit kurzem habe ich in meinem Browser ständig Werbung von "GreatDealz" oder "Preisvergleich".

Wie lassen die sich deinstallieren?

Viele Grüße
Torsten

Alt 02.04.2017, 11:54   #2
M-K-D-B
/// TB-Ausbilder
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox









Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.



Um die Bereinigung möchlichst effektiv und schnell gestalten zu können, bitte ich um Beachtung der folgenden Hinweise:
  1. Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
  2. Lies dir meine Anleitungen immer sorgfältig durch, arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste immer alle Logdateien (auch wenn nichts gefunden wurde). Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
  3. Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo. Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
  4. Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
    Außerdem bitte ich dich, nicht eigenmächtig irgendwelche Sicherheitsprogramme auszuführen und damit deinen Rechner zu überprüfen/bereinigen, da ich so leicht den Überblick verlieren kann.
    Außerdem hättest du dir das Eröffnen eines Themas in diesem Fall auch gleich sparen können, wenn du dann doch wieder alleine rumhantierst.

  5. Bitte beachten: Download bei filepony.de: So ladet Ihr unsere Tools richtig!
  6. Alle zu verwendenen Programme sind auf dem Desktop ( C:\users\dein Benutzername\Desktop\ ) abzuspeichern und von dort als Administrator zu starten!
  7. Einige Programme, die wir hier verwenden, können unter Umständen von deinem Antiviren- oder Anti-Malwareprogramm fälschlicherweise als Bedrohung eingestuft werden. Die Sicherheitsprogramme können aufgrund eines bestimmten Programmverhaltens nicht zwischen "gut" oder "böse" unterscheiden und schlagen Alarm. Dabei handelt es sich um Fehlalarme, welche du getrost ignorieren kannst. Gegebenenfalls musst du deine Sicherheitssoftware vor der Ausführung eines Programms deaktivieren, damit unsere Bereinigungsvorgänge nicht beeinträchtigt werden.
  8. Sollten die Logdateien einmal die zulässige Länge (~ 120.000 Zeichen) überschreiten, so teile die Logdateien auf mehrere Posts auf.
    Zur Not kannst du die Logdateien dann auch zippen (in ein .zip Archiv packen) und als Anhang hochladen.

  9. Bitte arbeite so lange mit mir zusammen, bis ich dir sage, dass wir fertig sind und dein Rechner "sauber" ist. Das vorzeitige Verschwinden von Symptomen heißt nicht automatisch, dass dein Rechner bereits vollständig sauber ist.
  10. In der Regel antworte ich dir innerhalb von 24 Stunden, oft sogar wesentlich schneller.
    Jedoch habe auch ich einen normalen Beruf und Familie. Ich bin daher nicht jeden Tag stundenlag hier im Forum unterwegs. Es kann unter Umständen bis zu 2 Tage dauern, bis du eine Antwort von mir erhältst. Sollte diese Zeit überschritten sein, so kannst du mir gerne eine PM als Erinnerung schicken.





Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:
So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke aauf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danke für deine Mitarbeit!







Schritt 1
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)







Schritt 2
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.







Bitte poste mit deiner nächsten Antwort
  • die Logdatei von TDSS-Killer,
  • die beiden neuen Logdateien von FRST.
__________________

__________________

Alt 03.04.2017, 08:45   #3
Torsten_
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



Vielen Dank für die ausführliche Antwort. Hier zunächst die FRST Files, der TDSSkiller läuft noch.

FRST.txt

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
durchgeführt von Torsten Wetzel (Administrator) auf DESKTOP-4N5ED6S (03-04-2017 08:30:36)
Gestartet von C:\Users\Torsten Wetzel\Downloads
Geladene Profile: Torsten Wetzel (Verfügbare Profile: Torsten Wetzel)
Platform: Windows 10 Pro Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igfxCUIService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHDCPSvc.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SAII\CxUtilSvc.exe
(Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHeciSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
() C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Realtek Semiconductor Corp.) C:\Windows\RtsCM64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igfxEM.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Lenovo) C:\Users\Torsten Wetzel\AppData\Local\Apps\2.0\D21ACA6Y.VWW\ATZ7GCEH.6V1\lsb...tion_2d7b41b05b24775e_0001.0006_3b0a905c8de4f74a\LSB.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17022.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Krzysztof Kowalczyk) C:\Program Files\SumatraPDF\SumatraPDF.exe
(The TeXnicCenter Team) C:\Program Files (x86)\TeXnicCenter\TeXnicCenter.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-11-20] (Microsoft Corporation)
HKLM\...\Run: [RtsFT] => C:\Windows\RTFTrack.EXE [5456392 2016-11-09] (Realtek semiconductor)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [28065728 2017-03-21] (Dropbox, Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [61944 2017-02-22] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [909744 2017-03-27] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [73216 2017-03-10] ()
HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\...\Run: [VLC Updater] => C:\Program Files (x86)\VLC Updater\vlc-updater.exe [360776 2017-02-22] ()
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{6056bc2a-39ff-466c-9410-b3711373dd64}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{665c8fc1-86de-4d14-97a5-f6c989ebed8b}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com
SearchScopes: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001 -> DefaultScope {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.de/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001 -> {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.de/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-03-06] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-03-06] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-03-07] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-03-07] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: i2bo6qt8.default
FF ProfilePath: C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default [2017-04-03]
FF NewTab: Mozilla\Firefox\Profiles\i2bo6qt8.default -> about:home
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\i2bo6qt8.default -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\i2bo6qt8.default -> Google
FF Homepage: Mozilla\Firefox\Profiles\i2bo6qt8.default -> about:home
FF Extension: (GreatDealz) - C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default\Extensions\@greatdealz.xpi [2017-02-22]
FF Extension: (Avira Browser Safety) - C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default\Extensions\abs@avira.com [2017-03-08]
FF Extension: (Site Deployment Checker) - C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default\features\{632f0dee-e6c6-4edc-ae07-ad3eab8291a9}\deployment-checker@mozilla.org.xpi [2017-03-25]
FF SearchPlugin: C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default\searchplugins\google-lavasoft.xml [2017-03-15]
FF Extension: (Site Deployment Checker) - C:\Program Files (x86)\Mozilla Firefox\browser\features\deployment-checker@mozilla.org.xpi [2017-03-31] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_268.dll [2017-03-07] ()
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_268.dll [2017-03-07] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-03-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-03-07] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-02-17] (Adobe Systems Inc.)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [djhangopedggnlnicpbjklghlckmndge] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lobonlhedgiilkfmbbbfhkaoefacipgj] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1115552 2017-03-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [487432 2017-03-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [487432 2017-03-27] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1519136 2017-03-27] (Avira Operations GmbH & Co. KG)
R2 AtherosSvc; C:\WINDOWS\system32\AdminService.exe [347064 2017-03-07] (Windows (R) Win 7 DDK provider)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [349560 2017-03-09] (Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3737792 2017-03-26] (Microsoft Corporation)
R2 connect2hotspot; C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe [100680 2017-02-08] (Lenovo)
R3 cphs; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHeciSvc.exe [301504 2017-03-07] (Intel Corporation)
R2 cplspcon; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHDCPSvc.exe [480200 2017-03-07] (Intel Corporation)
R2 CxUtilSvc; C:\Program Files\Conexant\SAII\CxUtilSvc.exe [132096 2016-05-12] (Conexant Systems, Inc.) [Datei ist nicht signiert]
R2 DAX2API; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [154816 2016-07-18] ()
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-07] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-07] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46408 2017-03-11] (Dropbox, Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igfxCUIService.exe [341952 2017-03-07] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [630048 2016-10-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-12-05] (Intel Corporation)
R2 LPlatSvc; C:\WINDOWS\system32\LPlatSvc.exe [710144 2017-03-07] (Lenovo.)
R2 SAService; C:\WINDOWS\system32\SAsrv.exe [409088 2016-07-27] (Conexant Systems, Inc.) [Datei ist nicht signiert]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-11-20] (Microsoft Corporation)
R3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23416 2017-01-18] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [267864 2017-01-11] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-03-18] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [161824 2017-02-15] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [163976 2017-02-15] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-02-15] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-02-15] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [48584 2017-02-15] (Avira Operations GmbH & Co. KG)
R3 BHTPCRDR; C:\WINDOWS\System32\drivers\bhtpcrdr.sys [184856 2017-03-07] (BayHubTech/O2Micro )
R3 igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igdkmd64.sys [11039680 2017-03-07] (Intel Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 Qcamain10x64; C:\WINDOWS\system32\DRIVERS\Qcamain10x64.sys [2403256 2016-08-29] (Qualcomm Atheros, Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-23] (Realtek                                            )
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3150856 2016-11-09] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [64088 2017-01-11] (Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-04-03 08:30 - 2017-04-03 08:30 - 00021293 _____ C:\Users\Torsten Wetzel\Downloads\FRST.txt
2017-04-03 08:30 - 2017-04-03 08:30 - 00000000 ____D C:\FRST
2017-04-03 06:47 - 2017-04-03 08:30 - 02424832 _____ (Farbar) C:\Users\Torsten Wetzel\Downloads\FRST64.exe
2017-04-01 00:34 - 2017-04-01 00:34 - 00084437 _____ C:\Users\Torsten Wetzel\Desktop\KA3_82.xlsx
2017-03-31 20:56 - 2017-03-31 20:57 - 01201256 _____ (Adobe Systems Incorporated) C:\Users\Torsten Wetzel\Downloads\flashplayer25_xa_install.exe
2017-03-25 02:24 - 2017-03-25 02:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-03-23 06:39 - 2017-03-27 13:47 - 00000000 ____D C:\Users\Torsten Wetzel\Desktop\Jill
2017-03-22 09:28 - 2017-03-22 09:28 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\LocalLow\Adobe
2017-03-22 09:28 - 2017-03-22 09:28 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\CEF
2017-03-21 10:21 - 2017-03-28 06:03 - 00013694 _____ C:\Users\Torsten Wetzel\Desktop\Vera8_2017.xlsx
2017-03-19 22:56 - 2017-03-23 06:59 - 00000000 ____D C:\Users\Torsten Wetzel\MediathekView
2017-03-18 23:17 - 2016-12-21 09:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-03-18 23:17 - 2016-12-21 06:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-03-18 21:18 - 2017-03-18 21:18 - 00002414 _____ C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-18 21:17 - 2017-03-18 21:17 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Conexant
2017-03-18 21:16 - 2017-03-19 02:53 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\ConnectedDevicesPlatform
2017-03-18 21:16 - 2017-03-18 21:16 - 00000020 ___SH C:\Users\Torsten Wetzel\ntuser.ini
2017-03-18 21:16 - 2017-03-18 21:16 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Comms
2017-03-18 20:45 - 2017-03-18 20:45 - 00000000 ____D C:\WINDOWS\UCI
2017-03-18 20:45 - 2017-03-18 20:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2017-03-18 20:45 - 2016-07-27 11:43 - 00409088 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\SASrv.exe
2017-03-18 20:44 - 2017-03-18 21:17 - 00000000 ____D C:\ProgramData\Conexant
2017-03-18 20:44 - 2017-03-18 20:44 - 01701376 _____ (TODO: <Company name>) C:\WINDOWS\SysWOW64\RebootPrompt.exe
2017-03-18 20:44 - 2017-03-18 20:44 - 00000102 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\ProgramData\UIU
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\ProgramData\Dolby
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\Program Files\Dolby
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\Program Files\CONEXANT
2017-03-18 20:44 - 2016-08-24 15:58 - 00004664 _____ C:\WINDOWS\system32\Drivers\CxSfPt.dat
2017-03-18 20:44 - 2015-09-16 17:10 - 00225624 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxAudMsg64.exe
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Vorlagen
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Startmenü
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2017-03-18 20:39 - 2017-03-18 20:39 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2017-03-18 20:39 - 2017-03-18 20:39 - 00007623 _____ C:\WINDOWS\diagerr.xml
2017-03-18 20:38 - 2017-03-18 20:38 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-03-18 20:38 - 2017-03-18 20:38 - 00003776 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2017-03-18 20:38 - 2017-03-18 20:38 - 00003552 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2017-03-18 20:38 - 2017-03-18 20:38 - 00003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-03-18 20:38 - 2017-03-18 20:38 - 00003332 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F9B501D5-1172-45E5-8976-7E66D83CE673}
2017-03-18 20:38 - 2017-03-18 20:38 - 00003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2017-03-18 20:38 - 2017-03-18 20:38 - 00003098 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-03-18 20:38 - 2017-03-18 20:38 - 00002772 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-18 20:38 - 2017-03-18 20:38 - 00002016 _____ C:\WINDOWS\System32\Tasks\RtsCM
2017-03-18 20:38 - 2017-03-18 20:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\TVT
2017-03-18 20:38 - 2017-03-18 20:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2017-03-18 20:38 - 2017-03-18 20:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2017-03-18 20:37 - 2017-03-18 20:37 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-03-18 20:35 - 2017-03-18 20:35 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-03-18 20:34 - 2017-03-19 22:56 - 00000000 ____D C:\Users\Torsten Wetzel
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Vorlagen
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Startmenü
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Netzwerkumgebung
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Lokale Einstellungen
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Eigene Dateien
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Druckumgebung
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Documents\Eigene Videos
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Documents\Eigene Musik
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Documents\Eigene Bilder
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\AppData\Local\Verlauf
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\AppData\Local\Anwendungsdaten
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Anwendungsdaten
2017-03-18 20:33 - 2017-03-18 20:35 - 00000000 ____D C:\Program Files\Intel
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____D C:\Program Files\Synaptics
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____D C:\Program Files\Realtek
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____D C:\Program Files\Common Files\Atheros
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-03-18 20:33 - 2017-03-07 18:09 - 00113648 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-03-18 20:32 - 2017-03-18 20:40 - 00000000 ___DC C:\WINDOWS\Panther
2017-03-18 20:31 - 2017-03-30 06:19 - 00000000 ____D C:\Windows.old
2017-03-18 20:30 - 2017-03-18 20:35 - 00000000 ____D C:\WINDOWS\CSC
2017-03-18 20:29 - 2017-03-18 20:29 - 23676416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 22565376 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 19411968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 18362368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 17198592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 13873664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 13441536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 13085184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 12178944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 09130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 08886976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSetup.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 08169536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 08125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 08076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07812096 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07786336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07468544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07220696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07216640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06667528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 06285824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05380608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05114368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04674360 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 04613120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04596224 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 04260576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04136448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04060672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04023000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03753984 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 03542016 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 03478528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03441664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03405312 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03370496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03289088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03202048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02996736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 02953216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02914816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02913144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02895872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02828384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02750384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02677544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02643456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02536288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02512304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02483200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02475008 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02446704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02363904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02287104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02277288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02256080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 02213760 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02189664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02170720 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02109952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 02084352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02003968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01989072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01981440 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01937920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01917440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01913856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01886344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01860288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01853224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01837056 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01780224 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01738560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01723560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01692160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01691136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01669984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01633792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01617760 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01595904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01589760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01576448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01571840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01570208 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01562112 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01536000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 01512448 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01507840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01493504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01477632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01473048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01470816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01454512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01416224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01415240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01400160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01399296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Pimstore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01369088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01366016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01362512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01357312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01354312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-03-18 20:29 - 2017-03-18 20:29 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01345024 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01344448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01336320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01328640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01320448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01301112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01299968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01294688 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01293152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01280512 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01277856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01266176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01260784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01202384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01196544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 01189376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01184256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01181024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 01172984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01157000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01154560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Pimstore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01137152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01133568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01123912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01117024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01069720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01063472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01054048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-03-18 20:29 - 2017-03-18 20:29 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01025536 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01016320 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01013760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01000280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-03-18 20:29 - 2017-03-18 20:29 - 00998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00992096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00989016 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00981376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00976184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00975872 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2017-03-18 20:29 - 2017-03-18 20:29 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00945152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00937472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00935936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmclient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00869848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00862208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00822624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00820224 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00818176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00813408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00794416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00781152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00779776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00779616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabletPC.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00753152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00752992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00746496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00741888 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_sr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00714752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00682808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00681312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00655200 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00646688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00643072 _____ (Microsoft Corporation) C:\WINDOWS\system32\main.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00635864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00635456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\main.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00596040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00590952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00578392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2017-03-18 20:29 - 2017-03-18 20:29 - 00571744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00557400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00549088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00545944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPTpm12.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00530480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-03-18 20:29 - 2017-03-18 20:29 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00524776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00513376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2017-03-18 20:29 - 2017-03-18 20:29 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00497416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00493912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00454592 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00450400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00448285 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-03-18 20:29 - 2017-03-18 20:29 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00443232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00432992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00424616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00418304 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-03-18 20:29 - 2017-03-18 20:29 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00409952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2017-03-18 20:29 - 2017-03-18 20:29 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00406368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00404320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00387872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00377184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00374448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00372432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxclu.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00352760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00352096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00343904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00342456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00315232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00313568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00306800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscandui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-03-18 20:29 - 2017-03-18 20:29 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00279552 _____ (Microsoft Corporation)
         
Fortsetzung folgt ...
__________________

Alt 03.04.2017, 08:48   #4
Torsten_
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



Code:
ATTFilter
C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\accountaccessor.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00266544 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00265728 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ppcsnap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcuiu.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-03-18 20:29 - 2017-03-18 20:29 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscandui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00248992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00241496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00219488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00219040 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cemapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00201568 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00198856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinRtTracing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00192352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00190816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00187520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00184416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCCSEngineShared.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00178520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00173408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00168424 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00167848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Tabbtn.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00163752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00157536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00152416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCCSEngineShared.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.SecureAssessment.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00137936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00130912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00128648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00126568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfaudiocnv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveExt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityCommon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00122208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00119808 ____R (Microsoft Corporation) C:\WINDOWS\system32\SecureAssessmentHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersGPExt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00112120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00110944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReportingCSP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00106896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DuCsps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00091936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfaudiocnv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00090976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.UI.GameBar.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00086368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\tabcal.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00080224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dggpext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.UI.GameBar.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00063328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WPDShServiceObj.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothDesktopHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MultiDigiMon.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInputUap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\EAMProgressHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInputUap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00038768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00038240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00025088 _____ C:\WINDOWS\system32\GamePanelExternalHook.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00019968 _____ C:\WINDOWS\SysWOW64\GamePanelExternalHook.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CspCellularSettings.dll
2017-03-18 20:22 - 2017-03-18 20:22 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\WINDOWS\SysWOW64\SDA
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\WINDOWS\system32\SDA
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\Program Files\MSBuild
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-03-18 20:21 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-03-18 20:21 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-03-18 20:21 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-03-18 20:21 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-03-18 20:21 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-03-18 20:21 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-03-18 02:24 - 2017-03-19 12:40 - 00011922 ____H C:\Users\Torsten Wetzel\Desktop\~WRL0003.tmp
2017-03-17 06:56 - 2017-03-17 06:57 - 00000000 ____D C:\Users\Torsten Wetzel\Desktop\Programme
2017-03-14 19:53 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2017-03-14 19:53 - 2017-03-18 20:34 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2017-03-14 19:53 - 2017-03-14 19:53 - 00000000 ____D C:\Users\Torsten Wetzel\Documents\Freemake
2017-03-14 19:53 - 2017-03-14 19:53 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\FreemakeVideoConverter
2017-03-14 19:53 - 2017-03-14 19:53 - 00000000 ____D C:\ProgramData\Freemake
2017-03-14 19:53 - 2017-03-14 19:53 - 00000000 ____D C:\Program Files (x86)\Freemake
2017-03-14 19:52 - 2017-03-14 19:52 - 34480440 _____ (Ellora Assets Corporation ) C:\Users\Torsten Wetzel\Downloads\FreemakeVideoConverterFull.exe
2017-03-14 19:52 - 2017-03-14 19:52 - 00000000 ____D C:\Program Files (x86)\GreatDealz
2017-03-14 19:51 - 2017-03-14 21:01 - 00002952 _____ C:\WINDOWS\SysWOW64\LavasoftTcpServiceOff.ini
2017-03-14 19:51 - 2017-03-14 21:01 - 00002952 _____ C:\WINDOWS\system32\LavasoftTcpServiceOff.ini
2017-03-14 19:51 - 2017-03-14 19:51 - 00425744 _____ (Lavasoft Limited) C:\WINDOWS\system32\LavasoftTcpService64.dll
2017-03-14 19:51 - 2017-03-14 19:51 - 00345360 _____ (Lavasoft Limited) C:\WINDOWS\SysWOW64\LavasoftTcpService.dll
2017-03-14 16:36 - 2017-04-01 18:46 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\dvdcss
2017-03-13 12:55 - 2017-03-13 12:55 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\CDex
2017-03-11 22:37 - 2017-03-11 22:37 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Winamp
2017-03-11 22:37 - 2017-03-11 22:37 - 00000000 ____D C:\Program Files (x86)\Winamp
2017-03-11 22:37 - 2009-09-04 18:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2017-03-11 22:37 - 2006-09-28 17:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2017-03-11 22:35 - 2017-03-11 22:36 - 12855384 _____ (Nullsoft, Inc.) C:\Users\Torsten Wetzel\Downloads\winamp5666_full_de-de.exe
2017-03-11 02:07 - 2017-03-11 13:36 - 00000000 ____D C:\Users\Torsten Wetzel\Desktop\Mathe
2017-03-11 01:17 - 2017-03-11 01:17 - 00046408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-03-11 01:17 - 2017-03-11 01:17 - 00045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-03-11 01:17 - 2017-03-11 01:17 - 00045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-03-11 01:17 - 2017-03-11 01:17 - 00045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-03-10 00:23 - 2017-03-10 00:23 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2017-03-09 15:33 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-03-09 15:33 - 2017-03-09 15:33 - 00000988 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk
2017-03-09 15:33 - 2017-03-09 15:33 - 00000057 _____ C:\ProgramData\Ament.ini
2017-03-09 15:33 - 2017-03-09 15:33 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\HpUpdate
2017-03-09 15:33 - 2017-03-09 15:33 - 00000000 ____D C:\ProgramData\HP
2017-03-09 15:33 - 2017-03-09 15:33 - 00000000 ____D C:\Program Files\HP
2017-03-09 15:33 - 2017-03-09 15:33 - 00000000 ____D C:\Program Files (x86)\HP
2017-03-09 15:33 - 2012-10-17 05:31 - 00741480 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\HPDiscoPM5912.dll
2017-03-09 15:32 - 2017-03-09 15:35 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\HP
2017-03-09 15:25 - 2017-03-09 15:31 - 123809984 _____ C:\Users\Torsten Wetzel\Downloads\OJ8600_1315-1.exe
2017-03-09 08:59 - 2017-03-09 08:59 - 00001219 _____ C:\Users\Torsten Wetzel\Desktop\Teaching.lnk
2017-03-09 00:07 - 2017-03-09 00:07 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2017-03-08 23:55 - 2017-03-08 23:55 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Avira
2017-03-08 23:51 - 2017-03-08 23:51 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2017-03-08 23:51 - 2017-02-15 17:55 - 00163976 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2017-03-08 23:51 - 2017-02-15 17:55 - 00161824 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2017-03-08 23:51 - 2017-02-15 17:55 - 00088488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2017-03-08 23:51 - 2017-02-15 17:55 - 00048584 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2017-03-08 23:51 - 2017-02-15 17:55 - 00044488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2017-03-08 23:48 - 2017-03-27 06:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-03-08 23:48 - 2017-03-08 23:51 - 00000000 ____D C:\ProgramData\Avira
2017-03-08 23:48 - 2017-03-08 23:51 - 00000000 ____D C:\Program Files (x86)\Avira
2017-03-08 21:30 - 2017-03-08 21:30 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\GeoGebra 5.0
2017-03-08 20:50 - 2017-04-03 06:40 - 00000337 _____ C:\Users\Torsten Wetzel\AppData\Local\Perfmon.PerfmonCfg
2017-03-08 07:32 - 2017-03-08 07:32 - 00000000 ____D C:\Users\Torsten Wetzel\Documents\Benutzerdefinierte Office-Vorlagen
2017-03-08 01:16 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2017-03-08 01:16 - 2017-03-08 01:16 - 00002586 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002583 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002579 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002558 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002536 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002533 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2017-03-08 01:13 - 2017-04-01 18:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-03-08 01:13 - 2017-03-08 01:13 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-03-08 00:27 - 2017-03-18 21:18 - 00000000 ___RD C:\Users\Torsten Wetzel\OneDrive
2017-03-08 00:25 - 2017-03-23 18:21 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Packages
2017-03-08 00:25 - 2017-03-22 09:28 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Adobe
2017-03-08 00:25 - 2017-03-10 17:00 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\VirtualStore
2017-03-08 00:25 - 2017-03-08 00:25 - 00016148 _____ C:\WINDOWS\system32\DESKTOP-4N5ED6S_defaultuser0_HistoryPrediction.bin
2017-03-08 00:25 - 2017-03-08 00:25 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\TileDataLayer
2017-03-08 00:25 - 2017-03-08 00:25 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Publishers
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Videos
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Programme
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Vorlagen
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Startmenü
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Dokumente
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Dokumente und Einstellungen
2017-03-08 00:21 - 2017-03-08 00:21 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-03-07 23:29 - 2017-03-07 23:29 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Tvsukernel
2017-03-07 23:25 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2017-03-07 23:25 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-03-07 23:07 - 2017-03-07 23:07 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Macromedia
2017-03-07 22:31 - 2016-10-28 03:22 - 00485032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-03-07 22:30 - 2017-03-18 20:35 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-03-07 22:30 - 2017-03-16 02:21 - 138634176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-03-07 22:25 - 2016-09-30 05:28 - 00161792 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2017-03-07 22:22 - 2016-09-07 06:22 - 00041472 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2017-03-07 22:17 - 2017-04-02 08:57 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\vlc
2017-03-07 20:25 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\gsview
2017-03-07 20:25 - 2017-03-07 20:25 - 00000000 ____D C:\Program Files (x86)\gsview6.0
2017-03-07 20:20 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeXnicCenter
2017-03-07 20:20 - 2017-03-07 20:20 - 00000000 ____D C:\Program Files (x86)\TeXnicCenter
2017-03-07 20:19 - 2017-03-18 15:45 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-03-07 20:18 - 2017-03-18 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activ Software
2017-03-07 20:18 - 2017-03-07 20:18 - 00000000 ____D C:\Users\Public\Documents\Activ Software
2017-03-07 20:18 - 2017-03-07 20:18 - 00000000 ____D C:\ProgramData\Promethean
2017-03-07 20:18 - 2017-03-07 20:18 - 00000000 ____D C:\ProgramData\Activ Software
2017-03-07 20:18 - 2017-03-07 20:18 - 00000000 ____D C:\Program Files (x86)\Activ Software
2017-03-07 20:09 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9
2017-03-07 20:09 - 2017-03-07 20:34 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\SumatraPDF
2017-03-07 20:09 - 2017-03-07 20:09 - 00001948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk
2017-03-07 20:09 - 2017-03-07 20:09 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\MiKTeX
2017-03-07 20:09 - 2017-03-07 20:09 - 00000000 ____D C:\Program Files\SumatraPDF
2017-03-07 20:08 - 2017-03-07 20:08 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\MiKTeX
2017-03-07 20:08 - 2017-03-07 20:08 - 00000000 ____D C:\ProgramData\MiKTeX
2017-03-07 20:07 - 2017-03-07 20:08 - 00000000 ____D C:\Program Files\MiKTeX 2.9
2017-03-07 19:48 - 2017-03-22 23:27 - 00000000 ____D C:\Users\Torsten Wetzel\.mediathek3
2017-03-07 19:47 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-03-07 19:47 - 2017-03-07 19:47 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-03-07 19:47 - 2017-03-07 19:47 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Sun
2017-03-07 19:47 - 2017-03-07 19:47 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\LocalLow\Sun
2017-03-07 19:47 - 2017-03-07 19:47 - 00000000 ____D C:\ProgramData\Oracle
2017-03-07 19:47 - 2017-03-07 19:47 - 00000000 ____D C:\Program Files (x86)\Java
2017-03-07 19:46 - 2017-03-07 19:46 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\LocalLow\Oracle
2017-03-07 19:44 - 2017-03-07 19:52 - 00000000 ____D C:\Program Files (x86)\MediathekView-13.0.1
2017-03-07 19:34 - 2017-03-27 17:51 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-03-07 19:34 - 2017-03-07 19:34 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2017-03-07 19:34 - 2017-03-07 19:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2017-03-07 19:33 - 2017-03-08 21:40 - 00000000 ____D C:\ProgramData\Adobe
2017-03-07 19:33 - 2017-03-07 19:33 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-03-07 19:32 - 2017-03-31 20:57 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Adobe
2017-03-07 19:31 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-03-07 19:31 - 2017-03-07 19:31 - 00000000 ____D C:\Program Files\VideoLAN
2017-03-07 19:30 - 2017-03-18 20:37 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VLC Updater
2017-03-07 19:30 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startfenster Symbol
2017-03-07 19:30 - 2017-03-07 19:30 - 00001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Startfenster.lnk
2017-03-07 19:30 - 2017-03-07 19:30 - 00000000 ____D C:\Program Files (x86)\VLC Updater
2017-03-07 19:30 - 2017-03-07 19:30 - 00000000 ____D C:\Program Files (x86)\Startfenster Symbol
2017-03-07 19:28 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tinypic
2017-03-07 19:28 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGebra 5
2017-03-07 19:28 - 2017-03-07 19:28 - 00000000 ____D C:\Program Files (x86)\Tinypic
2017-03-07 19:28 - 2017-03-07 19:28 - 00000000 ____D C:\Program Files (x86)\GeoGebra 5.0
2017-03-07 19:22 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDex
2017-03-07 19:22 - 2017-03-07 19:22 - 00000000 ____D C:\Program Files (x86)\CDex
2017-03-07 19:03 - 2017-03-18 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-03-07 19:03 - 2017-03-07 19:03 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-03-07 19:03 - 2017-03-07 19:03 - 00000000 ____D C:\Users\Torsten Wetzel\Tracing
2017-03-07 19:03 - 2017-03-07 19:03 - 00000000 ____D C:\ProgramData\Skype
2017-03-07 18:59 - 2017-04-03 06:20 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\LocalLow\Mozilla
2017-03-07 18:59 - 2017-04-02 07:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-07 18:59 - 2017-04-02 07:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-03-07 18:59 - 2017-03-07 19:04 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Mozilla
2017-03-07 18:59 - 2017-03-07 18:59 - 00001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-03-07 18:59 - 2017-03-07 18:59 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla
2017-03-07 18:54 - 2017-03-07 18:54 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Macromedia
2017-03-07 18:48 - 2017-03-07 19:10 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Lenovo
2017-03-07 18:44 - 2017-03-10 19:54 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Skype
2017-03-07 18:34 - 2017-01-11 20:08 - 00803928 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2017-03-07 18:34 - 2017-01-11 20:08 - 00427608 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2017-03-07 18:34 - 2017-01-11 20:08 - 00343128 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo50-7.dll
2017-03-07 18:34 - 2017-01-11 20:08 - 00279128 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2017-03-07 18:34 - 2017-01-11 20:08 - 00064088 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2017-03-07 18:34 - 2017-01-11 20:07 - 00060504 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2017-03-07 18:34 - 2017-01-11 20:07 - 00057432 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys
2017-03-07 18:34 - 2017-01-11 03:08 - 00002564 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mouse Properties (Touchpad Clickpad Trackpad TrackPoint Mouse Pointer Pointing Pad).lnk
2017-03-07 18:34 - 2017-01-05 14:39 - 00798728 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2017-03-07 18:32 - 2017-03-07 18:32 - 00000000 ____D C:\Users\Torsten Wetzel\Intel
2017-03-07 18:32 - 2017-03-07 18:32 - 00000000 ____D C:\ProgramData\Intel
2017-03-07 18:32 - 2017-03-07 18:32 - 00000000 ____D C:\Program Files\Lenovo
2017-03-07 18:31 - 2017-03-22 05:19 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-07 18:31 - 2017-03-18 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Connect2
2017-03-07 18:31 - 2016-08-29 16:37 - 02403256 _____ (Qualcomm Atheros, Inc.) C:\WINDOWS\system32\Drivers\Qcamain10x64.sys
2017-03-07 18:31 - 2016-08-29 16:29 - 01088096 _____ C:\WINDOWS\system32\Drivers\qca61x4_2_2.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00097210 _____ C:\WINDOWS\system32\Drivers\Data61x4_2_2.msc
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_6.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_5.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_4.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_3.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_2.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_1.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX.bin
2017-03-07 18:31 - 2016-08-23 05:19 - 00943112 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2017-03-07 18:31 - 2016-08-23 05:19 - 00082544 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-03-07 18:30 - 2016-11-09 17:54 - 05456392 _____ (Realtek semiconductor) C:\WINDOWS\RTFTrack.exe
2017-03-07 18:30 - 2016-11-09 17:54 - 03150856 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\rtsuvc.sys
2017-03-07 18:30 - 2016-11-09 17:54 - 00224000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtsCM64.exe
2017-03-07 18:30 - 2016-11-09 17:53 - 00560648 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtCamP.dll
2017-03-07 18:30 - 2016-11-09 17:53 - 00104456 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtCamO64.dll
2017-03-07 18:30 - 2016-11-09 17:51 - 00645640 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtCamP64.dll
2017-03-07 18:30 - 2016-11-09 17:40 - 01157563 _____ C:\WINDOWS\FTDataP.xml
2017-03-07 18:30 - 2016-11-09 17:40 - 00946032 _____ C:\WINDOWS\FTData.xml
2017-03-07 18:30 - 2016-11-09 17:40 - 00817241 _____ C:\WINDOWS\FTDataR1.xml
2017-03-07 18:30 - 2016-11-09 17:40 - 00817191 _____ C:\WINDOWS\FTDataR0.xml
2017-03-07 18:30 - 2016-11-09 17:40 - 00003034 _____ C:\WINDOWS\RtsCM64.xml
2017-03-07 18:25 - 2017-03-07 23:27 - 00000000 ____D C:\ProgramData\Lenovo
2017-03-07 18:25 - 2017-03-07 23:27 - 00000000 ____D C:\Program Files (x86)\Lenovo
2017-03-07 18:25 - 2017-03-07 18:25 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\LenovoServiceBridge
2017-03-07 18:24 - 2017-03-18 20:37 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-03-07 18:24 - 2017-03-07 18:24 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Apps\2.0
2017-03-07 18:17 - 2017-04-03 06:19 - 00000000 ___RD C:\Users\Torsten Wetzel\Dropbox
2017-03-07 18:15 - 2017-03-07 18:15 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\NetworkTiles
2017-03-07 18:13 - 2017-03-07 18:13 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Dropbox
2017-03-07 18:13 - 2017-03-07 18:13 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\PeerDistRepub
2017-03-07 18:12 - 2017-03-25 02:24 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-03-07 18:12 - 2017-03-18 20:17 - 00001262 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2017-03-07 18:12 - 2017-03-18 20:00 - 00001258 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2017-03-07 18:12 - 2017-03-10 19:52 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Dropbox
2017-03-07 18:12 - 2017-03-07 18:12 - 00000000 ____D C:\ProgramData\Dropbox
2017-03-07 18:10 - 2017-04-03 06:18 - 00000000 __SHD C:\Users\Torsten Wetzel\IntelGraphicsProfiles
2017-03-07 18:10 - 2017-03-07 18:32 - 00000000 ____D C:\Program Files (x86)\Intel
2017-03-07 18:10 - 2017-03-07 18:10 - 00000000 ____D C:\Intel
2017-03-07 18:09 - 2017-03-07 18:09 - 00560260 _____ C:\WINDOWS\system32\cp_resources.bin
2017-03-07 18:09 - 2017-03-07 18:09 - 00271344 _____ C:\WINDOWS\system32\igfxCPL.cpl
2017-03-07 18:09 - 2017-03-07 18:09 - 00141296 _____ C:\WINDOWS\SysWOW64\libEGL.dll
2017-03-07 18:09 - 2017-03-07 18:09 - 00113648 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2017-03-07 18:09 - 2017-03-07 18:09 - 00112112 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll
2017-03-07 18:09 - 2017-03-07 18:09 - 00104432 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2017-03-07 18:09 - 2017-03-07 18:09 - 00101360 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 01287168 _____ (BayHubTech/O2Micro International) C:\WINDOWS\SysWOW64\bhtv5Icon.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 01287168 _____ (BayHubTech/O2Micro International) C:\WINDOWS\system32\bhtv5Icon.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00710144 _____ (Lenovo.) C:\WINDOWS\system32\LPlatSvc.exe
2017-03-07 18:08 - 2017-03-07 18:08 - 00601960 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btfilter.sys
2017-03-07 18:08 - 2017-03-07 18:08 - 00347064 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\AdminService.exe
2017-03-07 18:08 - 2017-03-07 18:08 - 00344680 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo50-4.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00191504 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\BtContextMenu.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00190480 _____ (Qualcomm Atheros Communications Inc.) C:\WINDOWS\system32\btcoinst.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00184856 _____ (BayHubTech/O2Micro ) C:\WINDOWS\system32\Drivers\bhtpcrdr.sys
2017-03-07 18:08 - 2017-03-07 18:08 - 00180736 _____ (Lenovo.) C:\WINDOWS\system32\ibmpmsvc.exe
2017-03-07 18:08 - 2017-03-07 18:08 - 00088064 _____ (Lenovo.) C:\WINDOWS\system32\ibmpmctl.exe
2017-03-07 18:08 - 2017-03-07 18:08 - 00082232 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\ibmpmdrv.sys
2017-03-07 18:08 - 2017-03-07 18:08 - 00058488 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000200.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00058368 _____ (Lenovo.) C:\WINDOWS\system32\tpinspm.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00057592 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000300.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00039064 _____ C:\WINDOWS\system32\Drivers\AthrBT_TF_0x00000302.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00034996 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000302.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00019984 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\BtContextMenu.dll.muien-US
2017-03-07 18:08 - 2017-03-07 18:08 - 00001982 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000302_48_NFA354A_10db.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001982 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000302_48.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001969 _____ C:\WINDOWS\system32\Drivers\ramps_TF_0x00000302_48_NFA435_10dbm.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001969 _____ C:\WINDOWS\system32\Drivers\ramps_TF_0x00000302_48.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001890 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000300_48_NFA435_10db.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001890 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000300_48.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001859 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000200_48_NFA354.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001859 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000200_48.dfu
2017-03-07 18:08 - 2017-01-11 20:08 - 00064088 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2017-03-07 18:08 - 2017-01-11 20:07 - 00923224 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2017-03-07 18:08 - 2014-01-30 19:17 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2017-03-07 18:04 - 2017-03-07 18:05 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\MicrosoftEdge

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-04-03 08:08 - 2016-11-20 14:36 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-04-03 06:21 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-04-03 06:21 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-02 07:32 - 2016-11-20 23:46 - 01875058 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-02 07:32 - 2016-11-20 23:00 - 00719316 _____ C:\WINDOWS\system32\perfh007.dat
2017-04-02 07:32 - 2016-11-20 23:00 - 00150528 _____ C:\WINDOWS\system32\perfc007.dat
2017-04-02 07:24 - 2016-11-20 23:36 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-01 23:24 - 2016-07-16 08:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-03-25 23:17 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-03-23 16:55 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-03-21 00:43 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-03-19 11:31 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2017-03-19 02:51 - 2016-11-20 14:36 - 00342056 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-03-18 23:18 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-03-18 21:16 - 2016-11-20 23:50 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-03-18 20:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2017-03-18 20:40 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT
2017-03-18 20:39 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-03-18 20:39 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration
2017-03-18 20:39 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-03-18 20:38 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries
2017-03-18 20:37 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-03-18 20:37 - 2015-07-10 11:47 - 00000000 ____D C:\Users\Default.migrated
2017-03-18 20:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-03-18 20:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-03-18 20:35 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-03-18 20:34 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-03-18 20:32 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___RD C:\Program Files\Windows Defender
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\setup
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Provisioning
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-03-18 20:30 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-03-18 20:30 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-03-18 20:30 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\servicing
2017-03-18 20:29 - 2016-11-20 23:40 - 02717184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-03-18 20:21 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-03-18 20:21 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-03-10 07:17 - 2016-07-16 13:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-03-10 07:17 - 2016-07-16 13:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-07 22:04 - 2015-07-10 05:36 - 00635904 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2017-03-07 22:04 - 2015-07-10 05:36 - 00014848 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2017-03-07 18:09 - 2016-11-20 23:27 - 00104432 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2017-03-08 20:50 - 2017-04-03 06:40 - 0000337 _____ () C:\Users\Torsten Wetzel\AppData\Local\Perfmon.PerfmonCfg
2017-03-09 15:33 - 2017-03-09 15:33 - 0000057 _____ () C:\ProgramData\Ament.ini
2017-03-18 20:44 - 2017-03-18 20:44 - 0000102 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc

Einige Dateien in TEMP:
====================
2017-03-30 15:30 - 2017-03-30 15:30 - 16374784 ____N () C:\Users\Torsten Wetzel\AppData\Local\Temp\javagiac0.1884250056409238.dll
2017-04-01 11:17 - 2017-04-01 11:17 - 16375296 ____N () C:\Users\Torsten Wetzel\AppData\Local\Temp\javagiac0.3377067164860553.dll
2017-03-20 18:27 - 2017-03-20 18:27 - 16373248 ____N () C:\Users\Torsten Wetzel\AppData\Local\Temp\javagiac0.48676446104824433.dll

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-03-29 07:56

==================== Ende von FRST.txt ============================
         
Adition.txt
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-03-2017
durchgeführt von Torsten Wetzel (03-04-2017 08:31:35)
Gestartet von C:\Users\Torsten Wetzel\Downloads
Windows 10 Pro Version 1607 (X64) (2017-03-18 18:40:12)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3849580528-1159643680-2895358133-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3849580528-1159643680-2895358133-503 - Limited - Disabled)
Gast (S-1-5-21-3849580528-1159643680-2895358133-501 - Limited - Disabled)
Torsten Wetzel (S-1-5-21-3849580528-1159643680-2895358133-1001 - Administrator - Enabled) => C:\Users\Torsten Wetzel

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

ActivInspire Core Resources (DEU) v1 (HKLM-x32\...\{06C9F624-9F53-4C89-9720-1601A295769A}) (Version: 1.6.3 - Promethean)
ActivInspire Help (DEU) v1 (HKLM-x32\...\{B18A62F5-296F-4BC4-B8DD-A9FB16EE9106}) (Version: 1.6.3 - Promethean)
ActivInspire HWR Resources (DEU) v1 (HKLM-x32\...\{CB2158F5-B05D-41BF-B8F8-05A85695BA4E}) (Version: 1.7.1 - Promethean)
ActivInspire v2 (HKLM-x32\...\{80FD4FE1-89A4-408F-9EE3-57B916AA345C}) (Version: 2.9.66777 - Promethean)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM-x32\...\{9BFB1FAB-8FC4-4FAA-9B2D-2B121834B659}) (Version: 11.3.300.268 - Adobe Systems Incorporated)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.25.172 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{0b46d918-af4f-4612-8076-5c0ae67cb2aa}) (Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG) Hidden
CDex - Digital Audio CD Extractor and Converter (HKLM-x32\...\CDex) (Version: 1.82.0.2016 - CDex.mu)
Dolby Audio X2 Windows API SDK (HKLM\...\{2A027A37-B09B-44FB-B1C9-2DD6BA0014E8}) (Version: 0.7.2.61 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D765CF7F-14F9-4C80-B06C-10E68F10EBCC}) (Version: 0.7.2.62 - Dolby Laboratories, Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 22.4.24 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.65.1 - Dropbox, Inc.) Hidden
GeoGebra 5 (HKLM-x32\...\GeoGebra 5) (Version: 5.0.338.0 - International GeoGebra Institute)
gsview (HKLM\...\gsview 6.0) (Version: 6.0 - Artifex Software Inc.)
HP Officejet Pro 8600 - Grundlegende Software für das Gerät (HKLM\...\{D2D05FDB-4EDA-462D-8DB6-E0B9AD4FA25F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet Pro 8600 Hilfe (HKLM-x32\...\{FDE820DD-CC88-4395-AD5C-801365B8F316}) (Version: 28.0.0 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{AAE126B3-95C5-49E1-A590-7B5F6EDC7D60}) (Version: 12.5.32.203 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1045 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4550 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Lenovo Anzeige am Bildschirm (HKLM\...\OnScreenDisplay) (Version: 8.85.03 - Lenovo)
Lenovo Power Management Driver (Version: 1.67.12.16 - Lenovo) Hidden
Lenovo Service Bridge (HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\...\dda9ca0b023f4c56) (Version: 1.6.6.0 - Lenovo)
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0045 - Lenovo)
Microsoft Office Professional Plus 2016 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 16.0.7870.2031 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft Visual C++ 2017 RC Redistributable (x86) - 14.10.24728 (HKLM-x32\...\{38602f72-a7f8-456b-84e5-6e200dc99917}) (Version: 14.10.24728.0 - Microsoft Corporation)
MiKTeX 2.9 (HKLM\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org)
Mozilla Firefox 52.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 52.0.2 (x86 de)) (Version: 52.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2.6291 - Mozilla)
Mozilla Thunderbird 45.7.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.7.1 (x86 de)) (Version: 45.7.1 - Mozilla)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.104 - Skype Technologies S.A.)
Startfenster Symbol (HKLM-x32\...\Startfenster.de) (Version: 1.0 - Startfenster Symbol) <==== ACHTUNG
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version:  - )
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VLC Updater (HKLM-x32\...\VLC Updater) (Version: 1.1 - VLC Updater) <==== ACHTUNG
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001_Classes\CLSID\{3D3B1846-CC43-42AE-BFF9-D914083C2BA3}\InprocServer32 -> C:\Program Files\SumatraPDF\PdfPreview.dll ()
CustomCLSID: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001_Classes\CLSID\{55808EA8-81FE-43c6-AAE8-1D8149F941D3}\InprocServer32 -> C:\Program Files\SumatraPDF\PdfFilter.dll ()

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {06B0A62D-21C3-42BA-B3AC-643E3F58B366} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-03-26] (Microsoft Corporation)
Task: {11E45528-799F-449D-BBA4-2600399DD9ED} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-01-18] ()
Task: {1F695C29-93B6-47CD-ACE8-6B9F39E8B8AF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {3BBA31E3-CCA7-44A7-B538-719249B9E6CE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {4E03FEBF-0D36-4AC6-A1B5-6AE4886742BC} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-26] (Microsoft Corporation)
Task: {50925598-0CE7-41F5-BFC4-2BBCAB2FFCC3} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [2016-07-05] (Conexant Systems, Inc.)
Task: {52EDDA8C-4415-4A52-817A-526BED4B89B5} - System32\Tasks\RtsCM => C:\WINDOWS\RtsCM64.exe [2016-11-09] (Realtek Semiconductor Corp.)
Task: {5672E1C3-C0DD-49FF-9161-4F51D20A5C56} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-01-18] ()
Task: {702E0E9A-07F8-44B4-96EC-09F8494884A9} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-03-07] (Dropbox, Inc.)
Task: {74109E6B-2D31-4A86-A5F6-D65A14B1E811} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-10-13] (Intel(R) Corporation)
Task: {7DB49258-63F2-4D39-908D-0A2D13C84D16} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-03-07] (Dropbox, Inc.)
Task: {85EAAE1F-7FA7-49ED-8796-CBE345676D1A} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo)
Task: {9660522C-043F-4AD6-A25A-D58E071C5649} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {9C2482E1-9C26-4146-8C52-CD98A2125A06} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-07] (Adobe Systems Incorporated)
Task: {9C24C0DB-705E-42F2-A3A8-9A82CA6ED272} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [2016-07-05] (Conexant Systems, Inc.)
Task: {B0F501F5-AA60-4139-A753-E27ABA424C5F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-03-26] (Microsoft Corporation)
Task: {DA914C6F-CE65-4E1E-A39E-4C70DE2F80FE} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-3849580528-1159643680-2895358133-1001 => Rundll32.exe dfshim.dll,ShOpenVerbShortcut C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {E1E675DD-9AD7-43CE-9B1E-52B4D23AA553} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-26] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-07-18 11:39 - 2016-07-18 11:39 - 00154816 _____ () C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
2017-03-07 23:25 - 2017-01-18 17:36 - 00023416 _____ () C:\Program Files (x86)\Lenovo\System Update\SUService.exe
2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-11-20 23:06 - 2016-11-20 23:06 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-03-14 19:53 - 2017-03-10 10:39 - 00073216 _____ () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
2017-03-28 05:52 - 2017-03-28 05:52 - 01668976 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17022.10311.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2016-12-05 12:58 - 2016-12-05 12:58 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2017-03-25 02:24 - 2017-03-21 20:06 - 00842560 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-03-07 18:13 - 2017-02-28 22:49 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-03-07 18:13 - 2017-02-28 22:49 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-03-07 18:13 - 2017-02-28 22:49 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00020824 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-03-07 18:13 - 2017-02-28 22:50 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-03-07 18:13 - 2017-02-28 22:49 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 01729360 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-03-25 02:24 - 2017-02-28 22:49 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-03-25 02:24 - 2017-02-28 22:50 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2017-03-25 02:24 - 2017-02-28 22:49 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-03-07 18:13 - 2017-02-28 22:52 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00060736 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00038712 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-03-25 02:24 - 2017-02-28 22:49 - 00392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-03-25 02:24 - 2017-02-28 22:52 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00246608 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-03-07 18:13 - 2017-02-28 22:51 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-03-07 18:13 - 2017-02-28 22:50 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 01972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00053072 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00069968 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00103232 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-03-25 02:24 - 2017-02-28 22:47 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-03-25 02:24 - 2017-03-21 20:09 - 00033112 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
2017-03-25 02:24 - 2017-03-11 01:17 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2017-03-25 02:24 - 2017-03-21 20:09 - 00084288 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-03-07 18:13 - 2017-03-21 20:10 - 00030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-03-25 02:24 - 2017-02-28 22:56 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-03-25 02:24 - 2017-02-28 22:56 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-03-25 02:24 - 2017-03-21 20:10 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-03-07 18:13 - 2017-02-28 22:58 - 00697304 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Torsten Wetzel\Desktop\Teaching.lnk:com.dropbox.attributes [168]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-07-31 00:42 - 2015-07-31 00:39 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 172.20.10.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\...\StartupApproved\Run: => "HP Officejet Pro 8600 (NET)"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{E54FC168-8787-4C3B-9150-4DCDEC7DAA49}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{4E6735BA-79DD-4FE6-8960-8155502EE99E}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{97573D69-BDBA-40D1-A4B2-5F84F02E9329}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{B45C755A-EB4B-4985-AEE5-4148962ED28A}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
FirewallRules: [{02BA6671-A134-4339-82EC-0712C2E28039}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\DeviceSetup.exe
FirewallRules: [{9109173B-53CD-4F48-B58D-0517E9D1F454}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\SendAFax.exe
FirewallRules: [{7D60A5E1-517E-4B1D-BC72-6D0CA21DD471}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\DigitalWizards.exe
FirewallRules: [{159A5692-C809-4C76-A8E9-01BA27BF2D19}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\FaxApplications.exe
FirewallRules: [{CD852341-7A75-472A-834E-A0D19CCE28A2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{0DA282A8-75C4-46C3-8B2C-CAA201042B28}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{BAF0610F-7B8C-444D-A3B1-C7920198A68F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{1E92ACB9-CD3D-4943-A547-021D554AC42B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{0A2D2A1B-B3D1-4B99-8B58-E60F1247AFEF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{9635F206-6C5F-485A-A48C-52AA59081056}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{26B2DD7B-A394-4C54-8E21-98156A63A8D5}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{DBD334AE-6DEE-412E-B58B-73CA7D6CF68D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{170D9385-25A6-45BF-9BF7-0270CB4BE0CF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{477A9860-0865-4CE2-AE27-B7EE5EC2FB2F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B5FAF828-C7BB-40AC-A400-8B512BF8B187}] => (Allow) C:\Program Files (x86)\Lenovo\Connect2\Connect2.exe
FirewallRules: [{8C2E74EB-C8F0-4967-84DA-AA24D29CB219}] => (Allow) C:\Program Files (x86)\Lenovo\Connect2\Connect2.exe
FirewallRules: [{7A970D3A-A437-409B-BBE4-D05706AF6203}] => (Allow) C:\Program Files (x86)\Lenovo\Connect2\Connect2.exe
FirewallRules: [{688FAB1F-F18F-4D53-AD24-B94EAB985E9D}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (04/03/2017 06:21:14 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile  1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (04/03/2017 06:21:10 AM) (Source: CertEnroll) (EventID: 87) (User: NT-AUTORITÄT)
Description: Fehler bei der SCEP-Zertifikatregistrierung für WORKGROUP\DESKTOP-4N5ED6S$ über https://STM-KeyId-1adb994ab58be57a0cc9b900e7851e1a43c08660.microsoftaik.azure.net/templates/Aik/scep:

SubmitDone
Submit(Request): Bad Request
{"Message":"No valid TPM EK/Platform cerificate provided in the TPM identity request message."}
Cache-Control: no-cache
Date: Mon, 03 Apr 2017 04:21:08 GMT
Pragma: no-cache
Content-Length: 95
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
x-ms-request-id: a97ef811-acb2-4751-8033-2dee8d6fd4f5
Strict-Transport-Security: max-age=31536000;includeSubDomains
X-Content-Type-Options: nosniff
X-Powered-By: ASP.NET

Methode: POST(2218ms)
Phase: SubmitDone
Ungültige Anforderung (400). 0x80190190 (-2145844848 HTTP_E_STATUS_BAD_REQUEST)

Error: (04/02/2017 07:28:06 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile  1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (04/02/2017 07:25:07 AM) (Source: CertEnroll) (EventID: 87) (User: NT-AUTORITÄT)
Description: Fehler bei der SCEP-Zertifikatregistrierung für WORKGROUP\DESKTOP-4N5ED6S$ über https://STM-KeyId-1adb994ab58be57a0cc9b900e7851e1a43c08660.microsoftaik.azure.net/templates/Aik/scep:

SubmitDone
Submit(Request): Bad Request
{"Message":"No valid TPM EK/Platform cerificate provided in the TPM identity request message."}
Cache-Control: no-cache
Date: Sun, 02 Apr 2017 05:25:05 GMT
Pragma: no-cache
Content-Length: 95
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
x-ms-request-id: 3527adc0-6338-48e7-8ac5-0da5703cdf04
Strict-Transport-Security: max-age=31536000;includeSubDomains
X-Content-Type-Options: nosniff
X-Powered-By: ASP.NET

Methode: POST(2828ms)
Phase: SubmitDone
Ungültige Anforderung (400). 0x80190190 (-2145844848 HTTP_E_STATUS_BAD_REQUEST)

Error: (04/02/2017 07:24:59 AM) (Source: CertEnroll) (EventID: 87) (User: NT-AUTORITÄT)
Description: Fehler bei der SCEP-Zertifikatregistrierung für WORKGROUP\DESKTOP-4N5ED6S$ über https://STM-KeyId-1adb994ab58be57a0cc9b900e7851e1a43c08660.microsoftaik.azure.net/templates/Aik/scep:

SubmitDone
Submit(Request): Bad Request
{"Message":"No valid TPM EK/Platform cerificate provided in the TPM identity request message."}
Cache-Control: no-cache
Date: Sun, 02 Apr 2017 05:24:57 GMT
Pragma: no-cache
Content-Length: 95
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
x-ms-request-id: 3100e4ec-86eb-4ff6-84a3-31cc79a4217a
Strict-Transport-Security: max-age=31536000;includeSubDomains
X-Content-Type-Options: nosniff
X-Powered-By: ASP.NET

Methode: POST(3172ms)
Phase: SubmitDone
Ungültige Anforderung (400). 0x80190190 (-2145844848 HTTP_E_STATUS_BAD_REQUEST)

Error: (04/01/2017 10:18:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm FreemakeVC.exe, Version 4.1.9.80 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: f94

Startzeit: 01d2ab077aa4f15f

Beendigungszeit: 12

Anwendungspfad: C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVC.exe

Berichts-ID: 4d7732d8-1718-11e7-8d8c-5800e3d0cddc

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (04/01/2017 09:42:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FreemakeVC.exe, Version: 4.1.9.80, Zeitstempel: 0x58c249e5
Name des fehlerhaften Moduls: libdvdnav.dll, Version: 0.0.0.0, Zeitstempel: 0x49d4f1cc
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001ca09
ID des fehlerhaften Prozesses: 0xf94
Startzeit der fehlerhaften Anwendung: 0x01d2ab077aa4f15f
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVC.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Freemake\COM\1.1\libdvdnav.dll
Berichtskennung: 45cb7795-e339-4470-8e6c-4a14ef974149
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (04/01/2017 10:14:25 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile  1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (04/01/2017 12:35:08 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-4N5ED6S)
Description: Bei der Aktivierung der App „Microsoft.ZuneVideo_8wekyb3d8bbwe!Microsoft.ZuneVideo“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (03/31/2017 08:00:46 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile  1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.


Systemfehler:
=============
Error: (04/03/2017 06:47:51 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/03/2017 06:18:34 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/03/2017 06:18:34 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/03/2017 06:18:34 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/02/2017 09:05:12 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/02/2017 07:25:56 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/02/2017 07:25:56 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/02/2017 07:25:56 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/01/2017 11:24:45 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-4N5ED6S)
Description: Der Server "{9BA05972-F6A8-11CF-A442-00A0C90A8F39}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (04/01/2017 11:24:42 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz
Prozentuale Nutzung des RAM: 22%
Installierter physikalischer RAM: 16287.05 MB
Verfügbarer physikalischer RAM: 12680.07 MB
Summe virtueller Speicher: 18719.05 MB
Verfügbarer virtueller Speicher: 14687.01 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:237.92 GB) (Free:70.13 GB) NTFS
Drive d: (FREE_DOS) (Fixed) (Total:1 GB) (Free:1 GB) FAT32
Drive f: (Volume) (Fixed) (Total:464.76 GB) (Free:209.49 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 6E477329)
Partition 1: (Active) - (Size=1 GB) - (Type=0B)
Partition 2: (Not Active) - (Size=464.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Ende von Addition.txt ============================
         
Vielen Dank für deine Hilfe
Gruß Torsten

Alt 03.04.2017, 08:53   #5
Torsten_
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



Jetzt der TDDSkiller

Code:
ATTFilter
08:35:46.0178 0x19d4  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
08:35:46.0178 0x19d4  UEFI system
08:35:52.0063 0x19d4  ============================================================
08:35:52.0064 0x19d4  Current date / time: 2017/04/03 08:35:52.0063
08:35:52.0067 0x19d4  SystemInfo:
08:35:52.0067 0x19d4  
08:35:52.0067 0x19d4  OS Version: 10.0.14393 ServicePack: 0.0
08:35:52.0067 0x19d4  Product type: Workstation
08:35:52.0067 0x19d4  ComputerName: DESKTOP-4N5ED6S
08:35:52.0067 0x19d4  UserName: Torsten Wetzel
08:35:52.0067 0x19d4  Windows directory: C:\WINDOWS
08:35:52.0067 0x19d4  System windows directory: C:\WINDOWS
08:35:52.0068 0x19d4  Running under WOW64
08:35:52.0068 0x19d4  Processor architecture: Intel x64
08:35:52.0068 0x19d4  Number of processors: 4
08:35:52.0068 0x19d4  Page size: 0x1000
08:35:52.0068 0x19d4  Boot type: Normal boot
08:35:52.0068 0x19d4  CodeIntegrityOptions = 0x00000001
08:35:52.0068 0x19d4  ============================================================
08:35:52.0348 0x19d4  KLMD registered as C:\WINDOWS\system32\drivers\10910352.sys
08:35:52.0348 0x19d4  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.953, osProperties = 0x19
08:35:53.0031 0x19d4  System UUID: {A6544A1C-1BF4-95DA-75B4-7675BAF75715}
08:35:56.0724 0x19d4  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:35:56.0728 0x19d4  Drive \Device\Harddisk1\DR1 - Size: 0x3B9E656000 ( 238.47 Gb ), SectorSize: 0x200, Cylinders: 0x799A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:35:56.0746 0x19d4  ============================================================
08:35:56.0746 0x19d4  \Device\Harddisk0\DR0:
08:35:56.0747 0x19d4  MBR partitions:
08:35:56.0747 0x19d4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x800, BlocksNum 0x200000
08:35:56.0747 0x19d4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x200800, BlocksNum 0x3A184800
08:35:56.0747 0x19d4  \Device\Harddisk1\DR1:
08:35:56.0748 0x19d4  GPT partitions:
08:35:56.0749 0x19d4  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {8316C061-8E06-40A0-A494-B19DB7611429}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xE1000
08:35:56.0749 0x19d4  \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {50142CBF-3854-4176-81AE-EB63477D1DEB}, Name: EFI system partition, StartLBA 0xE1800, BlocksNum 0x31800
08:35:56.0749 0x19d4  \Device\Harddisk1\DR1\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {19746EE5-F697-4226-97CB-8D78CDAC4B99}, Name: Microsoft reserved partition, StartLBA 0x113000, BlocksNum 0x8000
08:35:56.0749 0x19d4  \Device\Harddisk1\DR1\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {149E7E4A-CB71-47C6-9BB6-1DE4F5DA5B80}, Name: Basic data partition, StartLBA 0x11B000, BlocksNum 0x1DBD8000
08:35:56.0749 0x19d4  MBR partitions:
08:35:56.0749 0x19d4  ============================================================
08:35:56.0752 0x19d4  C: <-> \Device\Harddisk1\DR1\Partition4
08:35:56.0753 0x19d4  D: <-> \Device\Harddisk0\DR0\Partition1
08:35:56.0772 0x19d4  F: <-> \Device\Harddisk0\DR0\Partition2
08:35:56.0772 0x19d4  ============================================================
08:35:56.0773 0x19d4  Initialize success
08:35:56.0773 0x19d4  ============================================================
08:36:43.0253 0x2168  ============================================================
08:36:43.0253 0x2168  Scan started
08:36:43.0253 0x2168  Mode: Manual; SigCheck; TDLFS; 
08:36:43.0253 0x2168  ============================================================
08:36:43.0253 0x2168  KSN ping started
08:36:43.0581 0x2168  KSN ping finished: true
08:36:46.0499 0x2168  ================ Scan system memory ========================
08:36:46.0499 0x2168  System memory - ok
08:36:46.0499 0x2168  ================ Scan services =============================
08:36:46.0554 0x2168  [ A7901875F89D011C38CF52C98ACF5B29, 782141AB1DD7ACDE6EA08B5BAFDE8BADD05B81D38C18E097D6D9C46102056EB1 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
08:36:46.0650 0x2168  1394ohci - ok
08:36:46.0668 0x2168  [ EE1CCC54F75C24727A218F98FC5349DA, 0B0D26640BFA0F551B7087027E572D0BF2C5EAF50A4187C5A7D839180B7FF589 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
08:36:46.0701 0x2168  3ware - ok
08:36:46.0738 0x2168  [ 73C73E1AA0D4D727A04AAAB120B7F56A, 5D311F11022994410DF5C67914D38B1F0D813EFD181EA234750286A272D67A1A ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
08:36:46.0785 0x2168  ACPI - ok
08:36:46.0791 0x2168  [ 0935496EF9624B46B935CB35ECE1F205, A22A2A29195505A65E8626D60B00C86C23E0CABC1EB8345EA5ED523516CC21C0 ] AcpiDev         C:\WINDOWS\System32\drivers\AcpiDev.sys
08:36:46.0809 0x2168  AcpiDev - ok
08:36:46.0816 0x2168  [ D6794C31F4077B71433988787BAA926E, F16365C2F195AAE94D4740E6C3DF4C0CECEC6393CAD65425DCCD28CDBA6EC51A ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
08:36:46.0836 0x2168  acpiex - ok
08:36:46.0840 0x2168  [ FE5F656D6B35089DA39112E74EC6A85A, 5D81EE63998232A5B36DE47FE15B9D04D5BD02234CA133A2462AECA8C60A22ED ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
08:36:46.0857 0x2168  acpipagr - ok
08:36:46.0862 0x2168  [ 2F242941E4DFF69B883D77A16F039557, 45C388365317C720654A659A9326B2BC0E9D84929C704654985597D5D620101C ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
08:36:46.0878 0x2168  AcpiPmi - ok
08:36:46.0882 0x2168  [ C247E35A21682DA8D0DC3AF9F025FCC5, 455415EE3166B3043AD8A4DD50B688DB74242267FB555642441251EFA823E971 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
08:36:46.0897 0x2168  acpitime - ok
08:36:46.0905 0x2168  [ B932E0EE190778D840F1442DFC0F9612, 8780963F14D57279FDD585BE945ED40F24590D32676C7A9EF94002D38B8BA643 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:36:46.0917 0x2168  AdobeARMservice - ok
08:36:46.0970 0x2168  [ 6C40D5ED8951AB7B90D08AF655224EE4, 6603CD10A35EB9B13F77F767A729A0C97665252C51CEBD96C551DFAA3B22DDE9 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:36:46.0985 0x2168  AdobeFlashPlayerUpdateSvc - ok
08:36:47.0022 0x2168  [ 49B9DB97AFC85DCCBDACDAB2E90085B7, 2A6C2A09F74EA15044F442CCFB54A0F24F105ADB915E5C78F02F59652DC29152 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
08:36:47.0072 0x2168  ADP80XX - ok
08:36:47.0096 0x2168  [ 323AA1953ED9C01E23F740FA891FE064, 4CED6E3D61749316CDE28965C913E7ED462539DAAD637A29484F62AF47AD650D ] AFD             C:\WINDOWS\system32\drivers\afd.sys
08:36:47.0126 0x2168  AFD - ok
08:36:47.0135 0x2168  [ 23522E5D581F7722B1B5B86737CAE39C, FB81ABD304376A1E87B65F5E1B34477B628CEDB2091C5D754DE97464B6050C5B ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
08:36:47.0151 0x2168  ahcache - ok
08:36:47.0154 0x2168  [ D0905D4A945D01D4B28DB9E1BD5985F7, CF389CBCD3B99D1BAE34A42F723F1005C32213A394F691978076D3DF1727715C ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
08:36:47.0164 0x2168  AJRouter - ok
08:36:47.0167 0x2168  [ 8FD51B3B35707A66080D7C8CB05E792D, FE52F3DC280D208FDDC75F6E3294B8D601E0D86F9BD3DB1ACC8FC296AC74C23B ] ALG             C:\WINDOWS\System32\alg.exe
08:36:47.0180 0x2168  ALG - ok
08:36:47.0184 0x2168  [ DF21E05E41E5AC3F13F304D91457649A, 7F48F2AD1DBE89A261113C76D7C23AD7D87D5599BCC31F8A558A8A10B81BF521 ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
08:36:47.0198 0x2168  AmdK8 - ok
08:36:47.0202 0x2168  [ 45D0AA4BB90B821DF92E8F19ABED0C5E, EA87A6E98DB3C5A88A844C04C6934E870B7004E783AA5211722115382A211B90 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
08:36:47.0214 0x2168  AmdPPM - ok
08:36:47.0218 0x2168  [ 74FFBC43B4B899C9A8CA06A892F2CE73, 8D599363C7F3D373F1859BAA4D06DD0F40BE78B56BE52B74DE6EA6EF99452004 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
08:36:47.0228 0x2168  amdsata - ok
08:36:47.0234 0x2168  [ AAB0F1D8D7E54761ABAB13AF161F1680, CF847990EFFA2828F5B1DB1A68F08A6C2C918E9612EDFFCF95C36BCABBBEA272 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
08:36:47.0247 0x2168  amdsbs - ok
08:36:47.0250 0x2168  [ F91BAAC4237C40352A807000F3B716F9, F7EFA08E5067C3D419C9D21EDB880BA08883A80DDF35F8B42EC3AB293FE5E03E ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
08:36:47.0258 0x2168  amdxata - ok
08:36:47.0302 0x2168  [ E6CEE7C270AD1CAE17EA910C85211BAE, 1DEB7185CEDC5918C20353C13AA0398D739A318729700F057B13821FF0FF5C97 ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
08:36:47.0340 0x2168  AntiVirMailService - ok
08:36:47.0351 0x2168  [ 9658B76971381D9053E48E896256D5EB, 48C763BAF349E663D0E41657779BF5D1106A7C3E7F8C898185DC5D1998C0CDAF ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
08:36:47.0365 0x2168  AntiVirSchedulerService - ok
08:36:47.0376 0x2168  [ 9658B76971381D9053E48E896256D5EB, 48C763BAF349E663D0E41657779BF5D1106A7C3E7F8C898185DC5D1998C0CDAF ] AntiVirService  C:\Program Files (x86)\Avira\Antivirus\avguard.exe
08:36:47.0389 0x2168  AntiVirService - ok
08:36:47.0439 0x2168  [ B62E24EEC8C4B6E8A173CAD069B5033A, 719F7C51D615591E70D549552AC66343526902007480278C0E56AA7E1F406F96 ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
08:36:47.0476 0x2168  AntiVirWebService - ok
08:36:47.0483 0x2168  [ BC121C099C6C659126AD2102AFDFF8CF, 42B5EE293BDD7ADCE48173A01B30D8452564B9DA225EAF25E9292FE77C0FCF3E ] AppID           C:\WINDOWS\system32\drivers\appid.sys
08:36:47.0494 0x2168  AppID - ok
08:36:47.0498 0x2168  [ 74A24CF946279111D7F203B36569EC02, FD67D36804744B4FE3E20BA891852575E6C2DA6515643B2F4B4210118B0FCCDA ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
08:36:47.0513 0x2168  AppIDSvc - ok
08:36:47.0517 0x2168  [ 79A87DD43331290A276C02DC396BF530, D0781DC027EE60C94831A2C9C3DD741F8F2100A253CD847E7FCFA59919014278 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
08:36:47.0531 0x2168  Appinfo - ok
08:36:47.0533 0x2168  [ 68190E2BADF23BD782344970E5B5DE9E, 95D30EC12C7FDF5822CED8BC2F17669A6687A2FB262B4F0D15C8DCFF4E9AB33D ] applockerfltr   C:\WINDOWS\system32\drivers\applockerfltr.sys
08:36:47.0547 0x2168  applockerfltr - ok
08:36:47.0553 0x2168  [ 76A12AC673B0F8A607ACDD0583C247D4, CBC6C0EB82C7A8E3998344280BBB5A697AFA7206CA2BADFDA7ED6E7DD20E3DAC ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
08:36:47.0568 0x2168  AppMgmt - ok
08:36:47.0581 0x2168  [ 32155E028491267CF2DB6085A0B7E359, 562831841293E4849CD01992DECE39B9B3C0835DCD352994CA2E2FE1C76A7CB3 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
08:36:47.0605 0x2168  AppReadiness - ok
08:36:47.0622 0x2168  [ 99CA3E622070FDBD7B75EB7E86B2DE40, 12BDD092667250EBC99B4D597897C1B2C83115CD83ECCDEAC36B2D9C9BEA77B6 ] AppVClient      C:\WINDOWS\system32\AppVClient.exe
08:36:47.0645 0x2168  AppVClient - ok
08:36:47.0650 0x2168  [ B66ED2CB37F7E4696A51612AFBA08834, 70BA67AF7F1290E3145B873B53516F138E50D8AAC80CD00CBA66467ABC6643CB ] AppvStrm        C:\WINDOWS\system32\drivers\AppvStrm.sys
08:36:47.0661 0x2168  AppvStrm - ok
08:36:47.0666 0x2168  [ 8DC924848E20F890BEFC6B31136D46BE, B7603425B4970F505B5A3EB0F6652A9CDD188059BDC945D6DF2BADC2DF8F4B5D ] AppvVemgr       C:\WINDOWS\system32\drivers\AppvVemgr.sys
08:36:47.0676 0x2168  AppvVemgr - ok
08:36:47.0681 0x2168  [ 9ADC5A8BEE10E174F95349E9232D8E76, F322991323DCDC51199BB3AB0DA20F6C3CC7EE6E804400B473C610FDB895F0AE ] AppvVfs         C:\WINDOWS\system32\drivers\AppvVfs.sys
08:36:47.0691 0x2168  AppvVfs - ok
08:36:47.0732 0x2168  [ 465CD915B245BB6B788A38BE19D47950, 36FA30C67D581FF158EF1D621938CF93102110635AC9298C6E002E7B87900EBD ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
08:36:47.0797 0x2168  AppXSvc - ok
08:36:47.0804 0x2168  [ E6AB1F0B4C3D4E0D2A88332D76FECD03, 0D3003EB979DA4546DCDD055011E24F13E34F683F02C9801CAC564D1809F11D2 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
08:36:47.0814 0x2168  arcsas - ok
08:36:47.0817 0x2168  [ 61C5A480C43E7E8E49C42869F49D0D3E, E610F0E4315ABA1D90AD4A1D7A68ABA2ACBB7FCA89E9D1798470365D52592D55 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
08:36:47.0828 0x2168  AsyncMac - ok
08:36:47.0831 0x2168  [ A10F989A812B57B9695F6C305907C9C6, E2B292610079AA1A10696138DE8130905A8A834B75A8DED7EBF8B6732B77A0F4 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
08:36:47.0839 0x2168  atapi - ok
08:36:47.0848 0x2168  [ 3319370C922E03ADCE645A83CBCE1E5D, B4B8DF6C3DE7677B4021D02688B8E07BA5BE8173DCEBFE1F2911283E728BDDD9 ] AtherosSvc      C:\WINDOWS\system32\AdminService.exe
08:36:47.0862 0x2168  AtherosSvc - ok
08:36:47.0871 0x2168  [ 2DC3D53FFA0D10EB8C911AE2DB7BF4CF, 8E0A4B5D610D487A216E70396A99ACC1BEA12C46A6681B1A39CD0FD01EDD406A ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
08:36:47.0907 0x2168  AudioEndpointBuilder - ok
08:36:47.0940 0x2168  [ 7B993290E7691C446C16A56A431669BA, 004551934E27E9FC1A939C9BD1DEB850A216CBED9B18CB3317920F5656D9F6BF ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
08:36:47.0989 0x2168  Audiosrv - ok
08:36:48.0001 0x2168  [ 11F3AAFB5D279AFBCBB0AD9FF76A24F8, 06C5FA1BD64EB54691629363DD0771394F81E4EB216E489D5169395736E80D99 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
08:36:48.0010 0x2168  avgntflt - ok
08:36:48.0015 0x2168  [ F8520E88246641E51108922944FB34A6, 326DCB8114439FB1F75E9DB6E5F7818654FAAC4CD957B80DEE17B850676A737F ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
08:36:48.0024 0x2168  avipbb - ok
08:36:48.0034 0x2168  [ AA46643E268120F3C70AADA7056CD0CC, 7660526029F219C466A2B52986A7F2F6A27793F89637983591E4803B18181E4A ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
08:36:48.0047 0x2168  Avira.ServiceHost - ok
08:36:48.0050 0x2168  [ 2CBA09A7983B1D39531B768BCED08C20, B40968DFE1A648CCB9260033E1EA57B5D496274A335B000354156B0DB740EDE0 ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
08:36:48.0056 0x2168  avkmgr - ok
08:36:48.0060 0x2168  [ 8D18C6406FF8DC39028177E1E5675182, 44985DEE74F235567FB849350256F342BCE26EF66439D761FA3F6EDA22882092 ] avnetflt        C:\WINDOWS\system32\DRIVERS\avnetflt.sys
08:36:48.0067 0x2168  avnetflt - ok
08:36:48.0074 0x2168  [ D50D54178CA7BF63BD60ABEC8E7772CC, 19EFE0808C2660A22DD69158FEC30F8CB83167D832C3EBE12C99261C6FB79ADF ] avusbflt        C:\WINDOWS\system32\Drivers\avusbflt.sys
08:36:48.0081 0x2168  avusbflt - ok
08:36:48.0085 0x2168  [ 6D90FDA2DC364B8EA1420F2F81585CC3, 10E6F23A213CFE49BE04BB7D366ADD4028D61D7114FEC67C30B5467DF6B36D4F ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
08:36:48.0099 0x2168  AxInstSV - ok
08:36:48.0111 0x2168  [ 61BAC67048CA5C1D08C48FCC8012B613, 71B2A466FC38DA1029B471FBD2541D8FE359751A7B212AE0F420DB3645916450 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
08:36:48.0129 0x2168  b06bdrv - ok
08:36:48.0133 0x2168  [ 68F72B05EBC6D1779C0D60A147C7CA0B, AA1C857BEE34865C6B901157FC22570D4CF45D950708BAD7AA333F120F2B474C ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
08:36:48.0144 0x2168  BasicDisplay - ok
08:36:48.0147 0x2168  [ 23156E7EDAF613D839E2839746B168D3, CAEF8F9C7D3A338BD747AC9D5BFBE730D77B911E87BCF532EBB75E1F80916AFA ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
08:36:48.0158 0x2168  BasicRender - ok
08:36:48.0162 0x2168  [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn           C:\WINDOWS\System32\drivers\bcmfn.sys
08:36:48.0172 0x2168  bcmfn - ok
08:36:48.0175 0x2168  [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
08:36:48.0184 0x2168  bcmfn2 - ok
08:36:48.0193 0x2168  [ 2B4D3AEAAD02954F8C191BC2D67949AD, 8237C9AD556CFAF7442FF60F78608104BC17CE3134C89D986D49C38CC60B1518 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
08:36:48.0210 0x2168  BDESVC - ok
08:36:48.0213 0x2168  [ 0A508274355745EEF01C6BE3198D02C4, E2DB08AEE2368FA95FDB357BB31EA4EBF31679C3E72E109DB3D7CD1B5F7B828E ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
08:36:48.0224 0x2168  Beep - ok
08:36:48.0240 0x2168  [ 5125CBB61AC81168366BEB290399CB8E, B2A3095D45E2114DE2BD0E5A3AE20B3CE95EE517A35B9E1EAD05E231F38DBDCF ] BFE             C:\WINDOWS\System32\bfe.dll
08:36:48.0269 0x2168  BFE - ok
08:36:48.0276 0x2168  [ 04CF08191930CFDA75C957473642D19E, 5E699D76E10A6E98A8389A7995DB15F9176A544741C756820B4DEB34314F820A ] BHTPCRDR        C:\WINDOWS\System32\drivers\bhtpcrdr.sys
08:36:48.0285 0x2168  BHTPCRDR - ok
08:36:48.0306 0x2168  [ D876C567AB767258036F05E4766189FD, DE8BA67325CB64495BD454B8F9DDCAE82636253844FC68B360C7E1CF5D51DD0E ] BITS            C:\WINDOWS\System32\qmgr.dll
08:36:48.0342 0x2168  BITS - ok
08:36:48.0347 0x2168  [ 9CD2A4821DE379305CACB2E99AD8953A, 89D700DFC3C59ACBBADB48954A28C0EBF8D6A11A9E63837689DD891868E43188 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
08:36:48.0369 0x2168  bowser - ok
08:36:48.0398 0x2168  [ 6A15C5140B6F7D9479A32276AC2BA108, 0A8C6DB88148C6DB61226DD2FF816BDF3FED9E7A60EF17CCA17FA7D9EEC01C71 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
08:36:48.0449 0x2168  BrokerInfrastructure - ok
08:36:48.0456 0x2168  [ B3F32C630DD3F2F6A6091B89CFF13641, 7A9C53EF9AB9FF1DC392FD711B194A101DB36CA5BC799E817BEB446741089B76 ] Browser         C:\WINDOWS\System32\browser.dll
08:36:48.0468 0x2168  Browser - ok
08:36:48.0482 0x2168  [ C74FF2F2A0048E7000E1C2EDE51DC06D, 7916D057A2C5D698774D85DD39A4526A7CDBF22E3092163D19433296FF3DAC64 ] BtFilter        C:\WINDOWS\system32\DRIVERS\btfilter.sys
08:36:48.0500 0x2168  BtFilter - ok
08:36:48.0504 0x2168  [ 722036C26D2C4E50EC2A2EC5FD678846, 999468038AE01F0FF6881F4B2A2CB67BC636641188E95F10729E08ADBC3CB3DE ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
08:36:48.0516 0x2168  BthAvrcpTg - ok
08:36:48.0521 0x2168  [ 77630A51FAF6A07922FEE835F4DED8F6, E096A9DC12885FD19575346A9693A66D0DDFF96C3155AD2040F2BF4249D1D609 ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
08:36:48.0535 0x2168  BthEnum - ok
08:36:48.0540 0x2168  [ C2E31BE025D46D189E38DD1EDF07837A, 656528DCAAAF485EC57EE5C3021E96736634DE3B9C39CBCD2728E055ABD4C0A5 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
08:36:48.0554 0x2168  BthHFEnum - ok
08:36:48.0558 0x2168  [ F7CD605FC0B0B22F3F6F247595E3A655, 1CD9140DE5415DDBEACD8667E63E5C95FD64D693B56302A0474E693E578BEAB0 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
08:36:48.0570 0x2168  bthhfhid - ok
08:36:48.0580 0x2168  [ B157D72BDA6A6DD6E9DC6BF338CD0CF8, B2AC26AE214151E5AD93DED78256BC0295DBF0133C854E7DEE4CD776D9C9A349 ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
08:36:48.0600 0x2168  BthHFSrv - ok
08:36:48.0606 0x2168  [ 0AB691736D4D4029444AF62DE59CFD37, C1C22EFBF67331B87AB261BBF9813009257437BA02F728EC2DFA1A49ECC5FABF ] BthLEEnum       C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
08:36:48.0624 0x2168  BthLEEnum - ok
08:36:48.0630 0x2168  [ 535DC41A33630AE4C262406F9E981C03, 599332589AA28D04189E19B87A4AE6FEEB60B40A7BC6E3B11240DA363A981C29 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
08:36:48.0643 0x2168  BTHMODEM - ok
08:36:48.0649 0x2168  [ 224BA1CB1F3C702F0D001D2AFC9793B1, F139F6F78C716E1167E16530AE31E4A26C2A69467BCB08A9A52A101B31DF7771 ] BthPan          C:\WINDOWS\System32\drivers\bthpan.sys
08:36:48.0664 0x2168  BthPan - ok
08:36:48.0683 0x2168  [ 851ED52AE3E62CD5374BD4BBFF7A9DAB, 381281CB7D8FC4026092330B06E24BC84EEF79EE3C97E21900D950D7D9AB2FC3 ] BTHPORT         C:\WINDOWS\system32\DRIVERS\BTHport.sys
08:36:48.0721 0x2168  BTHPORT - ok
08:36:48.0732 0x2168  [ 96932F631F5CB9F5D1C8F99A71568EF3, 5E4C8955A2EE9DC76B4EBC383653EB753D76D6B017E1A5DD553AC16094D7F12A ] bthserv         C:\WINDOWS\system32\bthserv.dll
08:36:48.0760 0x2168  bthserv - ok
08:36:48.0770 0x2168  [ DC5955E589C55E2313D69B64E1A183F3, 06D703246D0813DE53D62885C8B7381135783673FF4BDDD5CC38FEB54901BB76 ] BTHUSB          C:\WINDOWS\system32\DRIVERS\BTHUSB.sys
08:36:48.0793 0x2168  BTHUSB - ok
08:36:48.0799 0x2168  [ 23F9EF739F685E07482116425E7879AA, 0EBDF96A49A319C0BCF6F51FB6C8C392C017E1738B950C19C91FF43E14D73143 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
08:36:48.0818 0x2168  buttonconverter - ok
08:36:48.0826 0x2168  [ 60EB6A4CE3E21887D302350631C16F26, 4270EFA22285C1A9336CF1220761E416950D2DA9C6A40D1D8452686CD5040DAB ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
08:36:48.0851 0x2168  CapImg - ok
08:36:48.0858 0x2168  [ F8FB51B9EF6372610E9B31A1D86B62FC, 7461584A8B39AC549AD7BAFFA509D4CD81EEE542808BC8EFC285863A0AE6432D ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
08:36:48.0881 0x2168  cdfs - ok
08:36:48.0899 0x2168  [ 2E6612376D257F74781F2EF1F869D8C3, 908B0DECB9F098F7F11B029A03C06C67FB52E5E8BEA42033A2B579D3B3686AB8 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
08:36:48.0937 0x2168  CDPSvc - ok
08:36:48.0952 0x2168  [ A93C9B9EBE2FDE5A536000D72CC17F7F, 9793CFAE8BE8C6B5B39A1D276577965FBB2CE131325A410B7C68BD23492ADAAF ] CDPUserSvc      C:\WINDOWS\System32\CDPUserSvc.dll
08:36:48.0988 0x2168  CDPUserSvc - ok
08:36:49.0004 0x2168  [ 613D0137C269187FA298A157E3D14A18, 84BC268525F14BB27202CE242BF94D9E83BC91B50A0335908574F31B29A2F04D ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
08:36:49.0030 0x2168  cdrom - ok
08:36:49.0040 0x2168  [ E189727B3C9909A85B33A16B290E192E, 2C273A9F44EDC5E5435904E9681973854B2F3EBB6100021BB139FF0CCCE9BF20 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
08:36:49.0069 0x2168  CertPropSvc - ok
08:36:49.0085 0x2168  [ 0AED948DA8D5F08B3D6F12E4E2089736, 95E538E81DDBC83492C5F3820C82C78F050B4D74ACF12D7970EC84F93581AE29 ] cht4iscsi       C:\WINDOWS\system32\drivers\cht4sx64.sys
08:36:49.0112 0x2168  cht4iscsi - ok
08:36:49.0214 0x2168  [ 0002A0FDE087C1657AB31CE73077539C, 4DD6210B67E9633AB3240371590869DC833A4C986C74FC12A5D4FFFFD361848A ] cht4vbd         C:\WINDOWS\System32\drivers\cht4vx64.sys
08:36:49.0276 0x2168  cht4vbd - ok
08:36:49.0282 0x2168  [ 6B4F90A287D75CCD78694F6790C911B2, 73D7C31E9F475FA3FD568FCA9A953F968729AA114F63C06F38BF5198DAD67BD8 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
08:36:49.0292 0x2168  circlass - ok
08:36:49.0300 0x2168  [ B72D26074E72A757D788FB1BEF8B2F2E, 36847C5315AFB9A5EC66AD3EF2A09C24C0FAF669FDF0831F78600F4609352CB4 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
08:36:49.0314 0x2168  CLFS - ok
08:36:49.0419 0x2168  [ F7BCDE28B6F0A57AD443DF3AA26F0052, A2AD94A8B89B22C5AD4B6926617338E867392A27F166CB70591788EC8651387F ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
08:36:49.0518 0x2168  ClickToRunSvc - ok
08:36:49.0543 0x2168  [ E133CFCBFABB3CB517BE9F42FEA5887C, DA699CDD5F3CC427354540C907BD24CCA7BAC3112C53918EB611CB4EEC7611DA ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
08:36:49.0573 0x2168  ClipSVC - ok
08:36:49.0579 0x2168  [ EEC3A4A98AE1A337E3CD1483AD6F2E15, 764DA329984A95E092F5C15116DA34FA7FC27216C0862365D4BF10ADC97EC5C5 ] clreg           C:\WINDOWS\System32\drivers\registry.sys
08:36:49.0593 0x2168  clreg - ok
08:36:49.0603 0x2168  [ 429623E266EF067A44E8CF148E9DFB9B, A48AA85ACC52C7AD73DB2D6148B3F9FB5EAC33C8F8C5BB6D7D0A9D84B7C08E11 ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
08:36:49.0616 0x2168  CmBatt - ok
08:36:49.0634 0x2168  [ 43D1405674332A7883A68C27ACE08359, 789ACBF3A50904B47C847D9262F1BA00F837A7EF705BCC29EA85216DBC965288 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
08:36:49.0663 0x2168  CNG - ok
08:36:49.0668 0x2168  [ 3DB10C59405931E2C72EFB82C1AF97D1, 100B5450A70988DB1C1F8A5FDBB3553AF1A0D47B42A5AC71460DB92E26010CE6 ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
08:36:49.0678 0x2168  cnghwassist - ok
08:36:49.0766 0x2168  [ 7B576E0CB7C3707DDFD818A0BD258541, 942F810982755949FC7BE159D151054A38B2AA1910FFA24829A74BFCDE12569E ] CnxtHdAudService C:\WINDOWS\system32\drivers\CHDRT64.sys
08:36:49.0833 0x2168  CnxtHdAudService - ok
08:36:49.0865 0x2168  [ 34C935AF2A414572B412B3556586D783, 912981B88B0796576ECCD5EBE0C4728EC02D5D6A96B039447DCBA59B2583F25E ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys
08:36:49.0876 0x2168  CompositeBus - ok
08:36:49.0878 0x2168  COMSysApp - ok
08:36:49.0883 0x2168  [ 44EEEB2382F566999287E13F2067693C, 53A4A0C85EAD38030FF2078C67465E3710ECD03A08FF34E1E67B2E3E1CC70043 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
08:36:49.0900 0x2168  condrv - ok
08:36:49.0909 0x2168  [ 7CC05F87322C94433972D493B23A03CB, 7D728495C5F9D39D8AE898640886BA32087327ED6CA22BA26A416E25CE4BBF7C ] connect2hotspot C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe
08:36:49.0925 0x2168  connect2hotspot - ok
08:36:49.0958 0x2168  [ 0E965F9D654C64EAA8970DE25AF32839, 91709A4561A9536B4A9B00BAB8D7B63D5B904065375AF37598C2B0A2C5A8E47C ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
08:36:50.0003 0x2168  CoreMessagingRegistrar - ok
08:36:50.0019 0x2168  [ F369FAA095E9DF2F99FDF65E700E3CFC, 4EAE80BF99070CF5B2F8A97F71EF2D3CEAD13010C76D45BC70C2C57AA9A40A89 ] cphs            C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHeciSvc.exe
08:36:50.0037 0x2168  cphs - ok
08:36:50.0052 0x2168  [ 83B3FD57DFB86C2F0F2F7947B0CDA96D, BF3497CFDE0B29A4A9EF485CB9DFB7C4F5A72A826ED8DD1A2C134EF4DED931D9 ] cplspcon        C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHDCPSvc.exe
08:36:50.0070 0x2168  cplspcon - ok
08:36:50.0081 0x2168  [ 5F06CAC4B09250CDDDD0180A08162924, A2EB0A57225E65FC264CFC9FAD858D8B54A015CDAE3DC904B1C4E9AAB40B1F06 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
08:36:50.0101 0x2168  CryptSvc - ok
08:36:50.0116 0x2168  [ EC2EA2F6C6D23315C20B4829F00D0440, BF1F47C3485E9112FB64F582DFA4679455203574F82A5ADB222BDA1FED1601E6 ] CSC             C:\WINDOWS\system32\drivers\csc.sys
08:36:50.0152 0x2168  CSC - ok
08:36:50.0176 0x2168  [ BE35D1BAC3F18C9EB1C1CFBA31ED95E3, 4255475D173868A0E5583E844A1884E819E229838C4DEACAC47F1A4DEF388C9D ] CscService      C:\WINDOWS\System32\cscsvc.dll
08:36:50.0217 0x2168  CscService - ok
08:36:50.0230 0x2168  [ FF44271C20386D6D782D058EF632BD40, D89849954A91565A7816503DB0BFFAF90E8931F8FDC1AE6A785E8645988E348A ] CxAudMsg        C:\WINDOWS\system32\CxAudMsg64.exe
08:36:50.0244 0x2168  CxAudMsg - ok
08:36:50.0252 0x2168  [ 85C05B3B6A3627FBB32EA3EC17BC9517, B1413893A3AF9165DD90D95BA0F93ACE56EF56F3D7F8B9432F2C3F1EB46A5EE9 ] CxUtilSvc       C:\Program Files\Conexant\SAII\CxUtilSvc.exe
08:36:50.0264 0x2168  CxUtilSvc - detected UnsignedFile.Multi.Generic ( 1 )
08:36:50.0491 0x2168  Detect skipped due to KSN trusted
08:36:50.0491 0x2168  CxUtilSvc - ok
08:36:50.0510 0x2168  [ 3BBD0073265DA6D3EFBA54B26E5D8236, 3C10C8BEC0D8AC41A3FBD589F41A83D6345C1FDD04B8B99063B2F5670CF10B18 ] dam             C:\WINDOWS\system32\drivers\dam.sys
08:36:50.0553 0x2168  dam - ok
08:36:50.0578 0x2168  [ D519FF1E2DF36CD53BE76A16506D4CD4, DFA46EC0C25F964CC308369BFA907FAE4B8985ADF6DBB4E0DD84A6DA6D52852B ] DAX2API         C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
08:36:50.0620 0x2168  DAX2API - ok
08:36:50.0644 0x2168  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
08:36:50.0685 0x2168  dbupdate - ok
08:36:50.0711 0x2168  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
08:36:50.0765 0x2168  dbupdatem - ok
08:36:50.0782 0x2168  dbx - ok
08:36:50.0811 0x2168  [ 5B7A202DECF962A6C9A2E759551BF05E, 6BA11F7728C0A13EA4B6EF478584AE0117BA5909346FF6FE20308674F34701D7 ] DbxSvc          C:\WINDOWS\system32\DbxSvc.exe
08:36:50.0845 0x2168  DbxSvc - ok
08:36:50.0897 0x2168  [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
08:36:51.0011 0x2168  DcomLaunch - ok
08:36:51.0031 0x2168  [ AE9F09F87755C18904656CB4F59F351D, B352A43B3B68B497D87B49C302AF3F37F36D56D49878AE3785C3D43597E5DC57 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
08:36:51.0085 0x2168  DcpSvc - ok
08:36:51.0116 0x2168  [ ABBD3EE724117242E28D31F19FBCFF03, 68EA91A969DD80A5DE28B0A8EAEB308837183713559C2C2FAEF991858C971393 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
08:36:51.0193 0x2168  defragsvc - ok
08:36:51.0223 0x2168  [ DD74F18227ACC837D9856E24282D446D, 6A760E44CD897952538CDFA8895FE11263D51AAA79CFF24C01F3862E919DA478 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
08:36:51.0274 0x2168  DeviceAssociationService - ok
08:36:51.0283 0x2168  [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
08:36:51.0313 0x2168  DeviceInstall - ok
08:36:51.0318 0x2168  [ CDF1B1B5C5951111791C236B2696C7F8, BF6C4BA545C8827B40DB69890DB4D2B2F9C583C5E3CFBDFD370B05891141458D ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
08:36:51.0336 0x2168  DevQueryBroker - ok
08:36:51.0344 0x2168  [ 4BC21E937E9F9F408672D2C2CBE4A153, 2F27560D09D184ABB7B4415146F5B8DE56C84FF74A4042596635EF896E39CBC4 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
08:36:51.0367 0x2168  Dfsc - ok
08:36:51.0381 0x2168  [ F0D4400BA0F08610D9A551B15BF10B76, 83EB8FB272FC2DD2CC0659C2FB90AD0DAE88A88AB3951E03BCD933A25B601E10 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
08:36:51.0413 0x2168  Dhcp - ok
08:36:51.0418 0x2168  [ CA7FEDDFCF61EF15A09C54DA2C07C49F, 346EF7709BA9E6BD48592B86FA46F9D956C847EF91F4980EEAD98269D0F0EF67 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
08:36:51.0430 0x2168  diagnosticshub.standardcollector.service - ok
08:36:51.0463 0x2168  [ A9122954D36E4EDFA3E3DB35DCA9E048, 350692BEE164CED1E0BD1A71D1BC90D5B6E0B0A5D1CB6633D115C58FF8A09B92 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
08:36:51.0520 0x2168  DiagTrack - ok
08:36:51.0527 0x2168  [ 35B9D46560339A5A7F0CAC6ED702C817, F70480B01533B7029F90E2DE297E9E829660300DDE7A7D009B0AC2684E7691A7 ] disk            C:\WINDOWS\system32\drivers\disk.sys
08:36:51.0536 0x2168  disk - ok
08:36:51.0546 0x2168  [ 00DF9E7ACB0376294E3D602AB6625B3E, 1D53DF89826A71FEC48B7602DD2F3E3B09024782B3CC5C787517DC374CC586C8 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
08:36:51.0567 0x2168  DmEnrollmentSvc - ok
08:36:51.0571 0x2168  [ 815F45161A4571C2C44491564F3D5968, 32E7AE8414A178CE429C0CDFCF718E3C11C705FB3155EA5CA0EAD48AAE507B01 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
08:36:51.0580 0x2168  dmvsc - ok
08:36:51.0583 0x2168  [ 6E5EE6E420FECD64DE463C5F01CBFE71, F173C56895E80AA03D70CD78B3AB659C2EEAACFF43BE3B6EF3939D6F4AD4F62D ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
08:36:51.0599 0x2168  dmwappushservice - ok
08:36:51.0606 0x2168  [ 86E507EE1457D7FA463BBF05BA76EB1E, 2D2D05CED57C22F41684DC6DD00ACECDF708407493286B2D4007068154E436FF ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
08:36:51.0622 0x2168  Dnscache - ok
08:36:51.0630 0x2168  [ 8F46B4C3F9BA19C26A26D0A11137B20B, BA0A66DBA98D77FD85A7CD2D4593F2B2A1A3B4D32BBECBCFFBEB5A54DCB0D8ED ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
08:36:51.0646 0x2168  dot3svc - ok
08:36:51.0651 0x2168  [ CA09EAEE92C6FDDC6B05057F11A0372D, 14DB5C186B69644AA93C445BF31CC9670204F95A47B77B6EACB19B4A316378AD ] DPS             C:\WINDOWS\system32\dps.dll
08:36:51.0664 0x2168  DPS - ok
08:36:51.0667 0x2168  [ AE6BD4C879A8C849E53947C92DF3B3A0, 8C29774CB2D30D901C54AAC0C8ACE709351EE40E5C8FB9951B2A18B4A03F28B7 ] drmkaud         C:\WINDOWS\system32\DRIVERS\drmkaud.sys
08:36:51.0676 0x2168  drmkaud - ok
08:36:51.0683 0x2168  [ 7433474BE77F065D2FA628671FE31A3E, 063ADDC68F48036749E6EC7B2F66284DB29F90F62E9468D16B4EF5A0FDC45E35 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
08:36:51.0700 0x2168  DsmSvc - ok
08:36:51.0706 0x2168  [ 5FCA45C24501DA7390065D3706A9FC3F, 093FD840F1502ECC6F05B9723CA523B3F15CF39A5D2B9106E1267739B3F2C52C ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
08:36:51.0722 0x2168  DsSvc - ok
08:36:51.0779 0x2168  [ 928E2749E01AEB9948F5D548B1F0C116, FBBC525306E6CE387BAF3DDD8145FD8AADDEFB2DC93E5692A8ED7F116C3EDD08 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
08:36:51.0839 0x2168  DXGKrnl - ok
08:36:51.0846 0x2168  [ 9FCE4EF7D5E274F862D9A2526B5F4779, 81D42D5475C2801C8E0C233A0BA827569D8A70590017C91C665C8B232D9BFAA9 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
08:36:51.0863 0x2168  EapHost - ok
08:36:51.0942 0x2168  [ 7EC6FC0266D74BD47ABB130A328B70EC, 3856790AF967AB03B1A89F97328DC4D5A6854ACDA6169681A9AFB03D7CF791F9 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
08:36:52.0034 0x2168  ebdrv - ok
08:36:52.0041 0x2168  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] EFS             C:\WINDOWS\System32\lsass.exe
08:36:52.0050 0x2168  EFS - ok
08:36:52.0055 0x2168  [ 8D74B8B5D6F7C5BC4C525BAF2B083FF1, DA5656F745B3911F96871887FDFDC40F4D9C820622A0AA27EFE4BA93662833CA ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
08:36:52.0063 0x2168  EhStorClass - ok
08:36:52.0067 0x2168  [ 2A9817B5A9260D8F60D52E36BEF10443, AC1A0203221AFAF584C71317FA07AA1B6E61BE619E918B3B1E4AD57CCED1CF03 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
08:36:52.0077 0x2168  EhStorTcgDrv - ok
08:36:52.0081 0x2168  [ 80A7999DE02CE678B865832E1CE78CD6, 2576EBB6E4D630A906DE724F125099E52A962B5B68B9F9BCA849A7B29D8C8689 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
08:36:52.0097 0x2168  embeddedmode - ok
08:36:52.0104 0x2168  [ 3CE2B6AECB9AF8BC159299EEC46A35CA, E933B28BB6E4D01FCCDF8FBBB134C244B28DA3ECBDFA13333F0D4C24B2551780 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
08:36:52.0121 0x2168  EntAppSvc - ok
08:36:52.0123 0x2168  [ 77B60DEC7DCB4233E4A69D3F52E5DB24, 3A5C905E37A93899051497C90E5BA8E1D003B56C6906CADFD2F1CDF52052D248 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
08:36:52.0132 0x2168  ErrDev - ok
08:36:52.0145 0x2168  [ F89083AB8B9F51C0031C1CBD0A9A7E35, 9EE973A25134960E62D1A6A1E34AD9B3F7690E71C1AD31A23FA2081A73438754 ] EventSystem     C:\WINDOWS\system32\es.dll
08:36:52.0167 0x2168  EventSystem - ok
08:36:52.0176 0x2168  [ FCD2C63754C2E739A8EEAD9BC63F9DDC, C57A72ABA4C0BD71F914B9C8FF965DCFF585A205498F19A4584A4BAF7674839D ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
08:36:52.0195 0x2168  exfat - ok
08:36:52.0204 0x2168  [ FA918EC296EB410FF02867D008D02421, 23D164A24CB0D212778FA9592A046B6BA1F3628003E04181744A1F891B5B3E5A ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
08:36:52.0218 0x2168  fastfat - ok
08:36:52.0232 0x2168  [ 77CE56471AF984800F318F3734D768C7, 72D540072374A56C2C497F0532A50705D3F0637F2C0C96B1D715F2EDFCA3AA2D ] Fax             C:\WINDOWS\system32\fxssvc.exe
08:36:52.0258 0x2168  Fax - ok
08:36:52.0262 0x2168  [ 99598ECA5E41996E005D5B9D9FF1EFA2, 91345CD50EF02431B69093505C1C5F5DC6A1AA6BF192EE9392ED4D5626B60462 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
08:36:52.0272 0x2168  fdc - ok
08:36:52.0275 0x2168  [ EF0DD43A4CBAB367BCA1AFBDC9971E4F, 73E161C45D63FDDE71EE2438137913724DC513860539D1E7F6BD861F5D1B33F3 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
08:36:52.0288 0x2168  fdPHost - ok
08:36:52.0291 0x2168  [ 34DAC585994CD3B4E910DE11C584EF3D, A6C6A4CB5413EA61F1A54E2D3AD71A311CEA2C26218544D2D2D4A5CFEC52DE8C ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
08:36:52.0304 0x2168  FDResPub - ok
08:36:52.0308 0x2168  [ B68DA1FE3CA2311AFD38DD6905CA7F71, 4B395DFB1B47D2507CA4D9DC996A70D0A3BDB1A245CD6DA6C42B2A299AFCCF37 ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
08:36:52.0321 0x2168  fhsvc - ok
08:36:52.0324 0x2168  [ F44F666B0EACC3181544FFCF8CA0FFC7, 83F771CF9DAE1C504B30731EEC55355EA1253174252DA2192ADF1D228B3735C3 ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
08:36:52.0335 0x2168  FileCrypt - ok
08:36:52.0339 0x2168  [ 78A210DDFDF2C9EC884631D2DAA573F0, 5D39C6EF4AC690A9749EEDBE2478FFF15A22877A2861EDA103C7BF1607B0C1BD ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
08:36:52.0349 0x2168  FileInfo - ok
08:36:52.0351 0x2168  [ 1A97DB5E701A186989F3795223C3BE39, F7982220D4DF7E104955E63CACE352394E2577DEF49506EA126127F820EB62DF ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
08:36:52.0364 0x2168  Filetrace - ok
08:36:52.0367 0x2168  [ 46626665F0E5906E45619B4EFD6186B8, 37FDD3B8AD49FD29E54DA5567EA77F28A53498AE56348F7A2628E5E5549D638B ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
08:36:52.0378 0x2168  flpydisk - ok
08:36:52.0386 0x2168  [ FDA72ACA14D516D18C33AFCD0FD9260F, 6509612DEC82EA74614B5C9A7B432305A1A468C97B88BED9E141DF2929B621B1 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
08:36:52.0400 0x2168  FltMgr - ok
08:36:52.0433 0x2168  [ 2E193D24CE8460A9C703D0F193192BEF, CD95928BC240D556DFEA265A09A655FFE157A36D2230CD10BBAD4CA15CB98412 ] FontCache       C:\WINDOWS\system32\FntCache.dll
08:36:52.0487 0x2168  FontCache - ok
08:36:52.0493 0x2168  [ 59241194DBDF30A2B4029E402F377900, 47A92E9CD8494C403B377799D395670A393766647E24CD83B15338CE2AA50266 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:36:52.0501 0x2168  FontCache3.0.0.0 - ok
08:36:52.0517 0x2168  [ CD7CD19E72EA2F597D01FC68ECD2F28E, 4E8BAA4AEF28B043780E2FEFFEB5E4DF4E2FB3211CE617D2DBAFB6C7B7DBBDFD ] FrameServer     C:\WINDOWS\system32\FrameServer.dll
08:36:52.0547 0x2168  FrameServer - ok
08:36:52.0552 0x2168  [ D152CCBFC8251670BF0AAFE00D6BC782, 9DE82D8FC4E1DAF8FF23EE08C0B7CB5051A9224E64544D262CFA4996A41B04E1 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
08:36:52.0560 0x2168  FsDepends - ok
08:36:52.0563 0x2168  [ 6D6BB5C7363CD35FA715E826F3D029EE, C214F791EB39E8B25CE57ED9D6C1D56EE1AF6021BCB380980BD42A6338A6C9F7 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:36:52.0571 0x2168  Fs_Rec - ok
08:36:52.0584 0x2168  [ 8EEC4925C03E375C4EC496E45C44139A, 06C5C7BCC28D3E435675F0759A09CAB726E971DF4BFC1DC3DCF503EABCDCCCC6 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
08:36:52.0605 0x2168  fvevol - ok
08:36:52.0609 0x2168  [ EF78034773CE506323655A868C949144, DF195BEEE6704FBCC6D2D9E1BF6723E52ED502A1459F495B7D18481E6A79B5BC ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
08:36:52.0618 0x2168  gencounter - ok
08:36:52.0622 0x2168  [ B55FEBC6A00DAA1FE074F020B6907516, 67071FBAC2ABA47AB71358A5F08E92E034A55343878F00137E90B3B1F7362976 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
08:36:52.0631 0x2168  genericusbfn - ok
08:36:52.0637 0x2168  [ DDD8A8CDDC7F13EF57D1DAAE71865936, 9D472A8689F72F24D40D5B94849690F53C67849FDF6162A94EF4FB330A3DA566 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
08:36:52.0648 0x2168  GPIOClx0101 - ok
08:36:52.0672 0x2168  [ 8997353398C8466ECD183942D5FCC65B, C73FD5FFD71003F7FDDC17F59812BD6860992FA35EC0ECC8DE37D935606B485B ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
08:36:52.0711 0x2168  gpsvc - ok
08:36:52.0714 0x2168  [ 7ACD8F69B5D6EC97E6D2C006E19BED88, FC69214C9308EA64B88EF4C3C95800586DDBB44C8540846B79A161BAD8203B6E ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
08:36:52.0724 0x2168  GpuEnergyDrv - ok
08:36:52.0733 0x2168  [ 217230B984AB2954E2FA5E36578D7B08, BB7B79EA7501A28EB2A0303FDF66FB9D59D567994C25A1523CD6D2081C403AF6 ] HdAudAddService C:\WINDOWS\system32\DRIVERS\HdAudio.sys
08:36:52.0753 0x2168  HdAudAddService - ok
08:36:52.0757 0x2168  [ 10E3515FE5DBA6656FA62C29342EC4A1, 2051F10F74ED712B1766EB61E87FADE25AB3D0970BABFD320600D1B0D6377F26 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
08:36:52.0768 0x2168  HDAudBus - ok
08:36:52.0771 0x2168  [ B90D284B97CD4CA9DE7430AAAD887A56, 2F14F985C39B7801ED64590979CF2114924E9547F5B11D2B37A74DBFFDD9E7C5 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
08:36:52.0779 0x2168  HidBatt - ok
08:36:52.0783 0x2168  [ B2FE11643CC6ACDEE6C247DD36018FDB, 5796613C7DBF8B2A9E860E006FF1A245B6BE7D10E3F6685AD142B48E5C237B8C ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
08:36:52.0798 0x2168  HidBth - ok
08:36:52.0802 0x2168  [ D24355488A2D4D2323518EC1AC7A6D9E, ED2176A2093726087EDDA25B86E9CDD4BA35F4E748E3A6DE0B15C4C97646B5C7 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
08:36:52.0812 0x2168  hidi2c - ok
08:36:52.0816 0x2168  [ 0AF9ABBA4F3F55C6C803890D64BC3C29, D3DE6FA308F8E7CD4F16387F46AE4B2F7EC9BBA07BF87652B660A0D645710571 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
08:36:52.0824 0x2168  hidinterrupt - ok
08:36:52.0827 0x2168  [ CDBCF8E9AB06D88A1E1191D32F320C5D, F76963AB7CF2BAB3A220013879AECD3976BFD851CFB66B5A69A9EA2541048861 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
08:36:52.0837 0x2168  HidIr - ok
08:36:52.0841 0x2168  [ C900FE0DD6A1E2220084B8F1C427790C, 802194EBEDA1A50EDA300078B0888AAC1F17A42E67147B7B3B9C50AD8D4E5C89 ] hidserv         C:\WINDOWS\system32\hidserv.dll
08:36:52.0851 0x2168  hidserv - ok
08:36:52.0854 0x2168  [ D8536CB438CC4CCDAE047B768EED22B2, 4F666BFA3554F9ACA6B9D436BFA64474D5F30FB3E78F4E66068CCDF283D9867F ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
08:36:52.0864 0x2168  HidUsb - ok
08:36:52.0871 0x2168  [ 0AC1BD5A28FAA371EF34859FE703E515, 1DD1C33AF8D6EBE7C36FCD051F066E4039D2B47ABAECF7C68BC3933D567930B2 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
08:36:52.0888 0x2168  HomeGroupListener - ok
08:36:52.0898 0x2168  [ 86161A89F16851728802590EC7C92608, 3A3B05BB4E115410D27063B30C0EF3F18295F542050F329F1E466C81A9E23A46 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
08:36:52.0919 0x2168  HomeGroupProvider - ok
08:36:52.0923 0x2168  [ F5CA18197B4646E04DB9EB2D6642CC4D, 5BA3342DDF1BCB67E4156169FE9A33E7BC2641C729E9F1A80C0E80953C6AB114 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
08:36:52.0931 0x2168  HpSAMD - ok
08:36:52.0935 0x2168  [ EC80F3ECC5F8543E22BBCB037D837CA9, 23A4AE80A6C317CE77BD9D352CD9CED8649E3AD98A7C0A2044138BB20B46F398 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
08:36:52.0942 0x2168  HPSupportSolutionsFrameworkService - ok
08:36:52.0964 0x2168  [ A10C7C1E69FC90620C7BF2E51302A01F, D725AEAE38255CED73F4922A10F226215528706580B06D01C228488F93AC0397 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
08:36:52.0992 0x2168  HTTP - ok
08:36:52.0997 0x2168  [ 0C84C250F80EAEC2C9768464CC1A9626, 212E1003B78F9B98FEB084FD1FDB59B26A9DE4C9120F24D4361FBBF0F3C035E7 ] HvHost          C:\WINDOWS\System32\hvhostsvc.dll
08:36:53.0009 0x2168  HvHost - ok
08:36:53.0012 0x2168  [ 74FC79C52395B10FFD0B55CF22CF88FC, 94D977DA2092EE8C2A598AC48758A84BB22CB6378BD114C2D3B4172A07A9CACC ] hvservice       C:\WINDOWS\system32\drivers\hvservice.sys
08:36:53.0021 0x2168  hvservice - ok
08:36:53.0023 0x2168  [ 771EDDA9830A3079F996F34D681FB6E5, F452AD656872A1C8B2D6DCE232CE01EBD456C46F4934A7601E78470F2A2CBF38 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
08:36:53.0032 0x2168  hwpolicy - ok
08:36:53.0034 0x2168  [ 3B9F315E7FA72CC25228EB097DD9C694, B26F1E494428EF197A0C97645C05BB3CA093827A005D35C987F1D6778BC4E52C ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
08:36:53.0044 0x2168  hyperkbd - ok
08:36:53.0047 0x2168  [ 6A0B9F5662598D229F62CD317292E8F3, AF33D3FFACF72A15EEE37A4998DF0C1F9595B949D1AB4FAFA8AF278DB41E0455 ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
08:36:53.0056 0x2168  HyperVideo - ok
08:36:53.0061 0x2168  [ B54B30992620C97230013A74461C8517, CAF09BDCDD6DE2A39CB8AE2C65E6F8FE12D8E93D84BBEF6C6A98F872BF54A4E3 ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
08:36:53.0072 0x2168  i8042prt - ok
08:36:53.0075 0x2168  [ C6B8743B213F06AA60943D8366FE968F, 758954F70B810063914B243115B2C753B2BCE40190F95C30ACBA0BF04EBD5B33 ] iagpio          C:\WINDOWS\System32\drivers\iagpio.sys
08:36:53.0085 0x2168  iagpio - ok
08:36:53.0088 0x2168  [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c           C:\WINDOWS\System32\drivers\iai2c.sys
08:36:53.0099 0x2168  iai2c - ok
08:36:53.0103 0x2168  [ 5A0E850F8CD17791A3E6A3CF81D0CA28, 10A965A49D53360DD250E0758B6BB142872298A21C732EB026ACB93492C5C6CF ] iaLPSS2i_GPIO2  C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
08:36:53.0114 0x2168  iaLPSS2i_GPIO2 - ok
08:36:53.0120 0x2168  [ 7508F1096803385D6376BFD0BD473AC4, 1F32EC23CDC94DCB9710E6663B5C3BD83568545DDC2C741CFC13550A4E4DD2BE ] iaLPSS2i_I2C    C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
08:36:53.0128 0x2168  iaLPSS2i_I2C - ok
08:36:53.0131 0x2168  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
08:36:53.0137 0x2168  iaLPSSi_GPIO - ok
08:36:53.0142 0x2168  [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
08:36:53.0154 0x2168  iaLPSSi_I2C - ok
08:36:53.0171 0x2168  [ C06AD2A5ABA692E255EC844B9D6CE6B0, BC729A0D6FE5492C610C3B9FA429665D1B21FBFE5AE316D5F0EE0E331B5ACA11 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
08:36:53.0192 0x2168  iaStorA - ok
08:36:53.0208 0x2168  [ 97E553D03219D3D51705C7235D9EAEBD, 5D4578C8804AF32D1DC0868E34D6538138DC15F9568CA7E21051B1C82C0D8D55 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
08:36:53.0251 0x2168  iaStorAV - ok
08:36:53.0269 0x2168  [ 8350FE3BCDE3428BC040877BB7E9EAEB, 77F9456351CA640C6B7862907C0580627E761EC807B551976A95657EB4D6CC20 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
08:36:53.0304 0x2168  iaStorV - ok
08:36:53.0327 0x2168  [ 3BA03F7C7700DDF4C383DDE9252F5817, 3E90F69D0010E7764349D9AE865D577E431FEBC67DA554B400BC808DD286E203 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
08:36:53.0363 0x2168  ibbus - ok
08:36:53.0368 0x2168  [ 053DFE4E6324B828C16CB6F5B9F20790, 17347896126DE49C570D2AC025F2A4BB8250B67ECD6A6D31B80EBD9423799F0B ] IBMPMDRV        C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys
08:36:53.0377 0x2168  IBMPMDRV - ok
08:36:53.0384 0x2168  [ D84EF85ED4F2044784A44C211A27D065, FA18EA57507353DC3DB18F840F0499D7874AC055E3190E4D76DB9AA1021FC674 ] IBMPMSVC        C:\WINDOWS\system32\ibmpmsvc.exe
08:36:53.0395 0x2168  IBMPMSVC - ok
08:36:53.0403 0x2168  [ 937AC47F7356554DA05D9722C356EB55, 9EABC9F19B4E1193B669D2674967F5C6F03FAD348EDF0615E3F78554FF9A83CC ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
08:36:53.0422 0x2168  icssvc - ok
08:36:53.0693 0x2168  [ 2F635F0771561895193738D34F6FEDE3, 8498D74C85D4366642F2AC0FFA5808A6EC3A8B5E0C3419618CC29A0E5D62828F ] igfx            C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igdkmd64.sys
08:36:53.0912 0x2168  igfx - ok
08:36:53.0930 0x2168  [ 013C5E988C79AC0CBBC7C5802CD6BAA3, 5B292B866C9555B8F4D905AF4B8FB9203837EF6CC7D349ACB45F5BC0D7E2D851 ] igfxCUIService2.0.0.0 C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igfxCUIService.exe
08:36:53.0941 0x2168  igfxCUIService2.0.0.0 - ok
08:36:53.0961 0x2168  [ F2934208C0E50C0B971A7981AB90BED2, B936BFBBD71E731CC2CDB8B47D262F2EF09726FF921C2DA0841910CA2401423D ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
08:36:53.0993 0x2168  IKEEXT - ok
08:36:53.0996 0x2168  [ 2A01C96DF5802D3434634E55C91232D8, A3ABEF36E2FD2CF5C371ADBF92566A09669A1D990ABE4677370F57F2EEAF8121 ] IndirectKmd     C:\WINDOWS\System32\drivers\IndirectKmd.sys
08:36:54.0006 0x2168  IndirectKmd - ok
08:36:54.0023 0x2168  [ A6087A824507CAB1ED568895F8081950, 53ADFCC6E795D47A7197AC372DB53E4F95B10409E5AFA7A40CC252ADBE84E8F4 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
08:36:54.0043 0x2168  IntcDAud - ok
08:36:54.0057 0x2168  [ CB0B993C2C6CFC658645A39F072D0B83, 07A29A91630319FD75D3BFE7A8F71A4F5E1746B23AD5181C98332DDC99A57C94 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
08:36:54.0078 0x2168  Intel(R) Capability Licensing Service TCP IP Interface - ok
08:36:54.0081 0x2168  [ 9F7E87F6595D065A8A200A291043045E, 6944F72F73EADC6C9B7691F2C1C6DF1898F22C88EFA78EC0BA8CB5FFD9CE057B ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
08:36:54.0089 0x2168  intelide - ok
08:36:54.0092 0x2168  [ A6BD2E20AE1BC5CB2776C87C28E4F4CA, BD8BE67CED9A4982D785CE9ECBEFE868C3A2E37DF7F9592B9F9049B807A1554B ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
08:36:54.0101 0x2168  intelpep - ok
08:36:54.0106 0x2168  [ 2A48DA39542636DB0FA3BA915385D1B3, 6CA0916F5F4B1E81AE6A6233276320599BFA7C129267177703E3BB6468FB4683 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
08:36:54.0119 0x2168  intelppm - ok
08:36:54.0123 0x2168  [ DB32758F3A7F6CCE81A5430080A2EA65, 36A26BAA884E96804F8EA0B12BB3E81BBE6D4EE704809904091445F36CAB5A29 ] iorate          C:\WINDOWS\system32\drivers\iorate.sys
08:36:54.0131 0x2168  iorate - ok
08:36:54.0135 0x2168  [ FE85D0A86CA7A5A99CF8CD04DE7F80AE, 544C01FC01EE728EB5667158207E5F4418FE77A88BA318192A834722DB766F4E ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:36:54.0146 0x2168  IpFilterDriver - ok
08:36:54.0165 0x2168  [ 68C50E8E4265698BE6835156F4DD5008, 5B9CBBCE99315E5569E6733F13E91A687A36F536A68A2B670CC24C4BCC4EAFF4 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
08:36:54.0197 0x2168  iphlpsvc - ok
08:36:54.0202 0x2168  [ 10D01A3657AC8E8004C83D613163DE1E, F9389F1BF87A2D28899F50D270DA6F48B0912CFAF06CEE566697B041DBE92F9C ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
08:36:54.0211 0x2168  IPMIDRV - ok
08:36:54.0217 0x2168  [ F1DAECC3B3D6399875D4F10529D6A77C, 6533D2F858816BE6570C998510919FCA2904EC6EF806F61C1FD325E88133111B ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
08:36:54.0232 0x2168  IPNAT - ok
08:36:54.0237 0x2168  [ 7475A2903BB704B446AA6309E34D3362, C94643A1626A9716015EBA7041A1224098501EB7DAA704CBFCAD3DC6F3CFC6AF ] irda            C:\WINDOWS\system32\drivers\irda.sys
08:36:54.0249 0x2168  irda - ok
08:36:54.0252 0x2168  [ 9725E7F0C64CE9916A5CDABE8D6E13C3, 04AF9E48FEF208A2850DF28352E8FDCBF4018982C72C0F67EE12C048C4070116 ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
08:36:54.0263 0x2168  IRENUM - ok
08:36:54.0266 0x2168  [ 8C604213A2E73088BFFE6CD2E6F1AE53, B4C4FEE4D398A29F72EC27D5668071D7E68CD943FFFC38624DD5DF5BEBDF46D3 ] irmon           C:\WINDOWS\System32\irmon.dll
08:36:54.0277 0x2168  irmon - ok
08:36:54.0280 0x2168  [ 58040898883A96160D41739C80328BBF, 7F85C91C905811416E266A263DDEFCDCB0B45376AAE51B551AB636C16577DB9F ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
08:36:54.0289 0x2168  isapnp - ok
08:36:54.0296 0x2168  [ C9FD02D62E09337B67B0C61EC8CA38CC, DC77E935ECC8474BE9018F0937CB11C137073582B20A0EE107CE247FD9E1F9C1 ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
08:36:54.0309 0x2168  iScsiPrt - ok
08:36:54.0316 0x2168  [ 4D65E61E02F2CB6CE0258DF066796562, 53CF73CA277566D500148AB0CCF5CADB04ECE6A8F94C45DD65BE683570AFFB63 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
08:36:54.0324 0x2168  jhi_service - ok
08:36:54.0328 0x2168  [ 210808437570BDDEE71A43535E3A2D30, EF5DE6EE4FF58F44CDE4D4E7F298ABBC9086EC05CC3AE4903060DA878115AC1E ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
08:36:54.0337 0x2168  kbdclass - ok
08:36:54.0340 0x2168  [ 0B779E9FC426CA2268D28181FA6C222F, 83292023A688C3044D096F22242EB954B7F7511BE8341D45FF0AFBD9CB9BCB4E ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
08:36:54.0349 0x2168  kbdhid - ok
08:36:54.0353 0x2168  [ 813BA3EB2CE038F2A5382DDD75CAD60B, 99FA444027CAC247B54317730D54AB0C4C000AE076B97E47470FDA9834594312 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
08:36:54.0363 0x2168  kdnic - ok
08:36:54.0367 0x2168  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] KeyIso          C:\WINDOWS\system32\lsass.exe
08:36:54.0376 0x2168  KeyIso - ok
08:36:54.0380 0x2168  [ 705C0F8BCCEF6E7CB704CCB454192D7E, FC608C708E2C3BF7A66E57B95E19E71E5F5C87EF359D8BC1A817500B45DF9338 ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
08:36:54.0391 0x2168  KSecDD - ok
08:36:54.0396 0x2168  [ 55AD13E2BAFC5AB53A10F8C271F5D242, 058BEF14DCB95574BCAB985F04737BA89483937E8D8A74F7B4CEAFB7400C2397 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
08:36:54.0407 0x2168  KSecPkg - ok
08:36:54.0410 0x2168  [ 4ED115CD1A1099705F56B5E0FFF97CC6, 9CC49DF2CD6AAAE405BA661D13EFC1E05111D1DE3D1E50C39C425AF1F075610B ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
08:36:54.0424 0x2168  ksthunk - ok
08:36:54.0434 0x2168  [ 8125BDF7ADC261F75EF0CAD92456E350, 184797AA1D58C4FF743BA60D48590B88B781EE7779205E45E0679DEC79F3E185 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
08:36:54.0453 0x2168  KtmRm - ok
08:36:54.0460 0x2168  [ 8CCAB08815B50AD78B823DB3F96C8604, 265E6D582EB7207B5CC577D61CB7BC3646F613047F168CD69BB776C37780EBF5 ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
08:36:54.0480 0x2168  LanmanServer - ok
08:36:54.0486 0x2168  [ 33DBBCF71F68EA97D9FD34E4C9AB5AC6, 104F04A1560E75EB224A3825707CE51E8798ABD764F5CC3B854FFFC93A39AF60 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
08:36:54.0504 0x2168  LanmanWorkstation - ok
08:36:54.0511 0x2168  [ C8A237FF3FD137C30B9B1FF60078A3D2, FBAFA27AC680DAABB5D3A9C1E8CF2E4FFD97020E0848CB8D4D78E8D5CE8F5111 ] LENOVO.MICMUTE  C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
08:36:54.0518 0x2168  LENOVO.MICMUTE - ok
08:36:54.0521 0x2168  [ F8EBAA1FE6D3BF84752931DE1BFA0E2A, 2F3C512712BA709BBBBD779D9E792DBE324876C402CDCEF0345B8B7ABE1D232A ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
08:36:54.0531 0x2168  lfsvc - ok
08:36:54.0534 0x2168  [ 5A23E4BE0CCF49663C4CF7EB74C20278, 9DF91014B13B7CED1C3D409F90858FD03EFC5C4347C98901B4DF0AFF2B77845D ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
08:36:54.0544 0x2168  LicenseManager - ok
08:36:54.0548 0x2168  [ 5933A6673F00D8255C52957E40C2D601, 0AA1281F8B3F97E360592D1B35EE7D3D614F1AB46007F9884CFFB1C5E647575E ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
08:36:54.0559 0x2168  lltdio - ok
08:36:54.0566 0x2168  [ 88A3C935725FA6EA1A228DCC26CF9C6F, 9B1F70644EEFA1EE7CE151A8A970430087339B7A6345F2E0252370929D4AFAC6 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
08:36:54.0582 0x2168  lltdsvc - ok
08:36:54.0585 0x2168  [ 3F858E28AEE6545FA1B64134DFD5C2CE, FFD7B4FB0A7B61BC6B76A172134673842F2CF00E96FA3ED4A8273DC525B6BB92 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
08:36:54.0597 0x2168  lmhosts - ok
08:36:54.0606 0x2168  [ 7272488AE5FE56630A2CEA262012BB15, 0BB35C866060DA4BD432848021A7B26A2DAF7DF31D08DC1FE5142D8ABE822308 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
08:36:54.0620 0x2168  LMS - ok
08:36:54.0636 0x2168  [ 67569B50D28182AE1B21C46815CE58D0, 8332604147643BB151DB035F97A611B0D935DA6778266D9913BC945D5789EF87 ] LPlatSvc        C:\WINDOWS\system32\LPlatSvc.exe
08:36:54.0654 0x2168  LPlatSvc - ok
08:36:54.0660 0x2168  [ 8E1B0946948CCC0BC1FA3CB70374A795, 0B894C129A35E223FF9594725AC90916CBD597FAD2211A18FC2AE03EA8679597 ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
08:36:54.0670 0x2168  LSI_SAS - ok
08:36:54.0674 0x2168  [ 4F68163FC04C973500DC4DA0946917B0, DF060C29109EB3978CEDFE781999B0C4C1E8C0FDB133428058D8400C53315EEC ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
08:36:54.0683 0x2168  LSI_SAS2i - ok
08:36:54.0687 0x2168  [ E5AC5F2815938651CDCC27F425474673, 3AF0598982153C36A766506FA088F7B84333CC96FEBB050402547AFC613AF9F7 ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
08:36:54.0696 0x2168  LSI_SAS3i - ok
08:36:54.0699 0x2168  [ CCF6EC9FB9B8F18E05B4253E81013E48, EBE8D77FEE8B99BD8C29702404774D554673C96DF3FDF3DCEA9C99E22C2709FC ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
08:36:54.0709 0x2168  LSI_SSS - ok
08:36:54.0724 0x2168  [ D5EFC0BAEC21EDE6FE03D377D403B421, 41BE71AF7C896FD4C51EF7E3871AAB769164DFB8050DA43E48C7A100711414B4 ] LSM             C:\WINDOWS\System32\lsm.dll
08:36:54.0750 0x2168  LSM - ok
08:36:54.0755 0x2168  [ C9579D32219E5B936AC3A48D470117EC, E61A77191B6BA25D29B1221FEBBE826BBC11F825C0E35A72B4CEFFF8B7FE59A8 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
08:36:54.0769 0x2168  luafv - ok
08:36:54.0773 0x2168  [ 9F699136FA1A8A170C2C05D7790A5FC0, 4363C527BD2FC9FD8937E9866CA200809AC87B64EA57084491BAB6DEB8ED9E87 ] MapsBroker      C:\WINDOWS\System32\moshost.dll
08:36:54.0785 0x2168  MapsBroker - ok
08:36:54.0788 0x2168  [ C3CDCCF07486BD2616A7B82946E07AC0, 1EF95DAB2DA856BC7D7573B2EB2D9006DF337F827F0B56A161D0C97F45DB755E ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
08:36:54.0797 0x2168  megasas - ok
08:36:54.0803 0x2168  [ 2CF0CB2A0ED68C5455371E84C16F9627, 1C9166B52140145F1968E83E52BFF041250811B23C770FE181A18A4BA060CA81 ] megasas2i       C:\WINDOWS\system32\drivers\MegaSas2i.sys
08:36:54.0811 0x2168  megasas2i - ok
08:36:54.0823 0x2168  [ FADB2FE017E69EECE0E1BA78661C2E8C, BE99B49031D8B4B670B6F6B6E829E54406779CF6F1D8AFE8AB79A73E6764AB2F ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
08:36:54.0842 0x2168  megasr - ok
08:36:54.0848 0x2168  [ 9D1B63E0FA537C3E77D4EAB73A299A34, A9816444F5984AA9ED57644746E9896952DBEAF4ED57820CC30D340A1046906C ] MEIx64          C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
08:36:54.0860 0x2168  MEIx64 - ok
08:36:54.0863 0x2168  [ 55A417C3E41F2A98666CF929EC19108E, A38C262B2863C87E4151525BF26D6AC16E7982D370E2C6998EB15C88C4BC8254 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
08:36:54.0876 0x2168  MessagingService - ok
08:36:54.0893 0x2168  [ FD60818B66B2E8A5415EA840E99A9D8F, 5D2F22909354534B821D958FBEF6A40EB4F642F53C7B509D00949096EF716F36 ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
08:36:54.0917 0x2168  mlx4_bus - ok
08:36:54.0921 0x2168  [ 68F6977F1CFBAAC770D940A8C0326FA1, 90EE1E7DAC680EAA5AD50E9B0B9FD8FCE8DD6A02D5EF941B5AA5084CBD40BB80 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
08:36:54.0931 0x2168  MMCSS - ok
08:36:54.0934 0x2168  [ 0D50B3F3AB32D416786B58D4553859CE, 9DA4D7A30982E8B31C45BDB721AEF5240EAD9DA6839CF34FDDBCF123BF104F2C ] Modem           C:\WINDOWS\system32\drivers\modem.sys
08:36:54.0944 0x2168  Modem - ok
08:36:54.0947 0x2168  [ 9CCCB7FC3EDADEBA461D78615A6011A6, C120B58F25E8CCFD971EB78645C0682F367AD56DC15F2D8C1980CE75B04719DF ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
08:36:54.0957 0x2168  monitor - ok
08:36:54.0963 0x2168  [ 27A07B2FB2E3057DA8DAEA4F25D843C7, 09D2B39E6B9AAEC879E5871DD6BCFF2AEF0B894F3B44649665A685F8B3CA6F27 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
08:36:54.0973 0x2168  mouclass - ok
08:36:54.0976 0x2168  [ 7BD6E7F7C9001AB21B8362CFFEE80B25, C470C3363EEF3A60409A5934988BFB9B72AE7C2BB63CC2C2D006D7EB1C797F6A ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
08:36:54.0986 0x2168  mouhid - ok
08:36:54.0990 0x2168  [ F5BDAEE4B7D369D4C74668DCFBA3FF10, 100F39288E56AFE0D39D1CC235BDC9F3727C873CD3114E092DA7A08810BD3EB2 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
08:36:55.0000 0x2168  mountmgr - ok
08:36:55.0005 0x2168  [ D57B7C101A8216E7769B14645AFEB276, 38BF427F81589173D3CD823A7BD3CA84B0FADD6747467E7AEADB72D1F4E1404B ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:36:55.0013 0x2168  MozillaMaintenance - ok
08:36:55.0018 0x2168  [ 30844BD376F9D01E62C820BEF446F1F8, 910D672EDB544A20AEB4450B4D89830F46EDD28CE0021156176315C5D068A1B4 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
08:36:55.0029 0x2168  mpsdrv - ok
08:36:55.0047 0x2168  [ A231E1861F7AA9CCC24B97176BBA838D, CDAB9A25CC55B71E8A83E50504B12E948D7A88F035918E4F94E3624E4AA0A28D ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
08:36:55.0078 0x2168  MpsSvc - ok
08:36:55.0084 0x2168  [ 25D32BE04FE0A23FDF57FD5382757672, 64E39E3E21D9173FB1116B989D80C244C49DA827698A05AF5CC5CD1C6AE155DE ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
08:36:55.0096 0x2168  MRxDAV - ok
08:36:55.0106 0x2168  [ D559FF28B1AD9B1E15A4186E785E61F6, 4B22A740E86CA10B1B43E36CBE9A50B53D1E5504C25694C8FF3A514DF699E99C ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:36:55.0122 0x2168  mrxsmb - ok
08:36:55.0129 0x2168  [ D4D12BC29DE0F09280868FDCA65B3474, A6FE89ABD52087FEE52FDF31DDF4CB627ED400E94FDA86BEBF1D4763F1E42518 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
08:36:55.0158 0x2168  mrxsmb10 - ok
08:36:55.0169 0x2168  [ 0698B15E21EA1B8742F2E7BB3142B754, 0DB79841E863F08452F895DA47CEEF6CA4D527A616EB616FDFF5F7431487E5F7 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
08:36:55.0195 0x2168  mrxsmb20 - ok
08:36:55.0207 0x2168  [ 74C9D21523DAE0C18F413C196DF0058A, 3DB4B8CA368D9DD82FAE2C2BC828A21142C8D29780A7C8667188C447519FF702 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
08:36:55.0231 0x2168  MsBridge - ok
08:36:55.0240 0x2168  [ 308F08347923DEEDE7BC03EC7D485841, 72DB45CA11FE635DF9F8273C38CBEFB8DF5362ADA0CBF6D2B1E570365DC700C0 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
08:36:55.0266 0x2168  MSDTC - ok
08:36:55.0275 0x2168  [ F01B849D9D4A8CEAF32D4FDBD0B83C92, D2473AC4C6E6C03DEF13EA73EC78FB878BDC95C047651BF79A16C9DEA82AD046 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
08:36:55.0295 0x2168  Msfs - ok
08:36:55.0300 0x2168  [ 22ECD8F5D1DFADF2011BBB1700CB871D, 8F9EFF51137394EFA5471B8A29C541710063B65806B075B4925A84D5B6BC3BBB ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
08:36:55.0317 0x2168  msgpiowin32 - ok
08:36:55.0321 0x2168  [ FD870F6968A145E4D2BA8A8842686B03, 34B8F601F3B5E42B4D0A41E2AF7DB4EB4E5B627DA8DA9A2A2D46B153AF23AEB1 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
08:36:55.0338 0x2168  mshidkmdf - ok
08:36:55.0343 0x2168  [ 30364757963A028CE5DF0FBAAC270173, C72588A6A52FF8E418A15D2C407A4DB7EA768585423720145F8253D5CA519DC2 ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
08:36:55.0362 0x2168  mshidumdf - ok
08:36:55.0366 0x2168  [ 6BB0FEDDAE7135FA37FFAFF4D9E0E876, B41A3C0FFDFC493D6325ED493445AFCED04EC9DFF2B38125616FC5419AD1ACC4 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
08:36:55.0381 0x2168  msisadrv - ok
08:36:55.0393 0x2168  [ 07E3E54734B14F43A4A95A849C0A0DE2, 314AA02EA84D267B32DBAEBEA6C1AC1A266DED1E8D35A17B41D1D2AC75E8049E ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
08:36:55.0419 0x2168  MSiSCSI - ok
08:36:55.0424 0x2168  msiserver - ok
08:36:55.0430 0x2168  [ 4586CDA25B7866DD9505CEECF9DB3C74, B94CE1A7C1B6FFEF7AA33AEC30C27E01E44E6E56A4274705684BFBB738F95BCF ] MSKSSRV         C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys
08:36:55.0442 0x2168  MSKSSRV - ok
08:36:55.0446 0x2168  [ 642CDE46351D5D2D90311E77072AB46D, B2D3033E607BA2F6E6B9CFB1CBF154CD0CE910EA473C56343EC81B9B94044CCA ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
08:36:55.0461 0x2168  MsLldp - ok
08:36:55.0465 0x2168  [ F2302A5CE63CA7673200FAFCEEEDB6AF, B8C44FC2DC0332183DE325CDBF511101F3307225295EDD428CE575A8DE15C223 ] MSPCLOCK        C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys
08:36:55.0492 0x2168  MSPCLOCK - ok
08:36:55.0497 0x2168  [ 6114512EA26E835BA522C63635429DB5, 0F91CE41B4555316A79AEF3047C152D538CC9C7C329987C9FD0E3D961AFC87C8 ] MSPQM           C:\WINDOWS\system32\DRIVERS\MSPQM.sys
08:36:55.0525 0x2168  MSPQM - ok
08:36:55.0541 0x2168  [ AA538E16E644D00E3BA5349BBA9598EC, 64A68B06883FE7ED34E04AB119BA819753F1222923EDD4E802C35D402B89D075 ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
08:36:55.0562 0x2168  MsRPC - ok
08:36:55.0570 0x2168  [ 7ACFE7435317E791FF9EED2F49B402F2, EAF2CE12403A9D975112A22EDBC313EE63B926C070B35E62D515403DD34BD88D ] MsSecFlt        C:\WINDOWS\system32\drivers\mssecflt.sys
08:36:55.0584 0x2168  MsSecFlt - ok
08:36:55.0588 0x2168  [ 0543BEFD41EC4D25C7F7CF36409CEC7D, 631622CFEC49952C0470531B23FFFFF483DC0EFFEF7A97B1179A600392C05DDD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
08:36:55.0598 0x2168  mssmbios - ok
08:36:55.0601 0x2168  [ C1569E4DB8EFE3617847BF041A3C842F, 99ADE5E7F50E04CAEC737F7F90741CCA8EE628996BA5EB6C6BC62184884429B6 ] MSTEE           C:\WINDOWS\system32\DRIVERS\MSTEE.sys
08:36:55.0619 0x2168  MSTEE - ok
08:36:55.0622 0x2168  [ 130B16970154BA9876B09E5C4BAC63BE, BE3AF8FC5A26AB9C9DBA9C015C2E1FD3C4CD9CB423A2BBDABA91428BF8620553 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
08:36:55.0635 0x2168  MTConfig - ok
08:36:55.0640 0x2168  [ 15D987C8F6CCD4AC94E070C5986762CB, 452FB0C48B86C7F8F53794CC2DDBF2B900B03A0383B2DE8F6A830F8CB0AFBAD8 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
08:36:55.0652 0x2168  Mup - ok
08:36:55.0656 0x2168  [ 3D2C5B4995CA0751D32DEA0DE9FDFE44, A26958785FD9E05E2CA97078C9BB277CD44222BF5F7D9E8DC2F3F6AAAFFC6483 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
08:36:55.0667 0x2168  mvumis - ok
08:36:55.0683 0x2168  [ A5FA29F748BBF38FC3FAE4B54FA20A93, 8912F08967CFDD2A74593C9D23F43D6487D1920969C380B39BA8EA4672B24C3B ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
08:36:55.0711 0x2168  NativeWifiP - ok
08:36:55.0718 0x2168  [ C3D9870E680D9D843B18F4626C3858FE, 43596CAC9FB488F810FBA954C52BC4D13F7D32028C40ACFE33DFD7EE36A65C17 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
08:36:55.0738 0x2168  NcaSvc - ok
08:36:55.0752 0x2168  [ 04CE2C0F0759EACD886BA4B658B60D5D, E34D0976FC5936C8629800D826DB127072D1DFC3D350EFACA3AA1B8119551762 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
08:36:55.0787 0x2168  NcbService - ok
08:36:55.0794 0x2168  [ E6094065008FE423377294050E7CEA2D, 86E200227256407530E2C28243DEFBC3CB6E9497644404D9AD79DA242286DF7B ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
08:36:55.0830 0x2168  NcdAutoSetup - ok
08:36:55.0838 0x2168  [ 629CB21AC49C8867E0F29DF1C16DB7B4, 20663E68C69D0A1A2FE99A0C2A9DEFABF49786A1DC8F7F4E1699458AF57D7E79 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
08:36:55.0856 0x2168  ndfltr - ok
08:36:55.0903 0x2168  [ 3B41B4CF8F3F7C4041AC516830561533, 1EA616164AF9EA6B5DEC569DD255CB81C9EC3D4288E214CD8EE72C334ADEA3B8 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
08:36:55.0950 0x2168  NDIS - ok
08:36:55.0955 0x2168  [ 6DD605338FAAF6BA17662AA874E0D162, 636607829F5D7C3B7A4683C0A2DD594360D72F2AA3F8710153BE32575AE34A15 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
08:36:55.0965 0x2168  NdisCap - ok
08:36:55.0970 0x2168  [ E34196F285F8B8879E1FF36C31F7179E, 77A4F24F995D4C0689C43F9956E08DCEC62517E4F8B1B9EAA1852B5293DB5B9A ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
08:36:55.0982 0x2168  NdisImPlatform - ok
08:36:55.0985 0x2168  [ 1FAD2398673F30CEC616B89C46B7DCBA, 70302049E6AE2BC6B3A7A9DE54D3F940AD6A9771CC2EBCCEC65994E67A25ECB5 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:36:55.0999 0x2168  NdisTapi - ok
08:36:56.0003 0x2168  [ AEB8ECBE66CC46854066CB1F5623E179, 2F650A85A9DAE38887610C0B876621035616CEDB65D4BBBD7F1405616D218AAF ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
08:36:56.0013 0x2168  Ndisuio - ok
08:36:56.0017 0x2168  [ 7340104C2BF2F126714F7CDE85E63610, 45B64EC6F3A4C43F7D74806789067658C6EF0D44D36B841F4D26E1EBC95AF66C ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
08:36:56.0027 0x2168  NdisVirtualBus - ok
08:36:56.0032 0x2168  [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
08:36:56.0051 0x2168  NdisWan - ok
08:36:56.0056 0x2168  [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:36:56.0074 0x2168  ndiswanlegacy - ok
08:36:56.0077 0x2168  [ 78A12E3DF035B5D054986949B19BE43C, AD9B34F89B9F27D473BD5FCE6694A40FCCB808B61ABEDD6F70F1AF6C7E73ABF8 ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
08:36:56.0092 0x2168  ndproxy - ok
08:36:56.0096 0x2168  [ 04C8859355C1DC9C0FA198D1894D71C2, E7C67E73009341B5D402470C686781B3C7BBE2531CE26665E08E711B990B1A77 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
08:36:56.0113 0x2168  Ndu - ok
08:36:56.0117 0x2168  [ 6C76780A01FC2B885BD6E957B5C36B02, DB7834F03A765F65C773E772D8051AFADB22CA4B5074180AA397857A0C47A068 ] NetAdapterCx    C:\WINDOWS\system32\drivers\NetAdapterCx.sys
08:36:56.0127 0x2168  NetAdapterCx - ok
08:36:56.0131 0x2168  [ 5D1513BD6430307C9DB86C6E351372ED, D2AB709CF7CFA5B857B084AFC821914A975B7DDDCE154229981F19448973BD6D ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
08:36:56.0140 0x2168  NetBIOS - ok
08:36:56.0148 0x2168  [ 6FEBB0A847FFD5F057B9AC8889F1B9A7, 558BCC64C59079E6569F61CCE1219A124B3313FC4E6CB5CBCC94124D202FF19D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
08:36:56.0164 0x2168  NetBT - ok
08:36:56.0168 0x2168  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] Netlogon        C:\WINDOWS\system32\lsass.exe
08:36:56.0177 0x2168  Netlogon - ok
08:36:56.0185 0x2168  [ D3BF2DA9216A4CF22A97820A50A67EFF, D00CBE0A7ECFB449D9B48967A01EE56141404EBE229893D5A1710781AD5F2551 ] Netman          C:\WINDOWS\System32\netman.dll
08:36:56.0202 0x2168  Netman - ok
08:36:56.0213 0x2168  [ F2645D51DD8AABC8BC72358409410437, 8CB97628923D6CEA6EFAD7E666BE92C154060BD108C28D46287A520A14B18ADA ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
08:36:56.0235 0x2168  netprofm - ok
08:36:56.0245 0x2168  [ D65F295A049473E6A39EA9A0EA76CA32, 274FC0BA044EB2D14093AB0E561F7FACEE06A3F433C81343C8B926FA2F9BD251 ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
08:36:56.0274 0x2168  NetSetupSvc - ok
08:36:56.0285 0x2168  [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:36:56.0297 0x2168  NetTcpPortSharing - ok
08:36:56.0305 0x2168  [ 3613FDA8969255DB4D5B1AD753A6749A, D9B37C73E0EBB7298A51F44E278EAD1A2EF0C814EF82BA3B0729905FB07F0129 ] netvsc          C:\WINDOWS\System32\drivers\netvsc.sys
08:36:56.0317 0x2168  netvsc - ok
08:36:56.0326 0x2168  [ E79E364AF827EB1F141BE000ABB8727D, 96218EB8B7C9E0F614AB9EAEAEC41BD4DB0E9EFE5C1D87EC749B9CB71653CEB1 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
08:36:56.0344 0x2168  NgcCtnrSvc - ok
08:36:56.0367 0x2168  [ 54C31C2B815E2E26BB8158022F837C9C, CED660D1A58F635C6452F82FCB2EF8ACEEB7785E31617B2ADFD9EE69A2BDF2B8 ] NgcSvc          C:\WINDOWS\system32\ngcsvc.dll
08:36:56.0421 0x2168  NgcSvc - ok
08:36:56.0431 0x2168  [ 9B9F520C72EE33EAEC857124BB800243, DFA9386B272F4D86F3E4BE861A2FC4617261E1AA40576DDA610FC24AB4961A63 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
08:36:56.0450 0x2168  NlaSvc - ok
08:36:56.0453 0x2168  [ 001CBD7A2CD45C4EB39C01C3C677EF73, F4AAF4D60DB1232921C7811A62287B55C7C098B7A1FF9A40D88AF58A5ABECBA2 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
08:36:56.0464 0x2168  Npfs - ok
08:36:56.0467 0x2168  [ 90F5DC9802AAA00CD0B6E2AD9E7FFADC, 71C0777829299DECA6ACD42F38802DBE3C29A42CFBD8A396F39DFA44D1F55B6C ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
08:36:56.0476 0x2168  npsvctrig - ok
08:36:56.0479 0x2168  [ 1993C85962692EF7024501E7FE92D466, F5BCAA8308495EBF8BB061C2015E07C202A779668D171364D7E312975BC18B10 ] nsi             C:\WINDOWS\system32\nsisvc.dll
08:36:56.0490 0x2168  nsi - ok
08:36:56.0493 0x2168  [ 0C6218321A09A7B51BA7FFAFBA4CCB21, 330B3FA793A78410B28DFC8250BBF24442E3BB80434A7938BB96F02337614E0D ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
08:36:56.0502 0x2168  nsiproxy - ok
08:36:56.0574 0x2168  [ 98BBD81DC481E9D58EEB31C81EBDEFF5, 28FAAFCB90721C557C37D18533681C274428BC97AB3C3AAFCC75212074E9F2CA ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
08:36:56.0680 0x2168  NTFS - ok
08:36:56.0688 0x2168  [ 6E6DD6F9DD2A034CF85E94047DBDB992, 63D0A0756F551B7668D1CBAB24B29FD462C706E8A81690BC248D6C92061FE215 ] Null            C:\WINDOWS\system32\drivers\Null.sys
08:36:56.0701 0x2168  Null - ok
08:36:56.0707 0x2168  [ D261DF41F0840F734856A2B4F5E072C7, 2E703556D0C919375D0B7770513456844B13362190643D5524663EC8546E0FF5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
08:36:56.0721 0x2168  nvraid - ok
08:36:56.0733 0x2168  [ 23B702B555EB0436B9DAA0BC63DA65CE, D454F80D9657CFEC852F022C12D7B2C1A2D7D247ECC591EDB07B9369DFD8C99E ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
08:36:56.0764 0x2168  nvstor - ok
08:36:56.0786 0x2168  [ 17997DC2441F7E29CDFC6458E0392764, 636CCE2DA1EF8195B33F8D6D5C8CC151D58EBF08DC9AD8ACCCE7ABD41A69639F ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
08:36:56.0839 0x2168  OneSyncSvc - ok
08:36:56.0859 0x2168  [ E12067591ED0172FE0156C2CA1CBC822, BA2C3366F01C376A9480D35A6E97980930ADD6B934BC4E747EA7EEE3CFB614BF ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:36:56.0889 0x2168  ose - ok
08:36:56.0917 0x2168  [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
08:36:56.0956 0x2168  p2pimsvc - ok
08:36:56.0976 0x2168  [ 2BBCED66D7AFC968BDBB0E4D8524DF0A, 762D916390F9DE69B3EA1D31244224F910645F8E5CEF4C505B76B215BFDFCD9A ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
08:36:57.0015 0x2168  p2psvc - ok
08:36:57.0025 0x2168  [ 6B81BF7853D161DB8AC62CD8B9C2DE6B, B2DC06D135FD2501217DDA7349556EB873309E02188D4C3901807BA24FAB30C7 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
08:36:57.0064 0x2168  Parport - ok
08:36:57.0076 0x2168  [ 0553ECB742278C8F4CFA28B43FF20EAD, ACD7F5BC36573BCEC2C3413DEA687034ECC101EDD3C1544B264BBA29EFCE3425 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
08:36:57.0102 0x2168  partmgr - ok
08:36:57.0127 0x2168  [ CDD8EDF4C35BE6D6137112F5CC7A70DA, 80EECA6BC2E668E5652A5CA9B119CCCE2A2E421F0EED1FD0EAC20C42E77C02ED ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
08:36:57.0161 0x2168  PcaSvc - ok
08:36:57.0174 0x2168  [ 29AF16726F4DD84376ECA85AB6AFF2C6, BEF9EA10637065365ED343C4EBA51191B9BEADD8F1F3362D3EFE75F40BE9A027 ] pci             C:\WINDOWS\system32\drivers\pci.sys
08:36:57.0197 0x2168  pci - ok
08:36:57.0201 0x2168  [ 214DCC87E3898F738075D1341252A552, E721FBBC3510DDB848A8CAEA3B6031EE988F42252DBC3BF7BDB6ABD9A0D9FABD ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
08:36:57.0209 0x2168  pciide - ok
08:36:57.0213 0x2168  [ AED76A3333B3A31536E430020E0226FC, EC255B79B0908E3C142D92E35B79D90A3F2594BA012CA2B1B04A6A8745153430 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
08:36:57.0223 0x2168  pcmcia - ok
08:36:57.0226 0x2168  [ E63FB38B6E75B39467492FBAD2CD512A, DB406C92BA2460C833A49B98EB5BD58348E868F643A0123B0C9B5315FFC6A124 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
08:36:57.0234 0x2168  pcw - ok
08:36:57.0239 0x2168  [ CA979960D3A580C78EDB4BBD6BD3ABCC, 2A136BC562235D26F6421027B158D406FB1D08FE7D70A50DD3E4D344B0E27205 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
08:36:57.0247 0x2168  pdc - ok
08:36:57.0262 0x2168  [ 1509A77F840AA9E72CF8247D0CF2FBDE, 2D47AD4D8F5C2D871E603FB6D72D25EFD0E63FA3A542DAADAB9D82ED074C0E0B ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
08:36:57.0293 0x2168  PEAUTH - ok
08:36:57.0346 0x2168  [ 2B55ACB1727A8E5E7514D2D75AC4EBEB, 5E7449F3EE0B15E400E405DE561ED2D3932259107A9D9320AE42CA1A5C5AB992 ] PeerDistSvc     C:\WINDOWS\system32\peerdistsvc.dll
08:36:57.0415 0x2168  PeerDistSvc - ok
08:36:57.0422 0x2168  [ 540116170E2135FCD5DDE77702166B67, CBEC51C2D47532F1781B3255040F303263420B204C2F8BB2B5D1EC342F57B285 ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
08:36:57.0430 0x2168  percsas2i - ok
08:36:57.0434 0x2168  [ 8356F87553BF49C703CF382033815898, 245EB941566D848F134629690BF271B1CBEAB6440771D3D8D7AED3756835354E ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
08:36:57.0444 0x2168  percsas3i - ok
08:36:57.0503 0x2168  [ CB5343FF52A702A9ACFAAE6BE972FE09, EAA5362D91D05D382DF4EBBAA3FD575456F23CAD531CC6F1270F8254892DBF02 ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
08:36:57.0527 0x2168  PerfHost - ok
08:36:57.0566 0x2168  [ D0D57322ABC7473E54472D8374169CC5, BD14A13D6908C8669E56EF9401FD8A3D7C618E8B6556B36E634864E733BCA4B2 ] PhoneSvc        C:\WINDOWS\System32\PhoneService.dll
08:36:57.0620 0x2168  PhoneSvc - ok
08:36:57.0629 0x2168  [ C7A94D99CDF054248EFBD9B93D096DA6, F59F0EB5B17DC078E47D044B1126A786D67DC149AC9614CDA6AA1226EEE3EF55 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
08:36:57.0652 0x2168  PimIndexMaintenanceSvc - ok
08:36:57.0692 0x2168  [ F931F21E4287FE3ECCF09B54A232BBA2, CEB7AB3236E5F30214027092B7B695ED35F7A1E007DF4046797D1E4DFEF49EC8 ] pla             C:\WINDOWS\system32\pla.dll
08:36:57.0743 0x2168  pla - ok
08:36:57.0750 0x2168  [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
08:36:57.0766 0x2168  PlugPlay - ok
08:36:57.0769 0x2168  [ 56D7A89423325121C4A9BD5C326414F3, 649048C23D1973C3504E26B35362AC99DFE9BF31FFE73F45B43306A212AEA34C ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
08:36:57.0779 0x2168  PNRPAutoReg - ok
08:36:57.0788 0x2168  [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
08:36:57.0806 0x2168  PNRPsvc - ok
08:36:57.0815 0x2168  [ F70CAC34B455D05EAA04B2F8FB58E1CB, 295BFFB3DA03C5CE5462C11D3240024B68AC06E8DEA9062A739BE2CCEE19EB5D ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
08:36:57.0839 0x2168  PolicyAgent - ok
08:36:57.0849 0x2168  [ 60C8376B48BA96F07AEA536527433D44, EB988C119C3E71169B91ED2A744C71933DD35447DC4A8249E80EC24E9E7077D4 ] Power           C:\WINDOWS\system32\umpo.dll
08:36:57.0877 0x2168  Power - ok
08:36:57.0884 0x2168  [ 5645B9D9788CCA2C88B9534996ED2D6D, 4988942DF163DB5B9B1A08CE6B628D2C47C2E2EAA30AEAE4EFE21C8CF4C8DC5D ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
08:36:57.0915 0x2168  PptpMiniport - ok
08:36:57.0980 0x2168  [ 77ABF70C71922873BC160933571B3F83, 7FCFBB4B42E7A92FCF11388CD5B600EA79A7C134F13A8A88CF8DCD3DB96C3F5A ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
08:36:58.0068 0x2168  PrintNotify - ok
08:36:58.0076 0x2168  [ 372913E12677A8CBBBABDD8311894F9D, A5233D95A0D22D2A9DB214E7CB79A99D389B67189FF6A87D0AD4610A333A637F ] Processor       C:\WINDOWS\System32\drivers\processr.sys
08:36:58.0088 0x2168  Processor - ok
08:36:58.0096 0x2168  [ 1F115AF75EFBAC28479B4F94A3F8D4A3, BE8D8C50D985F6AF9DDC0F13BDBE2D55D600E1F5E344982536538B14EC484AA6 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
08:36:58.0116 0x2168  ProfSvc - ok
08:36:58.0120 0x2168  [ FC98407B85A31161851FDE245517574F, 2CCD706CF243934FCDA32B24CE0C385EA2E67F206E0306FA584496F583A20CD1 ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
08:36:58.0131 0x2168  Psched - ok
08:36:58.0173 0x2168  [ C0875E9ABA98586E65F623797B6CE732, 892D35FBB824A3BFEE9B173B122879E798714D177432A1E1816978A10D13291C ] Qcamain10x64    C:\WINDOWS\system32\DRIVERS\Qcamain10x64.sys
08:36:58.0234 0x2168  Qcamain10x64 - ok
08:36:58.0244 0x2168  [ 7A68710BAC9B6809314B86C0CB1CBC4A, C02D97993D1F6FE6EFBA5B1366B3A4FE8CE1136A95F3A2DA07BA59554C163501 ] QWAVE           C:\WINDOWS\system32\qwave.dll
08:36:58.0260 0x2168  QWAVE - ok
08:36:58.0263 0x2168  [ 819602BBBFDB0BD46DEA3715BF0DD452, D4007FF1E5296316B53436CA3598D6B1CF4F60AB77D5B02F3E595081EDD5D879 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
08:36:58.0273 0x2168  QWAVEdrv - ok
08:36:58.0275 0x2168  [ CDF47037A0939F56D11F699629C276AD, A63F2A3FE80FB8084E3870E907505694B79EE1D9E56E292C01D481FEFD2534B0 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
08:36:58.0284 0x2168  RasAcd - ok
08:36:58.0289 0x2168  [ 28C2EA278070EE12701D0EDF8CB0EC36, F10288C1C6835840026DB30285345EF892DE989F43C948E7F4760B8895FF675F ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
08:36:58.0300 0x2168  RasAgileVpn - ok
08:36:58.0304 0x2168  [ 7B82197BF35CC3BE59AEF8B706AB8A16, AB0216164A548A48CD21F5F035E57E867584A96890B9887EC08F8DABDD89F990 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
08:36:58.0317 0x2168  RasAuto - ok
08:36:58.0321 0x2168  [ 17E565710172ED71B8531D8822E1C5D1, 0CA39ABD9E544DDAD9D9D7D1FC50444274C31E18F9BF73069051D9F62833698F ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
08:36:58.0337 0x2168  Rasl2tp - ok
08:36:58.0351 0x2168  [ 989DBF4805124A31610947E502501696, BCB73879AEC0588D0BFAB915D1F6EB637333A24D2030ED6572B3A3C03865AE93 ] RasMan          C:\WINDOWS\System32\rasmans.dll
08:36:58.0377 0x2168  RasMan - ok
08:36:58.0381 0x2168  [ 9387DF155233D45D4E010F4F2FB52A57, CABC25DA4E512809AED0085767BDD94BF3C1DA792BFF8A009B5465D9110E7060 ] RasPppoe        C:\WINDOWS\System32\drivers\raspppoe.sys
08:36:58.0392 0x2168  RasPppoe - ok
08:36:58.0396 0x2168  [ F0F4EEDEEBEE7A4244FAFB96A16B5712, F64717E601BD5EB674003009507B8CDD6F69F00E8670D6895EC64786166A0E8D ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
08:36:58.0411 0x2168  RasSstp - ok
08:36:58.0422 0x2168  [ 6132B142C5A1FA4C05F06FE43DE5E55E, CCF64C9A778501635B8B5E20BB617D39D0298329FD6911DC125FC8B31FEFEDE1 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:36:58.0437 0x2168  rdbss - ok
08:36:58.0442 0x2168  [ 79A415E6FA915EFC00297DAB16EC2635, 47BB49F6D756214193D38A4AB182B541AAC180381C3111FF7F9B0AD4C44D8733 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
08:36:58.0452 0x2168  rdpbus - ok
08:36:58.0456 0x2168  [ 7135785C21CA79D270D11037C43D3F19, 654A3C65CF891ED8C82A740D10CF607FC7D709185E664DE03288CEB5B25F03A6 ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
08:36:58.0470 0x2168  RDPDR - ok
08:36:58.0475 0x2168  [ 97A61A3CB2B5CB4FC32B3224EF333448, E4F2E8BCEE3639BE57BBC8A8E67FDE42C3A5158F1204684B0ECD216F4AA044A3 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
08:36:58.0483 0x2168  RdpVideoMiniport - ok
08:36:58.0490 0x2168  [ 69BB204AE07EE84ECFAB1BF13C4BD04B, 1CA832CBF4AE4821EEA2A19F9519C2D1D00406B8CCE2A86FE3B33A5F293DB218 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
08:36:58.0502 0x2168  rdyboost - ok
08:36:58.0523 0x2168  [ 940D6F5A2B0A61EE4170DF84F6C95C20, F8EE846DC8015EDFE7CB5BEEDC977EAA9C586BAC2216DE69D8ECCBDBC7408649 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
08:36:58.0562 0x2168  ReFSv1 - ok
08:36:58.0575 0x2168  [ 13F6B64235C60167052364BF7D99E4CA, BC12EE00775F7456FB922FBD684BF3F0CFABA5BEBB6E162C23B41DED5C20A978 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
08:36:58.0597 0x2168  RemoteAccess - ok
08:36:58.0602 0x2168  [ 3183B161B1F05333F6C325577FEF3596, D6A89B2A021377B6F371E5B9EFC36FF018822B28F0ED41F8CD2F00C5C8605707 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
08:36:58.0631 0x2168  RemoteRegistry - ok
08:36:58.0658 0x2168  [ CE44FB62412C9B78008BE740B0E16D11, 4FA01F54EE3924EEE0953FB27336FFB01069F2248859B4984030E5D364807335 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
08:36:58.0696 0x2168  RetailDemo - ok
08:36:58.0703 0x2168  [ E82F3B1918C6A5FE6EB761CDF1E772AF, 0C993FCB7BFD6E01B70A1821E0DEAFA2CB241AF8C2E6D4CC120F59C1B5F6FF5F ] RFCOMM          C:\WINDOWS\System32\drivers\rfcomm.sys
08:36:58.0721 0x2168  RFCOMM - ok
08:36:58.0727 0x2168  [ 5DAA644F17780FC4E3F4820A46D38FEC, 32C27FFA0A4608B164F4E709CD0D998AB73CA9713BE3E47F9DBC7B3D1B6C7453 ] RmSvc           C:\WINDOWS\System32\RMapi.dll
08:36:58.0744 0x2168  RmSvc - ok
08:36:58.0749 0x2168  [ 672724C8B21B7DC56646045DE4D5B860, 79986E80A92C949C543959F1E35647A9788DAB2892AC20B6DEA5C0BBC0CEDE9E ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
08:36:58.0764 0x2168  RpcEptMapper - ok
08:36:58.0768 0x2168  [ 109C1D609951E886D3643B15C1EDD1C2, 347D8E7C50EC7F96217C7421D9BC8A42C9DF50B94169CB58DCF857A63C33C2EA ] RpcLocator      C:\WINDOWS\system32\locator.exe
08:36:58.0781 0x2168  RpcLocator - ok
08:36:58.0803 0x2168  [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
08:36:58.0839 0x2168  RpcSs - ok
08:36:58.0845 0x2168  [ 5FF28F097C9699097B473F8FC7C1AA7D, 695560F1DBD85073F3D6CB1FF16F16504CA044EA62E940E463A16BBA8B86E2FA ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
08:36:58.0855 0x2168  rspndr - ok
08:36:58.0873 0x2168  [ 62F6CEF17A33CA0F97033E0F0ABB4020, B47577F910EB444F5C992B8DFC4A6586606C50F55482DBA82AB4B20A52DA48D6 ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
08:36:58.0894 0x2168  rt640x64 - ok
08:36:58.0948 0x2168  [ FE4F1B12F56A0C2BDD908FA74D041739, 8350D5EFF5D4187DD1AA11EBE960A6E34E621FF1E68E85FF944FEE6B7B7B44B7 ] rtsuvc          C:\WINDOWS\system32\DRIVERS\rtsuvc.sys
08:36:59.0002 0x2168  rtsuvc - ok
08:36:59.0007 0x2168  [ B5DAEE69BACA64D2BB004568E22D8756, C0072CF6B438ED756435A182D55AC55F3AD356ACBD483DE06A94893D3CA8CCC5 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
08:36:59.0016 0x2168  s3cap - ok
08:36:59.0019 0x2168  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] SamSs           C:\WINDOWS\system32\lsass.exe
08:36:59.0027 0x2168  SamSs - ok
08:36:59.0036 0x2168  [ 87044F5F607FF52DA93F4A1AF9A18937, 34939518E75E11B18150CAE24C488C10D6D1D5056986B2692050A543EEC16C9D ] SAService       C:\WINDOWS\system32\SAsrv.exe
08:36:59.0051 0x2168  SAService - detected UnsignedFile.Multi.Generic ( 1 )
08:36:59.0400 0x2168  Detect skipped due to KSN trusted
08:36:59.0400 0x2168  SAService - ok
08:36:59.0427 0x2168  [ 5E73FB63E2DBC75FE0C17DEB0010CE0E, 9DAC47486262397D03BC01F7438CAB62CF33BD7B5283F5B9548C770A3D6D0ADC ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
08:36:59.0479 0x2168  sbp2port - ok
08:36:59.0501 0x2168  [ 3CD0130FFDEAEACF0905B482F3934EA3, 1EC355B63135FD2563093EBB206741C0C4CCE0551A662F6DC86C875146A88B06 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
08:36:59.0552 0x2168  SCardSvr - ok
08:36:59.0570 0x2168  [ 5E8ECCE130A72107B6DFDBE26185A7FB, 811E2CE485BC14161FF629069BCCF53B2B8C6F8B1E1A6B3A3C86DBE4F85A5577 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
08:36:59.0618 0x2168  ScDeviceEnum - ok
08:36:59.0629 0x2168  [ 3D9A82B03C92D1FEC42CB171D6F57778, DC027F02F5EB5F1D10DB6F405FB0C15D4D5C922445F5F3C916624113278AF072 ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
08:36:59.0649 0x2168  scfilter - ok
08:36:59.0683 0x2168  [ D4DB6B318A0A0C74A90260725A228C0B, 57BA2EF9D880488C785C806ABF9EE753A48E589129442D72F815CD6EFFA07B22 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
08:36:59.0724 0x2168  Schedule - ok
08:36:59.0730 0x2168  [ 9055ADDFBA4C8B914C914CE693B55C0A, DB213AC36E14D856B81D2AFE46815402537A2ABEEA15032A9FF436F953129441 ] scmbus          C:\WINDOWS\system32\drivers\scmbus.sys
08:36:59.0739 0x2168  scmbus - ok
08:36:59.0743 0x2168  [ B6F2363584E62960846F7C3F00124A4F, 252189FF9D623CF69BF415FF7C7FE74B0BBF756B632420578BFAFF6595616CF7 ] scmdisk0101     C:\WINDOWS\System32\drivers\scmdisk0101.sys
08:36:59.0755 0x2168  scmdisk0101 - ok
08:36:59.0761 0x2168  [ E189727B3C9909A85B33A16B290E192E, 2C273A9F44EDC5E5435904E9681973854B2F3EBB6100021BB139FF0CCCE9BF20 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
08:36:59.0774 0x2168  SCPolicySvc - ok
08:36:59.0781 0x2168  [ 7C3D10BEC8B0DBA00A78C78EB10B3AE2, A671C9CB97977613576D70607E106C7A29B9EA9E875C7C5AF293EE5903D7AD0A ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
08:36:59.0794 0x2168  sdbus - ok
08:36:59.0799 0x2168  [ F3714DBAA42C15F78FFCDFE4273214EB, 2D018970B92C5F0744FAE10A2FC298F3DCEA5C2EDEB760F4F0651337B9878ABF ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
08:36:59.0815 0x2168  SDRSVC - ok
08:36:59.0819 0x2168  [ 120DFCB71D6C502613A9E2D50E16850C, 2C294010AD1C9C380CD5221A37720544178B7358C8C8553AF44055E4CEE5DAF5 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
08:36:59.0828 0x2168  sdstor - ok
08:36:59.0832 0x2168  [ EFD644DD091E1D94555FC3BBC95EA66D, FBDDA6680BEC378CCF12A32D9186020E884DA15A1E789D1531B1E687FC7B54B1 ] seclogon        C:\WINDOWS\system32\seclogon.dll
08:36:59.0842 0x2168  seclogon - ok
08:36:59.0845 0x2168  [ F48535714BED7DD784853889B4594B26, 9B4AB7E7293E79A8F6CC46C84F23E62AD3BD6E958FCE078CDBB125A69FAC7E50 ] SENS            C:\WINDOWS\System32\sens.dll
08:36:59.0857 0x2168  SENS - ok
08:36:59.0858 0x2168  Sense - ok
08:36:59.0885 0x2168  [ CF2AEB951CFC56D4F6CF2D66218B673C, CEA0B0E0251EA198893830080EE4CB8A9F18ADBF1F6FEFFC9C7E8AB4588D0639 ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
08:36:59.0926 0x2168  SensorDataService - ok
08:36:59.0938 0x2168  [ C09A42163878A082C3F0D0A3DFE95714, 8033DC38D0EDED3758DA6BF8C1955BE5FFE48863C079C589660B37D0E461300F ] SensorService   C:\WINDOWS\system32\SensorService.dll
08:36:59.0959 0x2168  SensorService - ok
08:36:59.0965 0x2168  [ E6F00415DADCEEC860E7AB42BFD19A65, 274CAF22F93D43B6DB6953730E3DF8DA94776B24EEE74B80AB4CD780BC1366A9 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
08:36:59.0980 0x2168  SensrSvc - ok
08:36:59.0984 0x2168  [ 401D706DDC0A7AF18C3DD228ADF74551, 27C0B38D7C2E3F6FF06201124E63483931F6071954B2B99EC0143C464238C0B7 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
08:36:59.0992 0x2168  SerCx - ok
08:36:59.0996 0x2168  [ 7084D11083F0CDCA8B5C76F9846ABF5D, F639920882B0E784D8CFAF0D4C0F0C411937B6831E5DD99B0ABFBFE06BA4742F ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
08:37:00.0007 0x2168  SerCx2 - ok
08:37:00.0009 0x2168  [ 3FF478A8ED32A83C36581425F6282B6C, 787646A17098EA7CF36064D0A950C1D470D4A280C8C5AC40023D566E53860EAE ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
08:37:00.0020 0x2168  Serenum - ok
08:37:00.0023 0x2168  [ 92509187AA171A80521528B36F753E1D, FE0DA272B8A155ECC161E99586C4AE7EE17B1C84BC330DA1566C83B8E03FA825 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
08:37:00.0035 0x2168  Serial - ok
08:37:00.0037 0x2168  [ 433D38FF6D08B993847EA2A10EB8CB52, 29BA75DB6D1AC761BBDFB5AC8874FC7D763E1CD10D290E369063B34CE951270F ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
08:37:00.0047 0x2168  sermouse - ok
08:37:00.0059 0x2168  [ 82CF273F0E8F243789683DEB40757569, 5433D93A41C4BF04494E6158931C6AC3154888F7CD3A417253EC02FF7EA6D00E ]
         
Fortsetzung folgt


Alt 03.04.2017, 08:55   #6
Torsten_
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



Code:
ATTFilter
SessionEnv      C:\WINDOWS\system32\sessenv.dll
08:37:00.0078 0x2168  SessionEnv - ok
08:37:00.0081 0x2168  [ 697D3EE0740AEAB62B66ABCA1C83D13B, FCF54A0071ED04AD3FC8551C67FE5FD49089DC0510F753052CAC5972A65C9E3D ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
08:37:00.0091 0x2168  sfloppy - ok
08:37:00.0104 0x2168  [ E38BE81F0F6D9C74E420A82BC6A02AFE, 25D7594FD1BE0B303F9777ACBA702ACD0C27B00D21F82659989C40636851A330 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
08:37:00.0126 0x2168  SharedAccess - ok
08:37:00.0141 0x2168  [ 482E6BE8A07832E824080D352075ACA1, 4123A76C8E805AF4FE229C53E9C174095C0937913BA81A63FE9B45C44AA5B15F ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
08:37:00.0170 0x2168  ShellHWDetection - ok
08:37:00.0176 0x2168  [ CF3BDF9EAD8D3EF671E9339B44B185BA, C17EC6D5B00F49D9C8B5B6C262A85F34ED71C58450659F006B3632AA84F68E23 ] shpamsvc        C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
08:37:00.0192 0x2168  shpamsvc - ok
08:37:00.0195 0x2168  [ A34CE1830E45DA98932295FDE4B7908A, FC553ECF4D64B4B10B7FDE5352707785517A18D487A80665BAFC7261E3F35CDC ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
08:37:00.0203 0x2168  SiSRaid2 - ok
08:37:00.0206 0x2168  [ A7B5C670770E908DA5FEF5BF1136E933, 8D3BB6FF65E631C34BE8EA766481B2FDB2E1E916A4FD67F86705A8975A136E6C ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
08:37:00.0216 0x2168  SiSRaid4 - ok
08:37:00.0223 0x2168  [ B72B80E6FF423C5011E745CB76DA9A08, 18A6B9D46E91AD4D463EB5CB832702392D2E162577F90C328B515FCE69FABD15 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
08:37:00.0239 0x2168  SkypeUpdate - ok
08:37:00.0244 0x2168  [ E4E2EE9B6395C878EB9ADA553925001B, 66650F40C174A489157C4A4F4279FBECAFB9662BEE368F744C7E0517B842C1B6 ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
08:37:00.0251 0x2168  SmbDrvI - ok
08:37:00.0254 0x2168  [ D233EAE2A9D48485321816486ED635EF, 03AB49BE9CF15EB7EDC50C400E673B4DF0E5BFDA9A7811E157F2AF2F3CF38D49 ] smphost         C:\WINDOWS\System32\smphost.dll
08:37:00.0264 0x2168  smphost - ok
08:37:00.0277 0x2168  [ 0B217141AC1283655402CDB356577735, 6EFA4CA46CFC8B7156CE7E5CA89B7F7073E16D66C2FC13F4DB95FEB78CCF698F ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
08:37:00.0315 0x2168  SmsRouter - ok
08:37:00.0337 0x2168  [ 6F4CE07D420FB657B5936F71101ABD41, CEC52984C56E578E0FFE12BE1B8148335F788B7D1751F2D0E79B944A41113C20 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
08:37:00.0361 0x2168  SNMPTRAP - ok
08:37:00.0383 0x2168  [ 8BDB9E47D84144110F05AB757E630374, 8A49004895B8AD17C877AA8E7B6A0F14936BDDCBB88F0E5FB880DD0D816AEAB4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
08:37:00.0408 0x2168  spaceport - ok
08:37:00.0414 0x2168  [ E03264C4C25B568F92ED1656AD541E64, D42942BFFBC7213D204FAF84F4FE015FC23A6ACB29B5E752834EDBC17A3AC20D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
08:37:00.0422 0x2168  SpbCx - ok
08:37:00.0437 0x2168  [ 1DFE222F8D6A422B7ADC909E0C8840DA, 96761691CF4447710D65573044A1005F2F0F89443DF581A30B97D7944940BB70 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
08:37:00.0467 0x2168  Spooler - ok
08:37:00.0584 0x2168  [ 23529A00195CE71252FEBF647E56E27D, 8ADF7A1C96DAE005E9A974D90BE8954F88D49B6848252B88513C49E0A3BD9774 ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
08:37:00.0743 0x2168  sppsvc - ok
08:37:00.0758 0x2168  [ FD3C05C412BE1C9FA477AD9CF9B2AADB, 19BEF5B3A0DAF8227200C2294547A497021F0B2558211345BFFFD13678522592 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
08:37:00.0785 0x2168  srv - ok
08:37:00.0816 0x2168  [ 55CA5329D1ADEB8F8034045930147AE4, D4F31BC82700D166564C7F9CDCEA3ABAB4A37B55137C34572768DF46FDA9320A ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
08:37:00.0870 0x2168  srv2 - ok
08:37:00.0881 0x2168  [ F13EE0DB1FB1D6946AC3228D7EFCFC8F, 109A809F0338FAB0F4045FA5EE33C6F0A994A9F586B2FBD8920A6AABA0E0EF66 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
08:37:00.0902 0x2168  srvnet - ok
08:37:00.0911 0x2168  [ 44758105AB3EA34E815D4B6CA1153311, 7F223A20D2538C123BAC6F75BE0E126876A116F09502FD980C05B8916E26E1B7 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
08:37:00.0932 0x2168  SSDPSRV - ok
08:37:00.0940 0x2168  [ B97C7EC07218A8002323718202BF5E77, 39D3254383E3F49FD3E2DFF8212F4B5744D8D5E0A6BB320516C5EE525AD211EB ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
08:37:00.0961 0x2168  SstpSvc - ok
08:37:01.0112 0x2168  [ 4E330AD1EED4A5D582EE415FD55953A2, 2C02E1F45F74D250110BA5117AA942495CB2EBAC7F2CCECC284B4FB8F47B13E1 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
08:37:01.0220 0x2168  StateRepository - ok
08:37:01.0227 0x2168  [ 29D26E1347AE1BBD4201014E19880B2C, 9E2153AD96CE4F189EEE43BB02515532C619FB1CA02D8F6DEF517AC3347AAA14 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
08:37:01.0235 0x2168  stexstor - ok
08:37:01.0238 0x2168  [ B11724BFE7DA1BA55903B4D849415F1A, ED09B6AD68C87FED34FC66CB6C7A74DFC3AF524E3BE89EDD18A5B6685F656ACA ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
08:37:01.0248 0x2168  StillCam - ok
08:37:01.0261 0x2168  [ 91CB95B35481155BFE29C217CD237F27, CA66957DF1441D991453BEF02D768D44E5D9A484BC23C8874E8A7AC20904CB06 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
08:37:01.0296 0x2168  stisvc - ok
08:37:01.0307 0x2168  [ 6BC6023E866489D22CE30E18846B80D9, FD0D13332F3E267524A9FA7FEC128298D4905722807C172AE8E3DFE445C28DB1 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
08:37:01.0330 0x2168  storahci - ok
08:37:01.0336 0x2168  [ C5E0ACE4771F5575D9D5B457ABF3AD03, 365880BC5AC313F25C313EFB7758301F98D9B2BF4C5FC9499F98C2B7F8407D96 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
08:37:01.0356 0x2168  storflt - ok
08:37:01.0364 0x2168  [ B66D8C75C9BC59D637177AB3B1C569A6, 76252A631F03EEBF5FDC7693F6B0A5E73838CDBE3157114CC96B8BBE88B476BF ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
08:37:01.0384 0x2168  stornvme - ok
08:37:01.0392 0x2168  [ BEBF85EB4D90E6996047DA027D0ED26E, DF109CF0F07CDD1B9B702C2A076D4DD5366DAAD971CC9359AF0358E79981706F ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
08:37:01.0417 0x2168  storqosflt - ok
08:37:01.0437 0x2168  [ B91FBE7CB4633FEB32AFBD0B48576396, 9EFDD92E8096CE5555F8DC3C870864E5515469603C2373B99B3607234633CA66 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
08:37:01.0473 0x2168  StorSvc - ok
08:37:01.0478 0x2168  [ 8E73037A6F8938475692FFCC26EBF385, F78C5CD1A3CD17AA831EEC82426B14006B4DDBC9085A4814E04E8C37FD6B05F7 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
08:37:01.0488 0x2168  storufs - ok
08:37:01.0492 0x2168  [ 9D9DED47DA10E845EFF2DD57C94C809B, 520D0CE7A867051B80C8141E351FE5A5BCE3C99776093F234DB77D3407B1F104 ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
08:37:01.0503 0x2168  storvsc - ok
08:37:01.0509 0x2168  [ 26B2BB5733F69B0A8306BAC37551F90A, 60F1A0C23727144B53F1C64348907AAD611F991C0A8C9F93AC8194210634420B ] SUService       C:\Program Files (x86)\Lenovo\System Update\SUService.exe
08:37:01.0517 0x2168  SUService - ok
08:37:01.0520 0x2168  [ 224C92E442B1B8C20C274332F1ACF00D, CDE5DCFB7A21089464A6E2ABB29BBE08B184C3433C218756AA5902A8F67C0B2C ] svsvc           C:\WINDOWS\system32\svsvc.dll
08:37:01.0537 0x2168  svsvc - ok
08:37:01.0542 0x2168  [ 505E0C40B5D0ADDCBB414640F59BD2E0, DF4B5E65FE6FF2224F298A2A2FAC9B648C082DFF8463148633647580A9FAD34D ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
08:37:01.0553 0x2168  swenum - ok
08:37:01.0566 0x2168  [ 2EE27411B5904C63D723BEA391819F58, C88C11D460E90398E16011B8A2CED5EE5626084F24790EA6115532F8F70060C6 ] swprv           C:\WINDOWS\System32\swprv.dll
08:37:01.0600 0x2168  swprv - ok
08:37:01.0605 0x2168  [ 32F46FB0F290D16DAA452B289C985795, 73F88AAAA6026DB4C27F1D054145216DCC3F1960946FB2A7A90518DD1D5737CB ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
08:37:01.0620 0x2168  Synth3dVsc - ok
08:37:01.0644 0x2168  [ 3577FA02DFEE2F4C267BB1E897FCD76C, 0D4C9F8C582667A68A39A8B6E8EC2125A626612B42F5FEEA0EA6F9DAA585DAA3 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
08:37:01.0671 0x2168  SynTP - ok
08:37:01.0680 0x2168  [ FEB2CB43A1B7149A5001F30EDD68BADC, E63480BFAB7A6AAFB340E08441A1072114E586D6AC0EAF2171E56F55DAB3CDFC ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
08:37:01.0690 0x2168  SynTPEnhService - ok
08:37:01.0709 0x2168  [ FED48B19D6F55D7A3AB498D85729D1BA, FA5E0E02BC2E2DE108C55991E3B063CC947072228B53539F42F922661510DE7C ] SysMain         C:\WINDOWS\system32\sysmain.dll
08:37:01.0747 0x2168  SysMain - ok
08:37:01.0756 0x2168  [ D9FEA79BF6AF136F8E656AE045C2FEC8, E6F08A93348E035185F0F1C6B6277E636F4F25D1136E3ACCA63488DAEEC7114B ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
08:37:01.0791 0x2168  SystemEventsBroker - ok
08:37:01.0798 0x2168  [ 86E7FD5C8DBEC1EB51C4368561402B75, 86EE61414CD5854E39E33F67BF5DA4377B569B3ED4D18882C470BC6784891DA1 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
08:37:01.0816 0x2168  TabletInputService - ok
08:37:01.0825 0x2168  [ 3929C8FC134AC672C4F3F85160956257, CD3195CA58BA6F55EA0DDA2BE6AB58280AD1CA488D7AAA1539DD05FB99374F36 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
08:37:01.0849 0x2168  TapiSrv - ok
08:37:01.0942 0x2168  [ 2011413864620317C8F931219CAF09C3, 640B39A8F355145CFA8174A1767B7DFCCF6DDC6A03AE0D54E346D8EEA9039415 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
08:37:01.0998 0x2168  Tcpip - ok
08:37:02.0068 0x2168  [ 2011413864620317C8F931219CAF09C3, 640B39A8F355145CFA8174A1767B7DFCCF6DDC6A03AE0D54E346D8EEA9039415 ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
08:37:02.0133 0x2168  Tcpip6 - ok
08:37:02.0141 0x2168  [ EC9450227A4C661513661F1F9C1F7DD6, 4DB122DECEA7C76BD20A6682958609A40CA2C9EDD236DFA19E9B31C57114DA3A ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
08:37:02.0152 0x2168  tcpipreg - ok
08:37:02.0157 0x2168  [ 0B237F8A96952BF95A14865030E131F2, 263089672218D3A768A6FC9D28DBEFE113D6757A9ECBAB4D364A62AC5DDA8AAE ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
08:37:02.0167 0x2168  tdx - ok
08:37:02.0170 0x2168  [ 06130AFFECEB94525FC2352936576B70, 10EBE2C8FDC087D29E2FFB328F0F7905A5374AB8CC9FAE8699E7676DBC8CBF91 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
08:37:02.0178 0x2168  terminpt - ok
08:37:02.0200 0x2168  [ FB68E5F02316C42BE7282DA492351C6F, AC31D841FEA58B776127E138DB20F8D48E26FD8C00CE2FA9695EA14EBF159A0A ] TermService     C:\WINDOWS\System32\termsrv.dll
08:37:02.0234 0x2168  TermService - ok
08:37:02.0238 0x2168  [ 2AF438EC0D361A7BBB70E604A686602C, 4BE6A0461EB2CB94288614434A1CEC81C2ED46241721FD5BBD8ABE0680F7C804 ] Themes          C:\WINDOWS\system32\themeservice.dll
08:37:02.0272 0x2168  Themes - ok
08:37:02.0286 0x2168  [ 1482B8ED5CACA87992A882B853B83CEE, 613247F0E362A109090E8563D977DECC50C64D45D6962905FA84A2D59329045C ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
08:37:02.0329 0x2168  TieringEngineService - ok
08:37:02.0354 0x2168  [ 3B3C607C3C62DFBEF61938DA2CAB94DF, E5EEA7F45A7BBFDF6F0003CD77E39958C451DD1B4B401876B5619A3C20F5C370 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
08:37:02.0400 0x2168  tiledatamodelsvc - ok
08:37:02.0408 0x2168  [ C1F8CBE2D4843E0CCC3EFEA2EC60D4AB, 9D07527D982066922318C77AECE99280DE55034C375ACE145E827A6BEB5C3B70 ] TimeBrokerSvc   C:\WINDOWS\System32\TimeBrokerServer.dll
08:37:02.0427 0x2168  TimeBrokerSvc - ok
08:37:02.0433 0x2168  [ D0257ACADEF049358FBFB2ADE6F14A47, 07DDF944AD395C2412F4C5FB01056671EC2246A284D00BE9B3541DD0BEE60451 ] TPHKLOAD        C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
08:37:02.0442 0x2168  TPHKLOAD - ok
08:37:02.0450 0x2168  [ 46171262D0E806779DEEDFCAB2F830CC, 7F4A4658B8BA217D99E5B5C0E01600C20DC96ECBCA32A5BA7FBE17D2A7B8BFD8 ] TPM             C:\WINDOWS\System32\drivers\tpm.sys
08:37:02.0465 0x2168  TPM - ok
08:37:02.0470 0x2168  [ 3B91F35089240F6187AD681A5EC28BDE, 3D035CB73BC8E7831DCD0FB7D9DAD91CE51D3D0F9D9C8B866A0009BD508B6702 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
08:37:02.0487 0x2168  TrkWks - ok
08:37:02.0493 0x2168  [ 09440FA30C020B4443391FAFCF4876E3, 208C7725F70C75D8C96CCAF5B22F83B8B1C66D8C9FFF48465B1C9F4A77425569 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
08:37:02.0509 0x2168  TrustedInstaller - ok
08:37:02.0515 0x2168  [ A6F4025664C9D4BC2A9EDAB4092706D7, 89808A1679C0E716F86F06EE7701DCC289200894F0FA1F120DA2AC3A45FDB312 ] tsusbflt        C:\WINDOWS\system32\drivers\TsUsbFlt.sys
08:37:02.0528 0x2168  tsusbflt - ok
08:37:02.0532 0x2168  [ 37A96AD493E110C0BF1EE0AC0F9E7DBD, F2A6894A4AEE18DF2B92222CDB0801A13AEEB7212071F0431430788339B30E23 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
08:37:02.0545 0x2168  TsUsbGD - ok
08:37:02.0550 0x2168  [ 5A91FDBA4D3FCB56DAEB8C091B3EB8E1, 8AB91F4423125267FA8509A1C3A9AD1CBD642FA6A96D8789F9AB8CB75ABAD58C ] tsusbhub        C:\WINDOWS\System32\drivers\tsusbhub.sys
08:37:02.0565 0x2168  tsusbhub - ok
08:37:02.0577 0x2168  [ 79E264287F17D56D768440B0270466DE, ABF9DC95C5E939B30BFD9BF9EDFDB3BD78A9DFCB055B945965303B6A60E6D7A7 ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
08:37:02.0594 0x2168  tunnel - ok
08:37:02.0599 0x2168  [ 13781908186770ABE9F8EBCC2B45B138, 4BEC8466254E0C6492CC55CE344A6173878CFA040238C6BE5842E5209F066DEE ] tzautoupdate    C:\WINDOWS\system32\tzautoupdate.dll
08:37:02.0615 0x2168  tzautoupdate - ok
08:37:02.0619 0x2168  [ AA65954F512BA097DD190790876DD991, C1BB2B8F54F064D01190327B5E7949EBBDA21D6FC6F94D9FCD20F685C2F855FA ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
08:37:02.0631 0x2168  UASPStor - ok
08:37:02.0636 0x2168  [ AB6268022C3A5B529075A39C33904DA6, 2717F1704640201F2681711543EA39A74C3E89C7DB232EC5DD89FD8AA6F07846 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
08:37:02.0651 0x2168  UcmCx0101 - ok
08:37:02.0656 0x2168  [ 7ED2EDA43D21C7A5F589A7960E265C52, 7DB8A595236FBB8A264D7AB155201357212855050ABB5B1036EF32F1223FDCC2 ] UcmTcpciCx0101  C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
08:37:02.0672 0x2168  UcmTcpciCx0101 - ok
08:37:02.0675 0x2168  [ 169351463039B45F5CDED9768879F712, 990C8C4AEF9ED7FF6BCEAE67F7BDAA037777B142B8D96A74F8715C941A5C63C6 ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
08:37:02.0689 0x2168  UcmUcsi - ok
08:37:02.0697 0x2168  [ 08A9E3AD29B215484FBB68CDC175DF3A, 3EFFF99C3BC4A1454E3D2B5177AE587ED3041AB4CE2A95BA7E28A2124E38E1E5 ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
08:37:02.0711 0x2168  Ucx01000 - ok
08:37:02.0715 0x2168  [ DA70AEE267491AA56BC63AA0C0C96CA2, 0A0AADB27607F9292BB3CE000CFDDB19BD4CA09EAAD926C4925CB43B17817AD9 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
08:37:02.0729 0x2168  UdeCx - ok
08:37:02.0739 0x2168  [ FBC5ECF6D5A868D0B116C2DBB02B8168, 945AA76C60ABAD6075B5C8F9172C018F75BCF393A1CB8B329F5E68E664627775 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
08:37:02.0766 0x2168  udfs - ok
08:37:02.0770 0x2168  [ B918E40FAA9CD118CCA4AD388B748C98, 4B539B7B656F02C5E5BAEE52A677757B05CC11C5500D619850A564C28FAB8115 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
08:37:02.0781 0x2168  UEFI - ok
08:37:02.0784 0x2168  [ 166B17AE1DD24D8BA8CA474C7C31148F, D34E786277093278F58EFAC957279DC4ED43A190538C875B80F5B1E0A0C30381 ] UevAgentDriver  C:\WINDOWS\system32\drivers\UevAgentDriver.sys
08:37:02.0792 0x2168  UevAgentDriver - ok
08:37:02.0816 0x2168  [ FCA4D901FB9934DAB82ED31C4EE89A11, 8EDF8DD71C13DE77AC83D1086670E9E90C69DE379F1CF768C8B9C789254C04AA ] UevAgentService C:\WINDOWS\system32\AgentService.exe
08:37:02.0856 0x2168  UevAgentService - ok
08:37:02.0865 0x2168  [ 0FD75222C1AD2687AB365BEBEA400DD4, AD10DBCA59EB7D34FD8F963CE267F36774A9BC613F8D637903B12AC88C328E8A ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
08:37:02.0877 0x2168  Ufx01000 - ok
08:37:02.0881 0x2168  [ C1A78C53E01C641AE41BFA65797819F5, 0B9FE1BD724B3315199A1B1DA2F03255E4FE744DA3CE6CD0F77699A8E42E9359 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
08:37:02.0890 0x2168  UfxChipidea - ok
08:37:02.0895 0x2168  [ 767307212110EBEFB93EC9A5BE9E85B9, 368797400FE54802CE74F34B773CE2AF09EB8DEA6C035B55419A52F0B5A6FAD0 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
08:37:02.0905 0x2168  ufxsynopsys - ok
08:37:02.0911 0x2168  [ 8578F83EC5175920F2D8586FFF9DCE47, 049A16AC87F93E761150C8286633FFCA62EE85F5645DDE77D36BD0EB6481FF83 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
08:37:02.0924 0x2168  UI0Detect - ok
08:37:02.0927 0x2168  [ DC460AAA18CA2342FBBFB2DF9B044472, 14D45E059C596AE97506D26705F248CA1C2269160B31A60341060E8A93146CBD ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
08:37:02.0938 0x2168  umbus - ok
08:37:02.0940 0x2168  [ C3CF0377917ECE6D65D7623E1E61568F, 4909695E04CBC86BFCFFBC15F332C367521054B7B4D3C141C7CA6B2E40E090B9 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
08:37:02.0950 0x2168  UmPass - ok
08:37:02.0958 0x2168  [ 640CF093C1CF16D5FD317616CA348F31, BEC34D1AACA83BF5A84CE01F6A668E3CA5A33C56A446DC42EFFF7C43D22E1AE6 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
08:37:02.0974 0x2168  UmRdpService - ok
08:37:02.0998 0x2168  [ 4B956444AF2A352366CF59C3A4A87C64, B5FFAF5908DCF78DDA27EA1ABF2AFDD2BDD43FFC0259D847A7107B1597E22BD6 ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
08:37:03.0037 0x2168  UnistoreSvc - ok
08:37:03.0051 0x2168  [ 6CDA3536F6BAB7896A57EAB7DC07F379, 8FBE6457ECD1ABB518D9800EBA8A017774FFAA8EABD2EDC0825181A12FE9AEF6 ] upnphost        C:\WINDOWS\System32\upnphost.dll
08:37:03.0076 0x2168  upnphost - ok
08:37:03.0079 0x2168  [ 6B46FC140C9AF68E6E7697D66D59CB4D, F018B4784D65F1A8140A6EA69C35D6A7ECE01738694052FD54AFD2B81A8F2FF8 ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
08:37:03.0087 0x2168  UrsChipidea - ok
08:37:03.0091 0x2168  [ B4402E7F0923F660270442CE76877ABE, 1C2DD26EAB71F75EA576E8DAABAF71FD7DC3DF807CF025617C774CEF33C0B718 ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
08:37:03.0100 0x2168  UrsCx01000 - ok
08:37:03.0103 0x2168  [ 9DD431F1B94789CFB527E5D19261F124, 8F5A249A97C5B14B282E3147DD21951D2AD34B651E762814C12F4C26D74EC70C ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
08:37:03.0111 0x2168  UrsSynopsys - ok
08:37:03.0115 0x2168  [ 93F169DE94DBAC5DAF4755AFF10193DD, 381E6751EB97426B9BF30929E4B82A665D1ED985DA60BE18D3C17CF2BB41F848 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
08:37:03.0127 0x2168  usbaudio - ok
08:37:03.0132 0x2168  [ C87E32B90F085970D9637FBAD45EF6FE, C180EACD2EE479277DA5DBF39E43B428BD7945141B2451CB3946B0C1E495E76F ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
08:37:03.0146 0x2168  usbccgp - ok
08:37:03.0153 0x2168  [ 0B663856474AC41924D9E9112203858F, 9E09F2A6279B48CAC09F8C7AA1F1BE02864D540C2ED1460CBA9FABCF0A546A1E ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
08:37:03.0176 0x2168  usbcir - ok
08:37:03.0184 0x2168  [ F83D2250256203AC5DA5E8601C1AFDD7, AC0D90E2DB3051798B9D287CF3D0E92FED4000822E65A82775A29CF896B76F04 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
08:37:03.0202 0x2168  usbehci - ok
08:37:03.0216 0x2168  [ 7FFD26742321919590ED77FCA556D65F, F7FAB63C36F8519F5A7B9091C507F3CB580C390322FAF9155CCE7F66C965B968 ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
08:37:03.0238 0x2168  usbhub - ok
08:37:03.0253 0x2168  [ 7A749B2863B5561BE34B39E8E249AD8F, E5B67DFAF5407007FD0CC408D6B4BA19DF59584819FC715E9F9E0FBF3EA00AAB ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
08:37:03.0277 0x2168  USBHUB3 - ok
08:37:03.0281 0x2168  [ D2109F1F4FEBF1DAC415CDC5DE876479, C8A871EBD0E5EF004BA622A73DAC36C03608CD317FDCD0A6A98608DF4CC10D55 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
08:37:03.0295 0x2168  usbohci - ok
08:37:03.0298 0x2168  [ 29C9572F2D061CFC3C0BD48A3163E343, 2527DCC9E6D421F5DC40051C787A5270EB077746785465C9AA2A2AEEF47307D5 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
08:37:03.0312 0x2168  usbprint - ok
08:37:03.0316 0x2168  [ 429477D6DEF3321FF7D3EF23CAAADA00, BB7D2AFE99736AAFFA8B0B2DABF7D6A6D5CB9563B1DE6A7E86CE7DC9D27F31C0 ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
08:37:03.0330 0x2168  usbser - ok
08:37:03.0335 0x2168  [ 0CC16F7B91C57AE9A4E44425A295FDAA, 7CEE11955E5742DA390601F565412C14A7481B8747C495CCD246696C56B426DC ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
08:37:03.0348 0x2168  USBSTOR - ok
08:37:03.0352 0x2168  [ C917D09064CDBD18F75ADC9B2C48F847, A7F6223346CCD7E84186CD0C0715014F8E3A4398298925A43290224678620D23 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
08:37:03.0365 0x2168  usbuhci - ok
08:37:03.0376 0x2168  [ 95BCCEFBC40D06484CF16144FE79B8A5, 8ABA73C5FFEDD319FB96B807AD08716698E557522478DF1A2C5D662675636AE0 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
08:37:03.0395 0x2168  USBXHCI - ok
08:37:03.0450 0x2168  [ A39AFDD26E6F2E5595FF2D3997D7E1FE, 30DE54033DE437C16A069602529E63FF971AF0ABB383885E47B4DF5E0F8483AE ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
08:37:03.0539 0x2168  UserDataSvc - ok
08:37:03.0563 0x2168  [ AA24C61D88E36BA1144072227922173D, 2EBBC827E740F72EA2E75745E585378189BC0DEE91CACD7FA31BDBC5EFCF8733 ] UserManager     C:\WINDOWS\System32\usermgr.dll
08:37:03.0598 0x2168  UserManager - ok
08:37:03.0611 0x2168  [ B6911F3CBA01ECC637B3891DFE5099DC, E3ECF7BE729E38C236716B4A4147A29CA7B2CD7CEC17AE50E18437E995D30781 ] UsoSvc          C:\WINDOWS\system32\usocore.dll
08:37:03.0634 0x2168  UsoSvc - ok
08:37:03.0639 0x2168  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
08:37:03.0649 0x2168  VaultSvc - ok
08:37:03.0652 0x2168  [ 0CBDE344FB48E42D78E29469F202ADBC, A1C3FBA5409DD3BBEAF1D3CE2583D6C8A621C0E4F534155EC540AFD67BC9E8CA ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
08:37:03.0661 0x2168  vdrvroot - ok
08:37:03.0675 0x2168  [ 2C5D96D0BB7EDEF9F2F8966A31007CCE, A8FB02E9E1B8ED5F2026534360C229DA7FC11BA209DE9C3222C65D0A9652FD3C ] vds             C:\WINDOWS\System32\vds.exe
08:37:03.0701 0x2168  vds - ok
08:37:03.0708 0x2168  [ 723195568C8755CAD57F7933C5F2C5C2, 5C403799F67223605F825BC16D217C1EF5E1A0DDF00AC6380FE8976339B67D9B ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
08:37:03.0719 0x2168  VerifierExt - ok
08:37:03.0734 0x2168  [ 3BB8D153A9A514EC9FFCB586251A1925, 5E4B46511F9791699826DC63B35528544347166BDE9981FB93F1F7F2A09599C7 ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
08:37:03.0755 0x2168  vhdmp - ok
08:37:03.0760 0x2168  [ 7929228F0E8B0C2FA0495A17A4FC27F6, 1F1667B10A96B1D85ED165F62A5C0EF28C37F828B8280EA08BFCC1BAC03F2C90 ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
08:37:03.0770 0x2168  vhf - ok
08:37:03.0774 0x2168  [ AEE432ED868831B1F068E373598F6D93, BAE91F47B0CB94B826CA010B490AD924D7B715911DF3FCE62F9165F3B571105C ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
08:37:03.0784 0x2168  vmbus - ok
08:37:03.0787 0x2168  [ 9444B23FC694B5F90F21B0FC7F10D8DD, 86F92856F5C985DD8E5993B51E85E1F47EF8C9B2FB37468998C94266963BB4BD ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
08:37:03.0797 0x2168  VMBusHID - ok
08:37:03.0800 0x2168  [ 4D0287F566B36536DD812A54C015FC4A, 01D6508CA59CF04A47902B1F7C202FD14A81240E0B447588D919DD1072B040CF ] vmgid           C:\WINDOWS\System32\drivers\vmgid.sys
08:37:03.0810 0x2168  vmgid - ok
08:37:03.0817 0x2168  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
08:37:03.0836 0x2168  vmicguestinterface - ok
08:37:03.0843 0x2168  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicheartbeat   C:\WINDOWS\System32\icsvc.dll
08:37:03.0861 0x2168  vmicheartbeat - ok
08:37:03.0869 0x2168  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
08:37:03.0885 0x2168  vmickvpexchange - ok
08:37:03.0894 0x2168  [ F70DCCE72343449F0D12A0A92282B019, 3EFA99519387BE38C1CB482F1BFC9ED449BE9A5BD86883A1002725B8D4A5ECC1 ] vmicrdv         C:\WINDOWS\System32\icsvcext.dll
08:37:03.0912 0x2168  vmicrdv - ok
08:37:03.0920 0x2168  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicshutdown    C:\WINDOWS\System32\icsvc.dll
08:37:03.0955 0x2168  vmicshutdown - ok
08:37:03.0969 0x2168  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmictimesync    C:\WINDOWS\System32\icsvc.dll
08:37:04.0010 0x2168  vmictimesync - ok
08:37:04.0018 0x2168  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicvmsession   C:\WINDOWS\System32\icsvc.dll
08:37:04.0035 0x2168  vmicvmsession - ok
08:37:04.0044 0x2168  [ F70DCCE72343449F0D12A0A92282B019, 3EFA99519387BE38C1CB482F1BFC9ED449BE9A5BD86883A1002725B8D4A5ECC1 ] vmicvss         C:\WINDOWS\System32\icsvcext.dll
08:37:04.0061 0x2168  vmicvss - ok
08:37:04.0065 0x2168  [ 29075915F9BDC3437F8BED71C067D399, 2C7718080C11DFDD4C9A2085537F78F5633369B4A27D9C64168F0249594A4AA2 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
08:37:04.0074 0x2168  volmgr - ok
08:37:04.0083 0x2168  [ 6BDB6CE6D2D9E3D3F28F1C97E12B62E2, 5E77D7AF858D7B90FF395F39B86D6F96413D1DDEA28BC9FB40C5524A4DF6DAD0 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
08:37:04.0097 0x2168  volmgrx - ok
08:37:04.0106 0x2168  [ BF2546583BB75F01DDA60A7921DFB230, 579BD0BC55F4F03CD8D1FCDAC3975A1649C688820F2F7FC1AD354132D9E3BEE9 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
08:37:04.0120 0x2168  volsnap - ok
08:37:04.0124 0x2168  [ AC2E20A74D09D24485BE8396CE04F07B, 23FCE8BEE01B89E5CDCA536D75DBA6DCE3E92E13178A66836CEB7829310A89D1 ] volume          C:\WINDOWS\system32\drivers\volume.sys
08:37:04.0133 0x2168  volume - ok
08:37:04.0138 0x2168  [ 92F6E3E6D3F1795263EB34B37F74AEF7, 33AB1ECCA1216AF1995E1DB4F11E48156FF62391D7C176C8A4CC1037B9CB3A27 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
08:37:04.0149 0x2168  vpci - ok
08:37:04.0155 0x2168  [ FD9BCB8920973CEAD4D49DC7A6D8A618, 34AB4A485FB40DF737600006D8323BE927FB0BDA2BC170F4C123BE775EAE7CC8 ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
08:37:04.0166 0x2168  vsmraid - ok
08:37:04.0194 0x2168  [ 6DBB20053A67EFE5D8114CE93D12BEB3, B48997FADA4A600FEBFE36B249684E9CAF01570BAD36ED1FC9DA99F2D100638E ] VSS             C:\WINDOWS\system32\vssvc.exe
08:37:04.0239 0x2168  VSS - ok
08:37:04.0249 0x2168  [ 0C111F220798CCE80484026E06822379, B98A5E44D3ABA67E6DE99E18BF3C2C606923E6269E262665C721F672ACBBED2A ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
08:37:04.0278 0x2168  VSTXRAID - ok
08:37:04.0284 0x2168  [ 607639716E9DB1CEF4E18B5B229293B4, 1D997177093F907EFE8A04AD10443BB9C355C0D7657DBD449E7EE7FCABC3ECBC ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
08:37:04.0298 0x2168  vwifibus - ok
08:37:04.0303 0x2168  [ B1ED64E628763148BF84FBE23F2AD711, 6182A39675E6049BC3DD353694720795A8E3D0331509AA8ABA4883D5C569AD5E ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
08:37:04.0317 0x2168  vwififlt - ok
08:37:04.0321 0x2168  [ 59920894C38A827091A06AF559834E47, 8B40FE0B1BA3B2A79BFF70803D039DB921F85C978724722E5E5AFF188FA75471 ] vwifimp         C:\WINDOWS\System32\drivers\vwifimp.sys
08:37:04.0335 0x2168  vwifimp - ok
08:37:04.0350 0x2168  [ 76C1CC611352499326001F25A3ED15F8, 228BFA8A01BB1B3868576D509A2EA6F3D37FEDC8F12D4DC4E0A84CE926C6D1B1 ] W32Time         C:\WINDOWS\system32\w32time.dll
08:37:04.0387 0x2168  W32Time - ok
08:37:04.0391 0x2168  [ 55D00B785A7587F4263D125817871283, B92400B229099C1E243F2B149881A1423A2E9C8CA2D77D868B9B923BFDEC7FF2 ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
08:37:04.0407 0x2168  WacomPen - ok
08:37:04.0425 0x2168  [ 1483BE4D0135C378CB61D3CD73AB3E03, B7309C9E4F370860C507BF52D17234CDF4A7FAE95D2D822714E07EF5DEC0249B ] WalletService   C:\WINDOWS\system32\WalletService.dll
08:37:04.0456 0x2168  WalletService - ok
08:37:04.0465 0x2168  [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:37:04.0483 0x2168  wanarp - ok
08:37:04.0487 0x2168  [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:37:04.0504 0x2168  wanarpv6 - ok
08:37:04.0538 0x2168  [ 68CC5E83B6F220F5BD7B5BC394917505, 24A793E1293608D1D1DB9396627DBF5FE66C9EFD1D49CCCD832CF1762B4E0E7D ] wbengine        C:\WINDOWS\system32\wbengine.exe
08:37:04.0599 0x2168  wbengine - ok
08:37:04.0620 0x2168  [ 8C521D161445C3E1F38A494E7649E70D, F00990B2FE1FB52C74A2057E6480C5EBF2BDBC32955CC03C6B63360F20A49A18 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
08:37:04.0662 0x2168  WbioSrvc - ok
08:37:04.0669 0x2168  [ E330144B97D493AA886000DCAAA8DAF5, ED86F46F5A76FD8F06CA98BD61B174ADB9AD4B065394356872708DF8B614E4F9 ] wcifs           
C:\WINDOWS\system32\drivers\wcifs.sys
08:37:04.0682 0x2168  wcifs - ok
08:37:04.0698 0x2168  [ CA10C91D802ABE6E5136E2168C2CD2B4, 5979FF9ED783ED3154257ED0507C7BBAF8C77C081CC30AE835EA8AF7508AAD08 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
08:37:04.0730 0x2168  Wcmsvc - ok
08:37:04.0742 0x2168  [ D50645235A507B0546B1B5CF7D0B8849, 19F5FE10C953B8EE8EEDA9A9F7F2E97AA193BB085E7FC364066686089ADD1C9F ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
08:37:04.0767 0x2168  wcncsvc - ok
08:37:04.0771 0x2168  [ AEA1093B751339267D8C8C1EF3D669CF, 8F3325E7FB16BD856A0593C36F2E3E018909038C52CD5F92E116E0C1366F31CB ] wcnfs           C:\WINDOWS\system32\drivers\wcnfs.sys
08:37:04.0784 0x2168  wcnfs - ok
08:37:04.0787 0x2168  [ D520B1B849B6D4D707AB31722B952C2D, 149BABB7BD63C1F212ADD9306C84FFB2A5CE6DC435BD3213EAB787E9B222C61F ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
08:37:04.0796 0x2168  WdBoot - ok
08:37:04.0814 0x2168  [ 5030C76047D756263093A47B82970868, E772F15973F6DE36851DD230F1F4190746CD81CA1E7284DC074711C4BF45CAF0 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
08:37:04.0835 0x2168  Wdf01000 - ok
08:37:04.0845 0x2168  [ 29FF9199EDEB4F5470BB134D1A2563D2, 94713F98A6EA6042203D5DD0DE6758F5F0F331F7D4BB05E91EF20CEEEBD6780F ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
08:37:04.0859 0x2168  WdFilter - ok
08:37:04.0866 0x2168  [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
08:37:04.0885 0x2168  WdiServiceHost - ok
08:37:04.0888 0x2168  [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
08:37:04.0906 0x2168  WdiSystemHost - ok
08:37:04.0926 0x2168  [ EDC08B8D3E67F96688774841C247B82A, DB5AFAF87C74431B8EB5420DBF5428691F291B63C2FDE8282EE2E399C76F63F3 ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
08:37:04.0955 0x2168  wdiwifi - ok
08:37:04.0963 0x2168  [ 17CF416CFF408190F5A4CBD79AB12E55, E376C8865C7EA633AE20D2CF940E4C7584AC783BAAF7941780FB6C4C84802F33 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
08:37:04.0973 0x2168  WdNisDrv - ok
08:37:04.0976 0x2168  WdNisSvc - ok
08:37:04.0983 0x2168  [ 3570C4E14F85CE0B537D126727ACA91C, A474C9E6B6E4E5945C63367C1D3D24D4782C4A4FEB00FAE15DFED099D8283078 ] WebClient       C:\WINDOWS\System32\webclnt.dll
08:37:05.0002 0x2168  WebClient - ok
08:37:05.0009 0x2168  [ 1785F9C96A0BDEC1F6E0C79EF412F342, D6D4EDA69457BEDDA69C2F60FC4C2FAC97D46CD8E9C1804CCD68F169383583E3 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
08:37:05.0030 0x2168  Wecsvc - ok
08:37:05.0033 0x2168  [ B9175D63527B05131F2FA504CF0265F2, 1E43A17788F1B6A29E2889C81E0BE100D64BD3A9DEE7C154D9581F01D2D7D05F ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
08:37:05.0046 0x2168  WEPHOSTSVC - ok
08:37:05.0050 0x2168  [ 5C58EC0C9D4DE04DCDE56F6DCEA62080, 8ED386EDF4C39C339CE0BB2AC7E199C38705E5A6B3F56A4987B9A8ABD19BB59F ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
08:37:05.0063 0x2168  wercplsupport - ok
08:37:05.0071 0x2168  [ F899B355CC95AF26AB36E84E8A0DD685, C400F2F80FFF6473FEF066943C4A2AFF0FFE988A4F755757A2E5005C2A10DAD8 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
08:37:05.0086 0x2168  WerSvc - ok
08:37:05.0092 0x2168  [ E1785942AC51FEE6826CDF02075C5AA9, 56FE7017684086F4F9C3A2C0D3AC00369BA0938BA3987EEBEE9A75B8E3CA0AE1 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
08:37:05.0102 0x2168  WFPLWFS - ok
08:37:05.0107 0x2168  [ B154618505A6A9026EFA6AB8C4123BF1, 713648D71AA027B4472E7E75B942630DBE7383687984B02A5E99C9E4192C95EB ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
08:37:05.0120 0x2168  WiaRpc - ok
08:37:05.0123 0x2168  [ 0CF79A0EACFFBB75A50A469A27696D02, E112BF7B5A8D0B0AD2EA0E7B9FD4E8CFEC9371C8E94A60248292D688AFE715C4 ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
08:37:05.0131 0x2168  WIMMount - ok
08:37:05.0133 0x2168  WinDefend - ok
08:37:05.0143 0x2168  [ 0DE131733317EB4BE67028366B0CAAC6, AC7DADBF03A3752B4D33CA19F03DBCEDD6F56893C2DA25C98B0AB07063D990E3 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
08:37:05.0152 0x2168  WindowsTrustedRT - ok
08:37:05.0156 0x2168  [ 92EB5D38BDF10C790450F3E46BF93A0E, 0FC027398DBD43EDC1F7D703C0B6DB20294DF34E67C9288442039B1A5663CE1B ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
08:37:05.0165 0x2168  WindowsTrustedRTProxy - ok
08:37:05.0182 0x2168  [ 4AB1AC1E60118443A14C241F91AC8FC9, 2B9237AC124874664E31B4F313BAAF8059BD0749653496784B4B89B4B7F66784 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
08:37:05.0215 0x2168  WinHttpAutoProxySvc - ok
08:37:05.0224 0x2168  [ F95DE20312ACCA7761446DE152BD1F7C, F6C5ACA500C2182437F4A7402BD81C3A2B77C0BBD78BA31FB574DC1997FCBFE6 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
08:37:05.0241 0x2168  WinMad - ok
08:37:05.0261 0x2168  [ CD49CA8E3280ACEEC5ECF431A59F5EFD, 75F48EFC6DEE9E06B490703EE47602AFDEA51505285B02D2CF884601E71857CC ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
08:37:05.0295 0x2168  Winmgmt - ok
08:37:05.0377 0x2168  [ B8C0D620219ECAA23A2AC841EAF454D1, FB527C4D36929D7FAE2A837727C557B7823A72069EBCAB7D16C49E8B21E8D952 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
08:37:05.0457 0x2168  WinRM - ok
08:37:05.0466 0x2168  [ 4EFB346BFDAEEB29316AA52BBB9852B1, 4BC5554F44BD9549D0A929D77BD410FA3EB502A7D0170303D369268672505494 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
08:37:05.0478 0x2168  WINUSB - ok
08:37:05.0481 0x2168  [ 8B9AFF5F08E66A6F1F1063DEC9457FB6, 98F2AF6988D125521FD34CAA48B9652922F0C8ECFAE9B0C1DF4B3CE6B9CF500F ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
08:37:05.0490 0x2168  WinVerbs - ok
08:37:05.0504 0x2168  [ 78EA65739A50969CD5FC2E71B9B7697A, C442BE91CE5D4F301368915CFBE055233DD1FB8BDBEBD51CD00DC2C7770C8EE3 ] wisvc           C:\WINDOWS\system32\flightsettings.dll
08:37:05.0530 0x2168  wisvc - ok
08:37:05.0607 0x2168  [ 5A7AA8198156DC2BFF9F064E29D11AF5, 9CBAF1B99B54CDE087E0FC0A2601B3F056F81F2F5AF63B5BB71C7389247E496A ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
08:37:05.0749 0x2168  WlanSvc - ok
08:37:05.0841 0x2168  [ E15711970C5BE05E8D70B294D0AFF621, 30670CFC4DA57B4A3E0E895E4111100D847BB8041A258A303524CD96DC566482 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
08:37:05.0928 0x2168  wlidsvc - ok
08:37:05.0934 0x2168  [ 6F4F4F5A007D1710BD76FB311DA97C07, FC0FEA4364F6BA4E31DBC82735D09D429CA3BE9AFCFF5D5E1263D8B27FC2CE3E ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
08:37:05.0943 0x2168  WmiAcpi - ok
08:37:05.0951 0x2168  [ 3CDDFF6CAD962C5EF1C52FD667C358B6, F6F09145E9461EB17172988D26749FCF36920A1A683459334D04A6D072B31A92 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
08:37:05.0966 0x2168  wmiApSrv - ok
08:37:05.0968 0x2168  WMPNetworkSvc - ok
08:37:05.0975 0x2168  [ 43C8D087B31C592163B33A4BDA540E40, 3A6C4E5E56931B29321DCC723585F2F0E804EF4DCDEAB2A8687F30FC3AE70E43 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
08:37:05.0986 0x2168  Wof - ok
08:37:06.0025 0x2168  [ 5820CC51AB1C368F29ECCA713397D006, AA0CC2BC4DF7DBFB144FF47C3508BEEF00467C9D312C135AFB3406E42C6CD821 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
08:37:06.0102 0x2168  workfolderssvc - ok
08:37:06.0109 0x2168  [ F02930EB91596042F2221397D60AFCE5, 10E2AB0993B67CBAA9E11C68280608965064EC9F7E0C570F5B453FACADB8AB5D ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
08:37:06.0122 0x2168  WPDBusEnum - ok
08:37:06.0125 0x2168  [ 75A9284F01FE7CB1A7D5EAE5C1EB4F33, 390EF23AEA06D8711555F7979FF8BE0620B53C1A551638C4EC6FB7C6678965B3 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
08:37:06.0133 0x2168  WpdUpFltr - ok
08:37:06.0140 0x2168  [ 60E2EB3E7B7F15C25E02462159F90707, D8344B529EEC0D4922CAC3E6897CC9F191ACF1376017BE38ED6BF6019F1ED181 ] WpnService      C:\WINDOWS\system32\WpnService.dll
08:37:06.0157 0x2168  WpnService - ok
08:37:06.0161 0x2168  [ C7C91FB86A3C6CD7619725A88ED1884C, 132C43C518F37BF303D768BD5FB0AB835F693C43FE693937D804A34E940D770F ] WpnUserService  C:\WINDOWS\System32\WpnUserService.dll
08:37:06.0173 0x2168  WpnUserService - ok
08:37:06.0178 0x2168  [ 36D7B73ADC3E10607ED6EC874AFB5D1E, 1737B3E4D2CA76BB27903BF460E4960E6A0BC32D35069AC7C5E4B07F625F3282 ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
08:37:06.0187 0x2168  ws2ifsl - ok
08:37:06.0194 0x2168  [ 9A0E0B836413EB0BC885532D2A5389D6, AFEE4A0578D5581E4D72999A33C0DEA6253BD891F611AFF9AFDE4160A60105F3 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
08:37:06.0209 0x2168  wscsvc - ok
08:37:06.0213 0x2168  [ 696EC2EAA2A42A137CCBB9A84D6917C0, 424089F4F373962AF8357C5D4D43F35948989BE3F58EAD3690F565F4C1BBC66F ] WSDPrintDevice  C:\WINDOWS\System32\drivers\WSDPrint.sys
08:37:06.0224 0x2168  WSDPrintDevice - ok
08:37:06.0226 0x2168  WSearch - ok
08:37:06.0269 0x2168  [ 10C4A0CDACAD054C90288D718615B4BA, 76CD5BF3B97DC306B17AB65E1CD841180C6FD147F2CC9EE6A757C27E3AB2D231 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
08:37:06.0338 0x2168  wuauserv - ok
08:37:06.0345 0x2168  [ AED7FE551E8672B824A56324076183EB, FFE543AAEFDEFFE6B20C244DB141A9425BDA88ED36F4870F0B70FEC433BDF0C1 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
08:37:06.0358 0x2168  WudfPf - ok
08:37:06.0365 0x2168  [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
08:37:06.0380 0x2168  WUDFRd - ok
08:37:06.0385 0x2168  [ 47F6450F28BAA32B2AB0D6BE00996249, C8A47D6ADF89AD613AB685C6224B9099DCEFDCD8ABCF703542AFDC356404116E ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
08:37:06.0398 0x2168  wudfsvc - ok
08:37:06.0404 0x2168  [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
08:37:06.0419 0x2168  WUDFWpdFs - ok
08:37:06.0447 0x2168  [ D313FF382A26D1295B212A66EE3E52A8, 59FEF2AF611507BCB6FE036A7D4F1595F3449B76F9B055CDC67DC1BE1D90EEB8 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
08:37:06.0488 0x2168  WwanSvc - ok
08:37:06.0511 0x2168  [ 7EF75102A793AAA6AAA45A4F7C15FF4D, A3FB68905F3E3A7DE52B85FAD966ABCB787FAC7E709964CE9BF2A4F9AC8B0653 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
08:37:06.0546 0x2168  XblAuthManager - ok
08:37:06.0570 0x2168  [ 765FF96467A26C4C03281ECA426EC2D9, 2526B03C518D72F429C29BA4D4F11707AF277BF71520A1A92238A932950AE161 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
08:37:06.0632 0x2168  XblGameSave - ok
08:37:06.0648 0x2168  [ DB77764B46D02DCB9777D9E00A3F7D63, 469491E3A57FBB0CB0482A2493823B57410E24A5BD4C1C96D79FE9888F7827BB ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
08:37:06.0678 0x2168  xboxgip - ok
08:37:06.0715 0x2168  [ 1A8D9EA4DD1A3E276B85EDB05B42BEC7, 23FC10AC29BDF917AEDB3AAF82537EC2C72453E52B41836FD83643054FA4F0BE ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
08:37:06.0764 0x2168  XboxNetApiSvc - ok
08:37:06.0769 0x2168  [ 63088A3361D9A308F328F11E9099DD87, E03FDB932FC57F199C8F8A8EADA338BDF7D2F9C6CB8FAB679A92B48B1E5AFE8A ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
08:37:06.0779 0x2168  xinputhid - ok
08:37:06.0781 0x2168  ================ Scan global ===============================
08:37:06.0785 0x2168  [ 0C710DB449712EE13ACE733695DB7780, BBC7875B38D318CE4E88979D083AC72E8993254A466A8A6882DDE9E0C3B687A3 ] C:\WINDOWS\system32\basesrv.dll
08:37:06.0791 0x2168  [ 1429740F64D4B84EC4F81C07F21EB3C6, CAD89934800F011736BB964126EFB75169B64AD6349859C3009F35C13371C44D ] C:\WINDOWS\system32\winsrv.dll
08:37:06.0798 0x2168  [ 1EE06E957B0B2CA52D26DA7861E160EF, 4B743A1C7010138F5F6684BBCF7CAD6FD05F49920BDD3FDB776347AA6B44AB94 ] C:\WINDOWS\system32\sxssrv.dll
08:37:06.0809 0x2168  [ 3C69CC28665854F1AAB4B4005005FA31, 2750F5ECCD448C07E3402AA64EA625D27C6BC1D000A3FFE57C03D62428BB46C4 ] C:\WINDOWS\system32\services.exe
08:37:06.0815 0x2168  [ Global ] - ok
08:37:06.0816 0x2168  ================ Scan MBR ==================================
08:37:07.0623 0x2168  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:37:10.0678 0x2168  \Device\Harddisk0\DR0 - ok
08:37:10.0692 0x2168  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
08:37:10.0759 0x2168  \Device\Harddisk1\DR1 - ok
08:37:10.0761 0x2168  ================ Scan VBR ==================================
08:37:10.0767 0x2168  [ 2D962A3CF75EEA26E883BE6071CB45EE ] \Device\Harddisk0\DR0\Partition1
08:37:10.0770 0x2168  \Device\Harddisk0\DR0\Partition1 - ok
08:37:10.0779 0x2168  [ 9BC6CE151BD223EEF7D7E2294BDC955E ] \Device\Harddisk0\DR0\Partition2
08:37:10.0783 0x2168  \Device\Harddisk0\DR0\Partition2 - ok
08:37:10.0792 0x2168  [ 84031A57C5EF8A0FBF90DD2AC131E933 ] \Device\Harddisk1\DR1\Partition1
08:37:10.0795 0x2168  \Device\Harddisk1\DR1\Partition1 - ok
08:37:10.0799 0x2168  [ F1D13FE863F63789DF55015DED0A275D ] \Device\Harddisk1\DR1\Partition2
08:37:10.0801 0x2168  \Device\Harddisk1\DR1\Partition2 - ok
08:37:10.0807 0x2168  [ 2D9A715760D9AC8ECF45276976479E72 ] \Device\Harddisk1\DR1\Partition3
08:37:10.0807 0x2168  \Device\Harddisk1\DR1\Partition3 - ok
08:37:10.0814 0x2168  [ 336F915ECB3FBC14AA8490E62F573F19 ] \Device\Harddisk1\DR1\Partition4
08:37:10.0817 0x2168  \Device\Harddisk1\DR1\Partition4 - ok
08:37:10.0819 0x2168  ================ Scan generic autorun ======================
08:37:10.0820 0x2168  WindowsDefender - ok
08:37:10.0973 0x2168  [ 41BA08FD9928B359B77EFF2C1348BE83, EC8890B8DA3E8F2690F8740F2AB9636B5D5D60EBA10BE75B2ED1208143F55E25 ] C:\WINDOWS\RTFTrack.EXE
08:37:11.0107 0x2168  RtsFT - ok
08:37:11.0119 0x2168  Dropbox - ok
08:37:11.0125 0x2168  [ A64AA1C8BDE6E351683041E846CA7384, 6946B557315BCA617809A38A1499A70074C596B8BAF1C9E709C9DA2DFC468D4E ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
08:37:11.0142 0x2168  Avira SystrayStartTrigger - ok
08:37:11.0185 0x2168  [ DBD8934E3909B60DA81A91BF53B76901, 29B061C5E05097394B8B9D7C6681783DB02735CE8AAD06BCC03C08617D778039 ] C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
08:37:11.0223 0x2168  avgnt - ok
08:37:11.0232 0x2168  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
08:37:11.0242 0x2168  HP Software Update - ok
08:37:11.0493 0x2168  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
08:37:11.0703 0x2168  OneDriveSetup - ok
08:37:11.0891 0x2168  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
08:37:12.0031 0x2168  OneDriveSetup - ok
08:37:12.0047 0x2168  [ 6E5E2EF142A16519555EC00CEC282C0A, 636828B64F46E67291144BA35220971DAAC493EDF900E071AB7179E02C09171C ] C:\Program Files (x86)\VLC Updater\vlc-updater.exe
08:37:12.0060 0x2168  VLC Updater - ok
08:37:12.0060 0x2168  Waiting for KSN requests completion. In queue: 7
08:37:13.0102 0x2168  AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\WindowsSecurityCenter.exe ( 15.0.25.170 ), 0x41000 ( enabled : updated )
08:37:13.0105 0x2168  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x60100 ( disabled : updated )
08:37:13.0170 0x2168  Win FW state via NFP2: enabled ( trusted )
08:37:13.0760 0x2168  ============================================================
08:37:13.0760 0x2168  Scan finished
08:37:13.0760 0x2168  ============================================================
08:37:13.0799 0x0820  Detected object count: 0
08:37:13.0799 0x0820  Actual detected object count: 0
         
Ich hoffe, dass ich alles richtig gemacht habe.
Vielen Dank und einen guten Start in die Woche wünsche ich
Gruß Torsten

Alt 03.04.2017, 21:03   #7
M-K-D-B
/// TB-Ausbilder
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



Servus,



Lesestoff:
Warnung vor vlc.de

Den Logdateien ist zu entnehmen, dass du den bekannten VLC Player fälschlicherweise von vlc.de heruntergeladen hast.
Auf dieser Seite gibt es den VLC Player nur in Kombination mit unerwünschter Software wie "Startfenster" oder "VLC Updater".
Diese Software kann die Startseiten deiner Internetbrowser manipulieren und hat keinerlei Nutzen oder Mehrwert.


Ich möchte dich in deinem eigenen Interesse dringend darum bitten, den VLC Player nur noch von der offiziellen Homepage videolan.org herunterzuladen.






Schritt 1
Downloade Dir bitte AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser.
  • Starte die adwcleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Werkzeuge > Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel
    • "Prefetch" Dateien
    • Proxy
    • Winsock
    • Firewall
    • Internet Explorer Richtlinien
    • Chrome Richtlinien
  • Bestätige die Auswahl mit Ok.
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen (auch dann wenn AdwCleaner sagt, dass nichts gefunden wurde) und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).





Schritt 2
Downloade Dir bitte Malwarebytes Anti-Malware 3
  • Installiere das Programm in den vorgegebenen Pfad.
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scan, wähle den Bedrohungs-Scan aus und klicke auf Scan starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Ausgewählte Elemente in die Quarantäne verschieben.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM nach dem Neustart, klicke auf Berichte.
  • Wähle den neuesten Scan-Bericht aus, klicke auf Bericht anzeigen und dann auf Export.
  • Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.





Schritt 3
  • Starte die FRST erneut. Vergewissere dich, dass vor Addition.txt ein Haken gesetzt ist und drücke auf Untersuchen.
  • FRST erstellt nun zwei Logdateien (FRST.txt und Addition.txt).
  • Poste mir beide Logdateien mit deiner nächsten Antwort.






Bitte poste mit deiner nächsten Antwort
  • die Logdatei von AdwCleaner,
  • die Logdatei von MBAM,
  • die beiden neuen Logdateien von FRST.
__________________
Gruß
M-K-D-B


==========================================================
offline vom 22.12.2018 bis 01.01.2019
==========================================================

Das Trojaner-Board unterstützen

Alt 04.04.2017, 09:12   #8
Torsten_
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



Danke für die Infos. Ich bemühe mich schon, Software direkt auf der Herstelller-HP runterzuladen. Bei vlc.de bin ich wohl auf den Leim gegangen.

Die weiteren Scans schaffe ich erst heute Abend wenn ich von der Arbeit komme.
Nochmals vielen Dank für deine Mühen,
Grüße Torsten

Alt 04.04.2017, 16:23   #9
M-K-D-B
/// TB-Ausbilder
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



Servus,



ok, dann bis heute Abend oder morgen.
__________________
Gruß
M-K-D-B


==========================================================
offline vom 22.12.2018 bis 01.01.2019
==========================================================

Das Trojaner-Board unterstützen

Alt 04.04.2017, 19:10   #10
Torsten_
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



Schritt1:
Code:
ATTFilter
# AdwCleaner v6.045 - Bericht erstellt am 04/04/2017 um 18:51:34
# Aktualisiert am 28/03/2017 von Malwarebytes
# Datenbank : 2017-04-04.1 [Server]
# Betriebssystem : Windows 10 Pro  (X64)
# Benutzername : Torsten Wetzel - DESKTOP-4N5ED6S
# Gestartet von : C:\Users\Torsten Wetzel\Desktop\AdwCleaner_6.045.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****

[-] Ordner gelöscht: C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VLC UPDATER
[-] Ordner gelöscht: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startfenster Symbol
[-] Ordner gelöscht: C:\Program Files (x86)\Startfenster Symbol
[-] Ordner gelöscht: C:\Program Files (x86)\VLC UPDATER
[-] Ordner gelöscht: C:\Program Files (x86)\GreatDealz
[-] Ordner gelöscht: C:\Program Files (x86)\Common Files\freemake shared


***** [ Dateien ] *****

[-] Datei gelöscht: C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Startfenster.lnk
[#] Datei gelöscht: C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\startfenster.lnk
[-] Datei gelöscht: C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Startfenster Symbol.lnk
[-] Datei gelöscht: C:\Users\Torsten Wetzel\Favorites\Startfenster.lnk
[#] Datei gelöscht: C:\Users\Torsten Wetzel\Favorites\startfenster.lnk
[-] Datei gelöscht: C:\Users\Torsten Wetzel\Favorites\Links\Startfenster.lnk
[#] Datei gelöscht: C:\Users\Torsten Wetzel\Favorites\Links\startfenster.lnk
[-] Datei gelöscht: C:\WINDOWS\SysNative\LavasoftTcpService64.dll
[-] Datei gelöscht: C:\WINDOWS\SysNative\LavasoftTcpServiceOff.ini
[-] Datei gelöscht: C:\ProgramData\Microsoft\Windows\Start Menu\Startfenster.lnk
[#] Datei gelöscht: C:\ProgramData\Microsoft\Windows\Start Menu\startfenster.lnk
[-] Datei gelöscht: C:\WINDOWS\SysWOW64\lavasofttcpservice.dll
[-] Datei gelöscht: C:\WINDOWS\SysWOW64\LavasoftTcpServiceOff.ini
[-] Datei gelöscht: C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default\extensions\@greatdealz.xpi
[-] Datei gelöscht: C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default\searchplugins\google-lavasoft.xml


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****

[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{62BE5D10-60EB-11D0-BD3B-00A0C911CE86}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Lavasoft\Web Companion
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Startfenster.de
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VLC Updater
[-] Wert gelöscht: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\Software\Microsoft\Windows\CurrentVersion\Run [VLC Updater]
[-] Wert gelöscht: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [VLC Updater]
[#] Wert mit Neustart gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [VLC Updater]
[#] Wert mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Run [VLC Updater]
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
[-] Wert gelöscht: HKCU\Software\AM [Startfenster Symbol]
[-] Wert gelöscht: HKCU\Software\AM [VLC Updater]


***** [ Browser ] *****



*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: "Prefetch" Dateien gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Firewall Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [7798 Bytes] - [04/04/2017 18:51:34]
C:\AdwCleaner\AdwCleaner[S0].txt - [7460 Bytes] - [04/04/2017 18:50:30]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [7944 Bytes] ##########
         
Schritt 2
Code:
ATTFilter
Malwarebytes
www.malwarebytes.com

-Protokolldetails-
Scan-Datum: 04.04.17
Scan-Zeit: 18:57
Protokolldatei: mbam.txt
Administrator: Ja

-Softwaredaten-
Version: 3.0.6.1469
Komponentenversion: 1.0.96
Version des Aktualisierungspakets: 1.0.1659
Lizenz: Testversion

-Systemdaten-
Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: DESKTOP-4N5ED6S\Torsten Wetzel

-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Ergebnis: Abgeschlossen
Gescannte Objekte: 418079
Abgelaufene Zeit: 1 Min., 58 Sek.

-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)

Modul: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 1
PUP.Optional.StartFenster, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\djhangopedggnlnicpbjklghlckmndge, In Quarantäne, [2696], [354303],1.0.1659

Registrierungswert: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Daten-Stream: 0
(keine bösartigen Elemente erkannt)

Ordner: 2
PUP.Optional.GreatDealz, C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default\jetpack\@greatdealz\simple-storage, In Quarantäne, [10327], [379670],1.0.1659
PUP.Optional.GreatDealz, C:\USERS\TORSTEN WETZEL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\I2BO6QT8.DEFAULT\JETPACK\@GREATDEALZ, In Quarantäne, [10327], [379670],1.0.1659

Datei: 1
PUP.Optional.GreatDealz, C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default\jetpack\@greatdealz\simple-storage\store.json, In Quarantäne, [10327], [379670],1.0.1659

Physischer Sektor: 0
(keine bösartigen Elemente erkannt)


(end)
         
Schritt 3 FRST.txt, erster Teil
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
durchgeführt von Torsten Wetzel (Administrator) auf DESKTOP-4N5ED6S (04-04-2017 19:05:58)
Gestartet von C:\Users\Torsten Wetzel\Desktop
Geladene Profile: Torsten Wetzel (Verfügbare Profile: Torsten Wetzel)
Platform: Windows 10 Pro Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igfxCUIService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SAII\CxUtilSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHDCPSvc.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHeciSvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igfxEM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor Corp.) C:\Windows\RtsCM64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
() C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Lenovo) C:\Users\Torsten Wetzel\AppData\Local\Apps\2.0\D21ACA6Y.VWW\ATZ7GCEH.6V1\lsb...tion_2d7b41b05b24775e_0001.0006_3b0a905c8de4f74a\LSB.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-11-20] (Microsoft Corporation)
HKLM\...\Run: [RtsFT] => C:\Windows\RTFTrack.EXE [5456392 2016-11-09] (Realtek semiconductor)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [28065728 2017-03-21] (Dropbox, Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [61944 2017-02-22] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [909744 2017-03-27] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6056bc2a-39ff-466c-9410-b3711373dd64}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{665c8fc1-86de-4d14-97a5-f6c989ebed8b}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com
SearchScopes: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001 -> DefaultScope {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.de/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001 -> {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.de/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-03-06] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-03-06] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-03-07] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-03-07] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: i2bo6qt8.default
FF ProfilePath: C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default [2017-04-04]
FF NewTab: Mozilla\Firefox\Profiles\i2bo6qt8.default -> about:home
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\i2bo6qt8.default -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\i2bo6qt8.default -> Google
FF Homepage: Mozilla\Firefox\Profiles\i2bo6qt8.default -> about:home
FF Extension: (Avira Browser Safety) - C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default\Extensions\abs@avira.com [2017-03-08]
FF Extension: (Site Deployment Checker) - C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default\features\{632f0dee-e6c6-4edc-ae07-ad3eab8291a9}\deployment-checker@mozilla.org.xpi [2017-03-25]
FF Extension: (Site Deployment Checker) - C:\Program Files (x86)\Mozilla Firefox\browser\features\deployment-checker@mozilla.org.xpi [2017-03-31] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_268.dll [2017-03-07] ()
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_268.dll [2017-03-07] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-03-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-03-07] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-02-17] (Adobe Systems Inc.)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lobonlhedgiilkfmbbbfhkaoefacipgj] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1115552 2017-03-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [487432 2017-03-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [487432 2017-03-27] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1519136 2017-03-27] (Avira Operations GmbH & Co. KG)
R2 AtherosSvc; C:\WINDOWS\system32\AdminService.exe [347064 2017-03-07] (Windows (R) Win 7 DDK provider)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [349560 2017-03-09] (Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3737792 2017-03-26] (Microsoft Corporation)
R2 connect2hotspot; C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe [100680 2017-02-08] (Lenovo)
R3 cphs; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHeciSvc.exe [301504 2017-03-07] (Intel Corporation)
R2 cplspcon; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHDCPSvc.exe [480200 2017-03-07] (Intel Corporation)
R2 CxUtilSvc; C:\Program Files\Conexant\SAII\CxUtilSvc.exe [132096 2016-05-12] (Conexant Systems, Inc.) [Datei ist nicht signiert]
R2 DAX2API; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [154816 2016-07-18] ()
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-07] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-07] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46408 2017-03-11] (Dropbox, Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igfxCUIService.exe [341952 2017-03-07] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [630048 2016-10-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-12-05] (Intel Corporation)
R2 LPlatSvc; C:\WINDOWS\system32\LPlatSvc.exe [710144 2017-03-07] (Lenovo.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 SAService; C:\WINDOWS\system32\SAsrv.exe [409088 2016-07-27] (Conexant Systems, Inc.) [Datei ist nicht signiert]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-11-20] (Microsoft Corporation)
R3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23416 2017-01-18] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [267864 2017-01-11] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-03-18] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [161824 2017-02-15] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [163976 2017-02-15] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-02-15] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-02-15] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [48584 2017-02-15] (Avira Operations GmbH & Co. KG)
R3 BHTPCRDR; C:\WINDOWS\System32\drivers\bhtpcrdr.sys [184856 2017-03-07] (BayHubTech/O2Micro )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-03-24] ()
R3 igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igdkmd64.sys [11039680 2017-03-07] (Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-04-04] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [111544 2017-04-04] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-04-04] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [251832 2017-04-04] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [92096 2017-04-04] (Malwarebytes)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 Qcamain10x64; C:\WINDOWS\system32\DRIVERS\Qcamain10x64.sys [2403256 2016-08-29] (Qualcomm Atheros, Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-23] (Realtek                                            )
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3150856 2016-11-09] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [64088 2017-01-11] (Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-04-04 19:03 - 2017-04-04 19:03 - 00001848 _____ C:\Users\Torsten Wetzel\Desktop\mbam.txt
2017-04-04 18:56 - 2017-04-04 19:02 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-04-04 18:56 - 2017-04-04 19:02 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-04-04 18:56 - 2017-04-04 19:02 - 00092096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-04-04 18:56 - 2017-04-04 19:02 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-04-04 18:56 - 2017-04-04 18:56 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-04-04 18:56 - 2017-04-04 18:56 - 00001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-04-04 18:56 - 2017-04-04 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-04-04 18:56 - 2017-04-04 18:56 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-04-04 18:56 - 2017-04-04 18:56 - 00000000 ____D C:\Program Files\Malwarebytes
2017-04-04 18:56 - 2017-03-24 04:10 - 00077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-04-04 18:54 - 2017-04-04 18:55 - 59272008 _____ (Malwarebytes ) C:\Users\Torsten Wetzel\Downloads\mb3-setup-consumer-3.0.6.1469-1096.exe
2017-04-04 18:48 - 2017-04-04 18:51 - 00000000 ____D C:\AdwCleaner
2017-04-04 18:45 - 2017-04-04 18:48 - 04089296 _____ C:\Users\Torsten Wetzel\Desktop\AdwCleaner_6.045.exe
2017-04-03 08:35 - 2017-04-03 08:57 - 00271992 _____ C:\TDSSKiller.3.1.0.12_03.04.2017_08.35.46_log.txt
2017-04-03 08:34 - 2017-04-03 08:35 - 04747704 _____ (AO Kaspersky Lab) C:\Users\Torsten Wetzel\Downloads\tdsskiller.exe
2017-04-03 08:33 - 2017-04-04 19:06 - 00021364 _____ C:\Users\Torsten Wetzel\Desktop\FRST.txt
2017-04-03 08:32 - 2017-04-03 08:32 - 00042406 _____ C:\Users\Torsten Wetzel\Desktop\Addition.txt
2017-04-03 08:31 - 2017-04-03 08:32 - 00042403 _____ C:\Users\Torsten Wetzel\Downloads\Addition.txt
2017-04-03 08:30 - 2017-04-04 19:05 - 00000000 ____D C:\FRST
2017-04-03 08:30 - 2017-04-03 08:32 - 00189343 _____ C:\Users\Torsten Wetzel\Downloads\FRST.txt
2017-04-03 06:47 - 2017-04-03 08:30 - 02424832 _____ (Farbar) C:\Users\Torsten Wetzel\Desktop\FRST64.exe
2017-04-01 00:34 - 2017-04-01 00:34 - 00084437 _____ C:\Users\Torsten Wetzel\Desktop\KA3_82.xlsx
2017-03-31 20:56 - 2017-03-31 20:57 - 01201256 _____ (Adobe Systems Incorporated) C:\Users\Torsten Wetzel\Downloads\flashplayer25_xa_install.exe
2017-03-25 02:24 - 2017-03-25 02:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-03-23 06:39 - 2017-03-27 13:47 - 00000000 ____D C:\Users\Torsten Wetzel\Desktop\Jill
2017-03-22 09:28 - 2017-03-22 09:28 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\LocalLow\Adobe
2017-03-22 09:28 - 2017-03-22 09:28 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\CEF
2017-03-21 10:21 - 2017-03-28 06:03 - 00013694 _____ C:\Users\Torsten Wetzel\Desktop\Vera8_2017.xlsx
2017-03-19 22:56 - 2017-03-23 06:59 - 00000000 ____D C:\Users\Torsten Wetzel\MediathekView
2017-03-18 23:17 - 2016-12-21 09:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-03-18 23:17 - 2016-12-21 06:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-03-18 21:18 - 2017-03-18 21:18 - 00002414 _____ C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-18 21:17 - 2017-03-18 21:17 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Conexant
2017-03-18 21:16 - 2017-03-19 02:53 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\ConnectedDevicesPlatform
2017-03-18 21:16 - 2017-03-18 21:16 - 00000020 ___SH C:\Users\Torsten Wetzel\ntuser.ini
2017-03-18 21:16 - 2017-03-18 21:16 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Comms
2017-03-18 20:45 - 2017-03-18 20:45 - 00000000 ____D C:\WINDOWS\UCI
2017-03-18 20:45 - 2017-03-18 20:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2017-03-18 20:45 - 2016-07-27 11:43 - 00409088 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\SASrv.exe
2017-03-18 20:44 - 2017-03-18 21:17 - 00000000 ____D C:\ProgramData\Conexant
2017-03-18 20:44 - 2017-03-18 20:44 - 01701376 _____ (TODO: <Company name>) C:\WINDOWS\SysWOW64\RebootPrompt.exe
2017-03-18 20:44 - 2017-03-18 20:44 - 00000102 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\ProgramData\UIU
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\ProgramData\Dolby
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\Program Files\Dolby
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\Program Files\CONEXANT
2017-03-18 20:44 - 2016-08-24 15:58 - 00004664 _____ C:\WINDOWS\system32\Drivers\CxSfPt.dat
2017-03-18 20:44 - 2015-09-16 17:10 - 00225624 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxAudMsg64.exe
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Vorlagen
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Startmenü
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2017-03-18 20:39 - 2017-03-18 20:39 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2017-03-18 20:39 - 2017-03-18 20:39 - 00007623 _____ C:\WINDOWS\diagerr.xml
2017-03-18 20:38 - 2017-03-18 20:38 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-03-18 20:38 - 2017-03-18 20:38 - 00003776 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2017-03-18 20:38 - 2017-03-18 20:38 - 00003552 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2017-03-18 20:38 - 2017-03-18 20:38 - 00003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-03-18 20:38 - 2017-03-18 20:38 - 00003332 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F9B501D5-1172-45E5-8976-7E66D83CE673}
2017-03-18 20:38 - 2017-03-18 20:38 - 00003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2017-03-18 20:38 - 2017-03-18 20:38 - 00003098 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-03-18 20:38 - 2017-03-18 20:38 - 00002772 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-18 20:38 - 2017-03-18 20:38 - 00002016 _____ C:\WINDOWS\System32\Tasks\RtsCM
2017-03-18 20:38 - 2017-03-18 20:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\TVT
2017-03-18 20:38 - 2017-03-18 20:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2017-03-18 20:38 - 2017-03-18 20:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2017-03-18 20:37 - 2017-03-18 20:37 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-03-18 20:35 - 2017-03-18 20:35 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-03-18 20:34 - 2017-03-19 22:56 - 00000000 ____D C:\Users\Torsten Wetzel
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Vorlagen
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Startmenü
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Netzwerkumgebung
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Lokale Einstellungen
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Eigene Dateien
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Druckumgebung
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Documents\Eigene Videos
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Documents\Eigene Musik
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Documents\Eigene Bilder
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\AppData\Local\Verlauf
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\AppData\Local\Anwendungsdaten
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Anwendungsdaten
2017-03-18 20:33 - 2017-03-18 20:35 - 00000000 ____D C:\Program Files\Intel
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____D C:\Program Files\Synaptics
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____D C:\Program Files\Realtek
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____D C:\Program Files\Common Files\Atheros
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-03-18 20:33 - 2017-03-07 18:09 - 00113648 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-03-18 20:32 - 2017-03-18 20:40 - 00000000 ___DC C:\WINDOWS\Panther
2017-03-18 20:31 - 2017-03-30 06:19 - 00000000 ____D C:\Windows.old
2017-03-18 20:30 - 2017-03-18 20:35 - 00000000 ____D C:\WINDOWS\CSC
2017-03-18 20:29 - 2017-03-18 20:29 - 23676416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 22565376 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 19411968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 18362368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 17198592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 13873664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 13441536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 13085184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 12178944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 09130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 08886976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSetup.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 08169536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 08125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 08076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07812096 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07786336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07468544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07220696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07216640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06667528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 06285824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05380608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05114368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04674360 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 04613120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04596224 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 04260576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04136448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04060672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04023000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03753984 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 03542016 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 03478528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03441664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03405312 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03370496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03289088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03202048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02996736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 02953216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02914816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02913144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02895872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02828384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02750384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02677544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02643456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02536288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02512304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02483200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02475008 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02446704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02363904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02287104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02277288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02256080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 02213760 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02189664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02170720 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02109952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 02084352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02003968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01989072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01981440 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01937920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01917440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01913856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01886344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01860288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01853224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01837056 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01780224 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01738560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01723560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01692160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01691136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01669984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01633792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01617760 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01595904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01589760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01576448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01571840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01570208 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01562112 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01536000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 01512448 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01507840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01493504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01477632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01473048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01470816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01454512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01416224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01415240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01400160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01399296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Pimstore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01369088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01366016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01362512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01357312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01354312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-03-18 20:29 - 2017-03-18 20:29 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01345024 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01344448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01336320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01328640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01320448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01301112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01299968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01294688 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01293152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01280512 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01277856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01266176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01260784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01202384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01196544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 01189376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01184256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01181024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 01172984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01157000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01154560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Pimstore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01137152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01133568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01123912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01117024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01069720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01063472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01054048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-03-18 20:29 - 2017-03-18 20:29 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01025536 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01016320 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01013760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01000280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-03-18 20:29 - 2017-03-18 20:29 - 00998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00992096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00989016 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00981376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00976184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00975872 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2017-03-18 20:29 - 2017-03-18 20:29 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00945152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00937472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00935936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmclient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00869848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00862208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00822624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00820224 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00818176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00813408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00794416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00781152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00779776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00779616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabletPC.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00753152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00752992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00746496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00741888 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_sr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00714752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00682808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00681312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00655200 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00646688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00643072 _____ (Microsoft Corporation) C:\WINDOWS\system32\main.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00635864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00635456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\main.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00596040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00590952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00578392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2017-03-18 20:29 - 2017-03-18 20:29 - 00571744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00557400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00549088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00545944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPTpm12.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00530480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-03-18 20:29 - 2017-03-18 20:29 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00524776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00513376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2017-03-18 20:29 - 2017-03-18 20:29 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00497416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00493912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00454592 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00450400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00448285 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-03-18 20:29 - 2017-03-18 20:29 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00443232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00432992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00424616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00418304 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-03-18 20:29 - 2017-03-18 20:29 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00409952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2017-03-18 20:29 - 2017-03-18 20:29 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00406368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00404320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00391168 _____ (Microsoft Corporation)
         

Alt 04.04.2017, 19:10   #11
Torsten_
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



FRST.txt zweiter Teil
Code:
ATTFilter
C:\WINDOWS\system32\oleacc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00387872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00377184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00374448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00372432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxclu.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00352760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00352096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00343904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00342456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00315232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00313568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00306800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscandui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-03-18 20:29 - 2017-03-18 20:29 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\accountaccessor.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00266544 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00265728 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ppcsnap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcuiu.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-03-18 20:29 - 2017-03-18 20:29 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscandui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00248992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00241496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00219488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00219040 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cemapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00201568 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00198856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinRtTracing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00192352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00190816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00187520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00184416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCCSEngineShared.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00178520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00173408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00168424 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00167848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Tabbtn.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00163752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00157536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00152416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCCSEngineShared.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.SecureAssessment.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00137936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00130912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00128648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00126568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfaudiocnv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveExt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityCommon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00122208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00119808 ____R (Microsoft Corporation) C:\WINDOWS\system32\SecureAssessmentHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersGPExt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00112120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00110944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReportingCSP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00106896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DuCsps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00091936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfaudiocnv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00090976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.UI.GameBar.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00086368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\tabcal.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00080224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dggpext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.UI.GameBar.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00063328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WPDShServiceObj.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothDesktopHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MultiDigiMon.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInputUap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\EAMProgressHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInputUap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00038768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00038240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00025088 _____ C:\WINDOWS\system32\GamePanelExternalHook.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00019968 _____ C:\WINDOWS\SysWOW64\GamePanelExternalHook.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CspCellularSettings.dll
2017-03-18 20:22 - 2017-03-18 20:22 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\WINDOWS\SysWOW64\SDA
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\WINDOWS\system32\SDA
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\Program Files\MSBuild
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-03-18 20:21 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-03-18 20:21 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-03-18 20:21 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-03-18 20:21 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-03-18 20:21 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-03-18 20:21 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-03-18 02:24 - 2017-03-19 12:40 - 00011922 ____H C:\Users\Torsten Wetzel\Desktop\~WRL0003.tmp
2017-03-17 06:56 - 2017-03-17 06:57 - 00000000 ____D C:\Users\Torsten Wetzel\Desktop\Programme
2017-03-14 19:53 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2017-03-14 19:53 - 2017-03-18 20:34 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2017-03-14 19:53 - 2017-03-14 19:53 - 00000000 ____D C:\Users\Torsten Wetzel\Documents\Freemake
2017-03-14 19:53 - 2017-03-14 19:53 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\FreemakeVideoConverter
2017-03-14 19:53 - 2017-03-14 19:53 - 00000000 ____D C:\ProgramData\Freemake
2017-03-14 19:53 - 2017-03-14 19:53 - 00000000 ____D C:\Program Files (x86)\Freemake
2017-03-14 19:52 - 2017-03-14 19:52 - 34480440 _____ (Ellora Assets Corporation ) C:\Users\Torsten Wetzel\Downloads\FreemakeVideoConverterFull.exe
2017-03-14 16:36 - 2017-04-01 18:46 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\dvdcss
2017-03-13 12:55 - 2017-03-13 12:55 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\CDex
2017-03-11 22:37 - 2017-03-11 22:37 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Winamp
2017-03-11 22:37 - 2017-03-11 22:37 - 00000000 ____D C:\Program Files (x86)\Winamp
2017-03-11 22:37 - 2009-09-04 18:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2017-03-11 22:37 - 2006-09-28 17:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2017-03-11 22:35 - 2017-03-11 22:36 - 12855384 _____ (Nullsoft, Inc.) C:\Users\Torsten Wetzel\Downloads\winamp5666_full_de-de.exe
2017-03-11 02:07 - 2017-03-11 13:36 - 00000000 ____D C:\Users\Torsten Wetzel\Desktop\Mathe
2017-03-11 01:17 - 2017-03-11 01:17 - 00046408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-03-11 01:17 - 2017-03-11 01:17 - 00045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-03-11 01:17 - 2017-03-11 01:17 - 00045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-03-11 01:17 - 2017-03-11 01:17 - 00045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-03-10 00:23 - 2017-03-10 00:23 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2017-03-09 15:33 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-03-09 15:33 - 2017-03-09 15:33 - 00000988 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk
2017-03-09 15:33 - 2017-03-09 15:33 - 00000057 _____ C:\ProgramData\Ament.ini
2017-03-09 15:33 - 2017-03-09 15:33 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\HpUpdate
2017-03-09 15:33 - 2017-03-09 15:33 - 00000000 ____D C:\ProgramData\HP
2017-03-09 15:33 - 2017-03-09 15:33 - 00000000 ____D C:\Program Files\HP
2017-03-09 15:33 - 2017-03-09 15:33 - 00000000 ____D C:\Program Files (x86)\HP
2017-03-09 15:33 - 2012-10-17 05:31 - 00741480 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\HPDiscoPM5912.dll
2017-03-09 15:32 - 2017-03-09 15:35 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\HP
2017-03-09 15:25 - 2017-03-09 15:31 - 123809984 _____ C:\Users\Torsten Wetzel\Downloads\OJ8600_1315-1.exe
2017-03-09 08:59 - 2017-03-09 08:59 - 00001219 _____ C:\Users\Torsten Wetzel\Desktop\Teaching.lnk
2017-03-09 00:07 - 2017-03-09 00:07 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2017-03-08 23:55 - 2017-03-08 23:55 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Avira
2017-03-08 23:51 - 2017-03-08 23:51 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2017-03-08 23:51 - 2017-02-15 17:55 - 00163976 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2017-03-08 23:51 - 2017-02-15 17:55 - 00161824 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2017-03-08 23:51 - 2017-02-15 17:55 - 00088488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2017-03-08 23:51 - 2017-02-15 17:55 - 00048584 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2017-03-08 23:51 - 2017-02-15 17:55 - 00044488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2017-03-08 23:48 - 2017-03-27 06:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-03-08 23:48 - 2017-03-08 23:51 - 00000000 ____D C:\ProgramData\Avira
2017-03-08 23:48 - 2017-03-08 23:51 - 00000000 ____D C:\Program Files (x86)\Avira
2017-03-08 21:30 - 2017-03-08 21:30 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\GeoGebra 5.0
2017-03-08 20:50 - 2017-04-03 06:40 - 00000337 _____ C:\Users\Torsten Wetzel\AppData\Local\Perfmon.PerfmonCfg
2017-03-08 07:32 - 2017-03-08 07:32 - 00000000 ____D C:\Users\Torsten Wetzel\Documents\Benutzerdefinierte Office-Vorlagen
2017-03-08 01:16 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2017-03-08 01:16 - 2017-03-08 01:16 - 00002586 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002583 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002579 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002558 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002536 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002533 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2017-03-08 01:13 - 2017-04-01 18:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-03-08 01:13 - 2017-03-08 01:13 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-03-08 00:27 - 2017-03-18 21:18 - 00000000 ___RD C:\Users\Torsten Wetzel\OneDrive
2017-03-08 00:25 - 2017-03-23 18:21 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Packages
2017-03-08 00:25 - 2017-03-22 09:28 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Adobe
2017-03-08 00:25 - 2017-03-10 17:00 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\VirtualStore
2017-03-08 00:25 - 2017-03-08 00:25 - 00016148 _____ C:\WINDOWS\system32\DESKTOP-4N5ED6S_defaultuser0_HistoryPrediction.bin
2017-03-08 00:25 - 2017-03-08 00:25 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\TileDataLayer
2017-03-08 00:25 - 2017-03-08 00:25 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Publishers
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Videos
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Programme
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Vorlagen
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Startmenü
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Dokumente
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Dokumente und Einstellungen
2017-03-08 00:21 - 2017-03-08 00:21 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-03-07 23:29 - 2017-03-07 23:29 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Tvsukernel
2017-03-07 23:25 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2017-03-07 23:25 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-03-07 23:07 - 2017-03-07 23:07 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Macromedia
2017-03-07 22:31 - 2016-10-28 03:22 - 00485032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-03-07 22:30 - 2017-03-18 20:35 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-03-07 22:30 - 2017-03-16 02:21 - 138634176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-03-07 22:25 - 2016-09-30 05:28 - 00161792 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2017-03-07 22:22 - 2016-09-07 06:22 - 00041472 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2017-03-07 22:17 - 2017-04-02 08:57 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\vlc
2017-03-07 20:25 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\gsview
2017-03-07 20:25 - 2017-03-07 20:25 - 00000000 ____D C:\Program Files (x86)\gsview6.0
2017-03-07 20:20 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeXnicCenter
2017-03-07 20:20 - 2017-03-07 20:20 - 00000000 ____D C:\Program Files (x86)\TeXnicCenter
2017-03-07 20:19 - 2017-03-18 15:45 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-03-07 20:18 - 2017-03-18 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activ Software
2017-03-07 20:18 - 2017-03-07 20:18 - 00000000 ____D C:\Users\Public\Documents\Activ Software
2017-03-07 20:18 - 2017-03-07 20:18 - 00000000 ____D C:\ProgramData\Promethean
2017-03-07 20:18 - 2017-03-07 20:18 - 00000000 ____D C:\ProgramData\Activ Software
2017-03-07 20:18 - 2017-03-07 20:18 - 00000000 ____D C:\Program Files (x86)\Activ Software
2017-03-07 20:09 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9
2017-03-07 20:09 - 2017-03-07 20:34 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\SumatraPDF
2017-03-07 20:09 - 2017-03-07 20:09 - 00001948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk
2017-03-07 20:09 - 2017-03-07 20:09 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\MiKTeX
2017-03-07 20:09 - 2017-03-07 20:09 - 00000000 ____D C:\Program Files\SumatraPDF
2017-03-07 20:08 - 2017-03-07 20:08 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\MiKTeX
2017-03-07 20:08 - 2017-03-07 20:08 - 00000000 ____D C:\ProgramData\MiKTeX
2017-03-07 20:07 - 2017-03-07 20:08 - 00000000 ____D C:\Program Files\MiKTeX 2.9
2017-03-07 19:48 - 2017-03-22 23:27 - 00000000 ____D C:\Users\Torsten Wetzel\.mediathek3
2017-03-07 19:47 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-03-07 19:47 - 2017-03-07 19:47 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-03-07 19:47 - 2017-03-07 19:47 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Sun
2017-03-07 19:47 - 2017-03-07 19:47 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\LocalLow\Sun
2017-03-07 19:47 - 2017-03-07 19:47 - 00000000 ____D C:\ProgramData\Oracle
2017-03-07 19:47 - 2017-03-07 19:47 - 00000000 ____D C:\Program Files (x86)\Java
2017-03-07 19:46 - 2017-03-07 19:46 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\LocalLow\Oracle
2017-03-07 19:44 - 2017-03-07 19:52 - 00000000 ____D C:\Program Files (x86)\MediathekView-13.0.1
2017-03-07 19:34 - 2017-03-27 17:51 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-03-07 19:34 - 2017-03-07 19:34 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2017-03-07 19:34 - 2017-03-07 19:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2017-03-07 19:33 - 2017-03-08 21:40 - 00000000 ____D C:\ProgramData\Adobe
2017-03-07 19:33 - 2017-03-07 19:33 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-03-07 19:32 - 2017-03-31 20:57 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Adobe
2017-03-07 19:31 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-03-07 19:31 - 2017-03-07 19:31 - 00000000 ____D C:\Program Files\VideoLAN
2017-03-07 19:28 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tinypic
2017-03-07 19:28 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGebra 5
2017-03-07 19:28 - 2017-03-07 19:28 - 00000000 ____D C:\Program Files (x86)\Tinypic
2017-03-07 19:28 - 2017-03-07 19:28 - 00000000 ____D C:\Program Files (x86)\GeoGebra 5.0
2017-03-07 19:22 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDex
2017-03-07 19:22 - 2017-03-07 19:22 - 00000000 ____D C:\Program Files (x86)\CDex
2017-03-07 19:03 - 2017-03-18 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-03-07 19:03 - 2017-03-07 19:03 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-03-07 19:03 - 2017-03-07 19:03 - 00000000 ____D C:\Users\Torsten Wetzel\Tracing
2017-03-07 19:03 - 2017-03-07 19:03 - 00000000 ____D C:\ProgramData\Skype
2017-03-07 18:59 - 2017-04-04 19:03 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\LocalLow\Mozilla
2017-03-07 18:59 - 2017-04-02 07:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-07 18:59 - 2017-04-02 07:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-03-07 18:59 - 2017-03-07 19:04 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Mozilla
2017-03-07 18:59 - 2017-03-07 18:59 - 00001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-03-07 18:59 - 2017-03-07 18:59 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla
2017-03-07 18:54 - 2017-03-07 18:54 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Macromedia
2017-03-07 18:48 - 2017-03-07 19:10 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Lenovo
2017-03-07 18:44 - 2017-03-10 19:54 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Skype
2017-03-07 18:34 - 2017-01-11 20:08 - 00803928 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2017-03-07 18:34 - 2017-01-11 20:08 - 00427608 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2017-03-07 18:34 - 2017-01-11 20:08 - 00343128 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo50-7.dll
2017-03-07 18:34 - 2017-01-11 20:08 - 00279128 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2017-03-07 18:34 - 2017-01-11 20:08 - 00064088 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2017-03-07 18:34 - 2017-01-11 20:07 - 00060504 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2017-03-07 18:34 - 2017-01-11 20:07 - 00057432 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys
2017-03-07 18:34 - 2017-01-11 03:08 - 00002564 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mouse Properties (Touchpad Clickpad Trackpad TrackPoint Mouse Pointer Pointing Pad).lnk
2017-03-07 18:34 - 2017-01-05 14:39 - 00798728 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2017-03-07 18:32 - 2017-03-07 18:32 - 00000000 ____D C:\Users\Torsten Wetzel\Intel
2017-03-07 18:32 - 2017-03-07 18:32 - 00000000 ____D C:\ProgramData\Intel
2017-03-07 18:32 - 2017-03-07 18:32 - 00000000 ____D C:\Program Files\Lenovo
2017-03-07 18:31 - 2017-03-22 05:19 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-07 18:31 - 2017-03-18 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Connect2
2017-03-07 18:31 - 2016-08-29 16:37 - 02403256 _____ (Qualcomm Atheros, Inc.) C:\WINDOWS\system32\Drivers\Qcamain10x64.sys
2017-03-07 18:31 - 2016-08-29 16:29 - 01088096 _____ C:\WINDOWS\system32\Drivers\qca61x4_2_2.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00097210 _____ C:\WINDOWS\system32\Drivers\Data61x4_2_2.msc
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_6.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_5.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_4.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_3.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_2.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_1.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX.bin
2017-03-07 18:31 - 2016-08-23 05:19 - 00943112 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2017-03-07 18:31 - 2016-08-23 05:19 - 00082544 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-03-07 18:30 - 2016-11-09 17:54 - 05456392 _____ (Realtek semiconductor) C:\WINDOWS\RTFTrack.exe
2017-03-07 18:30 - 2016-11-09 17:54 - 03150856 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\rtsuvc.sys
2017-03-07 18:30 - 2016-11-09 17:54 - 00224000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtsCM64.exe
2017-03-07 18:30 - 2016-11-09 17:53 - 00560648 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtCamP.dll
2017-03-07 18:30 - 2016-11-09 17:53 - 00104456 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtCamO64.dll
2017-03-07 18:30 - 2016-11-09 17:51 - 00645640 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtCamP64.dll
2017-03-07 18:30 - 2016-11-09 17:40 - 01157563 _____ C:\WINDOWS\FTDataP.xml
2017-03-07 18:30 - 2016-11-09 17:40 - 00946032 _____ C:\WINDOWS\FTData.xml
2017-03-07 18:30 - 2016-11-09 17:40 - 00817241 _____ C:\WINDOWS\FTDataR1.xml
2017-03-07 18:30 - 2016-11-09 17:40 - 00817191 _____ C:\WINDOWS\FTDataR0.xml
2017-03-07 18:30 - 2016-11-09 17:40 - 00003034 _____ C:\WINDOWS\RtsCM64.xml
2017-03-07 18:25 - 2017-03-07 23:27 - 00000000 ____D C:\ProgramData\Lenovo
2017-03-07 18:25 - 2017-03-07 23:27 - 00000000 ____D C:\Program Files (x86)\Lenovo
2017-03-07 18:25 - 2017-03-07 18:25 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\LenovoServiceBridge
2017-03-07 18:24 - 2017-03-18 20:37 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-03-07 18:24 - 2017-03-07 18:24 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Apps\2.0
2017-03-07 18:17 - 2017-04-04 19:03 - 00000000 ___RD C:\Users\Torsten Wetzel\Dropbox
2017-03-07 18:15 - 2017-03-07 18:15 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\NetworkTiles
2017-03-07 18:13 - 2017-03-07 18:13 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Dropbox
2017-03-07 18:13 - 2017-03-07 18:13 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\PeerDistRepub
2017-03-07 18:12 - 2017-03-25 02:24 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-03-07 18:12 - 2017-03-18 20:17 - 00001262 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2017-03-07 18:12 - 2017-03-18 20:00 - 00001258 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2017-03-07 18:12 - 2017-03-10 19:52 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Dropbox
2017-03-07 18:12 - 2017-03-07 18:12 - 00000000 ____D C:\ProgramData\Dropbox
2017-03-07 18:10 - 2017-04-04 19:02 - 00000000 __SHD C:\Users\Torsten Wetzel\IntelGraphicsProfiles
2017-03-07 18:10 - 2017-03-07 18:32 - 00000000 ____D C:\Program Files (x86)\Intel
2017-03-07 18:10 - 2017-03-07 18:10 - 00000000 ____D C:\Intel
2017-03-07 18:09 - 2017-03-07 18:09 - 00560260 _____ C:\WINDOWS\system32\cp_resources.bin
2017-03-07 18:09 - 2017-03-07 18:09 - 00271344 _____ C:\WINDOWS\system32\igfxCPL.cpl
2017-03-07 18:09 - 2017-03-07 18:09 - 00141296 _____ C:\WINDOWS\SysWOW64\libEGL.dll
2017-03-07 18:09 - 2017-03-07 18:09 - 00113648 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2017-03-07 18:09 - 2017-03-07 18:09 - 00112112 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll
2017-03-07 18:09 - 2017-03-07 18:09 - 00104432 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2017-03-07 18:09 - 2017-03-07 18:09 - 00101360 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 01287168 _____ (BayHubTech/O2Micro International) C:\WINDOWS\SysWOW64\bhtv5Icon.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 01287168 _____ (BayHubTech/O2Micro International) C:\WINDOWS\system32\bhtv5Icon.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00710144 _____ (Lenovo.) C:\WINDOWS\system32\LPlatSvc.exe
2017-03-07 18:08 - 2017-03-07 18:08 - 00601960 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btfilter.sys
2017-03-07 18:08 - 2017-03-07 18:08 - 00347064 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\AdminService.exe
2017-03-07 18:08 - 2017-03-07 18:08 - 00344680 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo50-4.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00191504 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\BtContextMenu.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00190480 _____ (Qualcomm Atheros Communications Inc.) C:\WINDOWS\system32\btcoinst.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00184856 _____ (BayHubTech/O2Micro ) C:\WINDOWS\system32\Drivers\bhtpcrdr.sys
2017-03-07 18:08 - 2017-03-07 18:08 - 00180736 _____ (Lenovo.) C:\WINDOWS\system32\ibmpmsvc.exe
2017-03-07 18:08 - 2017-03-07 18:08 - 00088064 _____ (Lenovo.) C:\WINDOWS\system32\ibmpmctl.exe
2017-03-07 18:08 - 2017-03-07 18:08 - 00082232 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\ibmpmdrv.sys
2017-03-07 18:08 - 2017-03-07 18:08 - 00058488 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000200.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00058368 _____ (Lenovo.) C:\WINDOWS\system32\tpinspm.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00057592 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000300.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00039064 _____ C:\WINDOWS\system32\Drivers\AthrBT_TF_0x00000302.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00034996 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000302.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00019984 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\BtContextMenu.dll.muien-US
2017-03-07 18:08 - 2017-03-07 18:08 - 00001982 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000302_48_NFA354A_10db.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001982 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000302_48.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001969 _____ C:\WINDOWS\system32\Drivers\ramps_TF_0x00000302_48_NFA435_10dbm.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001969 _____ C:\WINDOWS\system32\Drivers\ramps_TF_0x00000302_48.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001890 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000300_48_NFA435_10db.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001890 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000300_48.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001859 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000200_48_NFA354.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001859 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000200_48.dfu
2017-03-07 18:08 - 2017-01-11 20:08 - 00064088 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2017-03-07 18:08 - 2017-01-11 20:07 - 00923224 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2017-03-07 18:08 - 2014-01-30 19:17 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2017-03-07 18:04 - 2017-03-07 18:05 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\MicrosoftEdge

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-04-04 19:02 - 2016-11-20 23:36 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-04 19:02 - 2016-07-16 08:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-04-04 18:58 - 2016-11-20 23:46 - 01968448 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-04 18:58 - 2016-11-20 23:00 - 00770142 _____ C:\WINDOWS\system32\perfh007.dat
2017-04-04 18:58 - 2016-11-20 23:00 - 00164736 _____ C:\WINDOWS\system32\perfc007.dat
2017-04-04 18:43 - 2016-11-20 14:36 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-04-04 08:44 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-03 06:21 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-25 23:17 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-03-23 16:55 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-03-21 00:43 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-03-19 11:31 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2017-03-19 02:51 - 2016-11-20 14:36 - 00342056 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-03-18 23:18 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-03-18 21:16 - 2016-11-20 23:50 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-03-18 20:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2017-03-18 20:40 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT
2017-03-18 20:39 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-03-18 20:39 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration
2017-03-18 20:39 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-03-18 20:38 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries
2017-03-18 20:37 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-03-18 20:37 - 2015-07-10 11:47 - 00000000 ____D C:\Users\Default.migrated
2017-03-18 20:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-03-18 20:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-03-18 20:35 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-03-18 20:34 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-03-18 20:32 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___RD C:\Program Files\Windows Defender
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\setup
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Provisioning
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-03-18 20:30 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-03-18 20:30 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-03-18 20:30 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\servicing
2017-03-18 20:29 - 2016-11-20 23:40 - 02717184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-03-18 20:21 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-03-18 20:21 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-03-10 07:17 - 2016-07-16 13:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-03-10 07:17 - 2016-07-16 13:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-07 22:04 - 2015-07-10 05:36 - 00635904 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2017-03-07 22:04 - 2015-07-10 05:36 - 00014848 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2017-03-07 18:09 - 2016-11-20 23:27 - 00104432 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2017-03-08 20:50 - 2017-04-03 06:40 - 0000337 _____ () C:\Users\Torsten Wetzel\AppData\Local\Perfmon.PerfmonCfg
2017-03-09 15:33 - 2017-03-09 15:33 - 0000057 _____ () C:\ProgramData\Ament.ini
2017-03-18 20:44 - 2017-03-18 20:44 - 0000102 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc

Einige Dateien in TEMP:
====================
2017-03-30 15:30 - 2017-03-30 15:30 - 16374784 ____N () C:\Users\Torsten Wetzel\AppData\Local\Temp\javagiac0.1884250056409238.dll
2017-04-01 11:17 - 2017-04-01 11:17 - 16375296 ____N () C:\Users\Torsten Wetzel\AppData\Local\Temp\javagiac0.3377067164860553.dll
2017-03-20 18:27 - 2017-03-20 18:27 - 16373248 ____N () C:\Users\Torsten Wetzel\AppData\Local\Temp\javagiac0.48676446104824433.dll

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-03-29 07:56

==================== Ende von FRST.txt ============================
         

Alt 04.04.2017, 19:12   #12
Torsten_
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



Addition.txt
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-03-2017
durchgeführt von Torsten Wetzel (04-04-2017 19:06:36)
Gestartet von C:\Users\Torsten Wetzel\Desktop
Windows 10 Pro Version 1607 (X64) (2017-03-18 18:40:12)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3849580528-1159643680-2895358133-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3849580528-1159643680-2895358133-503 - Limited - Disabled)
Gast (S-1-5-21-3849580528-1159643680-2895358133-501 - Limited - Disabled)
Torsten Wetzel (S-1-5-21-3849580528-1159643680-2895358133-1001 - Administrator - Enabled) => C:\Users\Torsten Wetzel

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

ActivInspire Core Resources (DEU) v1 (HKLM-x32\...\{06C9F624-9F53-4C89-9720-1601A295769A}) (Version: 1.6.3 - Promethean)
ActivInspire Help (DEU) v1 (HKLM-x32\...\{B18A62F5-296F-4BC4-B8DD-A9FB16EE9106}) (Version: 1.6.3 - Promethean)
ActivInspire HWR Resources (DEU) v1 (HKLM-x32\...\{CB2158F5-B05D-41BF-B8F8-05A85695BA4E}) (Version: 1.7.1 - Promethean)
ActivInspire v2 (HKLM-x32\...\{80FD4FE1-89A4-408F-9EE3-57B916AA345C}) (Version: 2.9.66777 - Promethean)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM-x32\...\{9BFB1FAB-8FC4-4FAA-9B2D-2B121834B659}) (Version: 11.3.300.268 - Adobe Systems Incorporated)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.25.172 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{0b46d918-af4f-4612-8076-5c0ae67cb2aa}) (Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG) Hidden
CDex - Digital Audio CD Extractor and Converter (HKLM-x32\...\CDex) (Version: 1.82.0.2016 - CDex.mu)
Dolby Audio X2 Windows API SDK (HKLM\...\{2A027A37-B09B-44FB-B1C9-2DD6BA0014E8}) (Version: 0.7.2.61 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D765CF7F-14F9-4C80-B06C-10E68F10EBCC}) (Version: 0.7.2.62 - Dolby Laboratories, Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 22.4.24 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.65.1 - Dropbox, Inc.) Hidden
GeoGebra 5 (HKLM-x32\...\GeoGebra 5) (Version: 5.0.338.0 - International GeoGebra Institute)
gsview (HKLM\...\gsview 6.0) (Version: 6.0 - Artifex Software Inc.)
HP Officejet Pro 8600 - Grundlegende Software für das Gerät (HKLM\...\{D2D05FDB-4EDA-462D-8DB6-E0B9AD4FA25F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet Pro 8600 Hilfe (HKLM-x32\...\{FDE820DD-CC88-4395-AD5C-801365B8F316}) (Version: 28.0.0 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{AAE126B3-95C5-49E1-A590-7B5F6EDC7D60}) (Version: 12.5.32.203 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1045 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4550 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Lenovo Anzeige am Bildschirm (HKLM\...\OnScreenDisplay) (Version: 8.85.03 - Lenovo)
Lenovo Power Management Driver (Version: 1.67.12.16 - Lenovo) Hidden
Lenovo Service Bridge (HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\...\dda9ca0b023f4c56) (Version: 1.6.6.0 - Lenovo)
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0045 - Lenovo)
Malwarebytes Version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Microsoft Office Professional Plus 2016 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 16.0.7870.2031 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft Visual C++ 2017 RC Redistributable (x86) - 14.10.24728 (HKLM-x32\...\{38602f72-a7f8-456b-84e5-6e200dc99917}) (Version: 14.10.24728.0 - Microsoft Corporation)
MiKTeX 2.9 (HKLM\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org)
Mozilla Firefox 52.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 52.0.2 (x86 de)) (Version: 52.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2.6291 - Mozilla)
Mozilla Thunderbird 45.7.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.7.1 (x86 de)) (Version: 45.7.1 - Mozilla)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.104 - Skype Technologies S.A.)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version:  - )
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001_Classes\CLSID\{3D3B1846-CC43-42AE-BFF9-D914083C2BA3}\InprocServer32 -> C:\Program Files\SumatraPDF\PdfPreview.dll ()
CustomCLSID: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001_Classes\CLSID\{55808EA8-81FE-43c6-AAE8-1D8149F941D3}\InprocServer32 -> C:\Program Files\SumatraPDF\PdfFilter.dll ()

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {06B0A62D-21C3-42BA-B3AC-643E3F58B366} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-03-26] (Microsoft Corporation)
Task: {11E45528-799F-449D-BBA4-2600399DD9ED} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-01-18] ()
Task: {1F695C29-93B6-47CD-ACE8-6B9F39E8B8AF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {3BBA31E3-CCA7-44A7-B538-719249B9E6CE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {4E03FEBF-0D36-4AC6-A1B5-6AE4886742BC} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-26] (Microsoft Corporation)
Task: {50925598-0CE7-41F5-BFC4-2BBCAB2FFCC3} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [2016-07-05] (Conexant Systems, Inc.)
Task: {52EDDA8C-4415-4A52-817A-526BED4B89B5} - System32\Tasks\RtsCM => C:\WINDOWS\RtsCM64.exe [2016-11-09] (Realtek Semiconductor Corp.)
Task: {5672E1C3-C0DD-49FF-9161-4F51D20A5C56} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-01-18] ()
Task: {702E0E9A-07F8-44B4-96EC-09F8494884A9} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-03-07] (Dropbox, Inc.)
Task: {74109E6B-2D31-4A86-A5F6-D65A14B1E811} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-10-13] (Intel(R) Corporation)
Task: {7DB49258-63F2-4D39-908D-0A2D13C84D16} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-03-07] (Dropbox, Inc.)
Task: {85EAAE1F-7FA7-49ED-8796-CBE345676D1A} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo)
Task: {9660522C-043F-4AD6-A25A-D58E071C5649} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {9C2482E1-9C26-4146-8C52-CD98A2125A06} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-07] (Adobe Systems Incorporated)
Task: {9C24C0DB-705E-42F2-A3A8-9A82CA6ED272} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [2016-07-05] (Conexant Systems, Inc.)
Task: {B0F501F5-AA60-4139-A753-E27ABA424C5F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-03-26] (Microsoft Corporation)
Task: {DA914C6F-CE65-4E1E-A39E-4C70DE2F80FE} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-3849580528-1159643680-2895358133-1001 => Rundll32.exe dfshim.dll,ShOpenVerbShortcut C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {E1E675DD-9AD7-43CE-9B1E-52B4D23AA553} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-26] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2017-04-04 18:56 - 2017-03-24 04:09 - 02271520 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-04-04 18:56 - 2017-03-24 04:10 - 02267600 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-11-20 23:06 - 2016-11-20 23:06 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-07-18 11:39 - 2016-07-18 11:39 - 00154816 _____ () C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
2017-03-07 23:25 - 2017-01-18 17:36 - 00023416 _____ () C:\Program Files (x86)\Lenovo\System Update\SUService.exe
2017-03-18 21:49 - 2017-03-18 21:50 - 00055808 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11701.1001.79.0_x64__8wekyb3d8bbwe\WinStoreTasksWrapper.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00114176 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Dss.BackgroundTask.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00115712 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\DeviceSideServicesActionUriHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00522752 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.NodeWinrtWrap.dll
2016-07-16 13:43 - 2016-11-20 23:25 - 00040448 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\winrt-projections\bin\Winrt_Projections.node
2016-07-16 13:43 - 2016-11-20 23:26 - 00813056 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http\bin\NodeRT_Windows_Web_Http.node
2016-07-16 13:43 - 2016-11-20 23:25 - 00963584 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.headers\bin\NodeRT_Windows_Web_Http_Headers.node
2016-07-16 13:43 - 2016-11-20 23:25 - 00249344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.filters\bin\NodeRT_Windows_Web_Http_Filters.node
2016-07-16 13:43 - 2016-11-20 23:26 - 00572416 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.storage.streams\bin\NodeRT_Windows_Storage_Streams.node
2016-07-16 13:43 - 2016-11-20 23:26 - 00403968 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.foundation\bin\NodeRT_Windows_Foundation.node
2016-07-16 13:43 - 2016-11-20 23:26 - 00183296 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\nodert-buffer-utils\bin\NodeRT_Buffer_Utils.node
2016-07-16 13:43 - 2016-11-20 23:26 - 00288256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.cortana.pal\bin\NodeRT_Windows_Cortana_PAL.node
2017-03-18 21:50 - 2017-03-18 21:50 - 00077312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-03-18 21:50 - 2017-03-18 21:50 - 00182784 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-03-18 21:50 - 2017-03-18 21:50 - 41048064 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-03-18 21:50 - 2017-03-18 21:50 - 02236896 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\roottools.dll
2017-03-25 02:24 - 2017-03-21 20:06 - 00842560 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-03-07 18:13 - 2017-02-28 22:49 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-03-07 18:13 - 2017-02-28 22:49 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-03-07 18:13 - 2017-02-28 22:49 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00020824 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-03-07 18:13 - 2017-02-28 22:50 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-03-07 18:13 - 2017-02-28 22:49 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 01729360 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-03-25 02:24 - 2017-02-28 22:49 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-03-25 02:24 - 2017-02-28 22:50 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2017-03-25 02:24 - 2017-02-28 22:49 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-03-07 18:13 - 2017-02-28 22:52 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00060736 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00038712 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-03-25 02:24 - 2017-02-28 22:49 - 00392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-03-25 02:24 - 2017-02-28 22:52 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00246608 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-03-07 18:13 - 2017-02-28 22:51 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-03-07 18:13 - 2017-02-28 22:50 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 01972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00053072 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00069968 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00103232 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-03-25 02:24 - 2017-03-21 20:09 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-03-25 02:24 - 2017-02-28 22:47 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-03-25 02:24 - 2017-03-21 20:09 - 00033112 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
2017-03-25 02:24 - 2017-03-11 01:17 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2017-03-25 02:24 - 2017-03-21 20:09 - 00084288 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-03-07 18:13 - 2017-03-21 20:10 - 00030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-03-25 02:24 - 2017-02-28 22:56 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-03-25 02:24 - 2017-02-28 22:56 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-03-25 02:24 - 2017-03-21 20:10 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2017-03-07 18:13 - 2017-02-28 22:52 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-03-07 18:13 - 2017-03-21 20:10 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-03-25 02:24 - 2017-03-21 20:10 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2016-12-05 12:58 - 2016-12-05 12:58 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Torsten Wetzel\Desktop\Teaching.lnk:com.dropbox.attributes [168]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\...\localhost -> localhost

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-07-31 00:42 - 2015-07-31 00:39 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\...\StartupApproved\Run: => "HP Officejet Pro 8600 (NET)"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{20B4829B-10F1-45B1-BF4E-222568048A28}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{748DC95F-B059-4086-BCD0-03540FC3E850}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{AC7E7F1F-B313-4519-B964-D8B29911F5C3}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{5AD129B7-906C-498E-86B6-7E6E10AC9984}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (04/04/2017 07:02:31 PM) (Source: CertEnroll) (EventID: 87) (User: NT-AUTORITÄT)
Description: Fehler bei der SCEP-Zertifikatregistrierung für WORKGROUP\DESKTOP-4N5ED6S$ über https://STM-KeyId-1adb994ab58be57a0cc9b900e7851e1a43c08660.microsoftaik.azure.net/templates/Aik/scep:

SubmitDone
Submit(Request): Bad Request
{"Message":"No valid TPM EK/Platform cerificate provided in the TPM identity request message."}
Cache-Control: no-cache
Date: Tue, 04 Apr 2017 17:02:27 GMT
Pragma: no-cache
Content-Length: 95
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
x-ms-request-id: a5aaabbc-c5b1-4deb-b5c1-7d37e27fbbb7
Strict-Transport-Security: max-age=31536000;includeSubDomains
X-Content-Type-Options: nosniff
X-Powered-By: ASP.NET

Methode: POST(2609ms)
Phase: SubmitDone
Ungültige Anforderung (400). 0x80190190 (-2145844848 HTTP_E_STATUS_BAD_REQUEST)

Error: (04/04/2017 06:57:06 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile  1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (04/04/2017 06:52:58 PM) (Source: CertEnroll) (EventID: 87) (User: NT-AUTORITÄT)
Description: Fehler bei der SCEP-Zertifikatregistrierung für WORKGROUP\DESKTOP-4N5ED6S$ über https://STM-KeyId-1adb994ab58be57a0cc9b900e7851e1a43c08660.microsoftaik.azure.net/templates/Aik/scep:

SubmitDone
Submit(Request): Bad Request
{"Message":"No valid TPM EK/Platform cerificate provided in the TPM identity request message."}
Cache-Control: no-cache
Date: Tue, 04 Apr 2017 16:52:53 GMT
Pragma: no-cache
Content-Length: 95
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
x-ms-request-id: 9ef28cca-6d1e-467b-875b-43f4994bf0a9
Strict-Transport-Security: max-age=31536000;includeSubDomains
X-Content-Type-Options: nosniff
X-Powered-By: ASP.NET

Methode: POST(2515ms)
Phase: SubmitDone
Ungültige Anforderung (400). 0x80190190 (-2145844848 HTTP_E_STATUS_BAD_REQUEST)

Error: (04/04/2017 06:52:50 PM) (Source: CertEnroll) (EventID: 87) (User: NT-AUTORITÄT)
Description: Fehler bei der SCEP-Zertifikatregistrierung für WORKGROUP\DESKTOP-4N5ED6S$ über https://STM-KeyId-1adb994ab58be57a0cc9b900e7851e1a43c08660.microsoftaik.azure.net/templates/Aik/scep:

SubmitDone
Submit(Request): Bad Request
{"Message":"No valid TPM EK/Platform cerificate provided in the TPM identity request message."}
Cache-Control: no-cache
Date: Tue, 04 Apr 2017 16:52:45 GMT
Pragma: no-cache
Content-Length: 95
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
x-ms-request-id: ed2fee57-b5f9-4c50-b437-fae26932b783
Strict-Transport-Security: max-age=31536000;includeSubDomains
X-Content-Type-Options: nosniff
X-Powered-By: ASP.NET

Methode: POST(2093ms)
Phase: SubmitDone
Ungültige Anforderung (400). 0x80190190 (-2145844848 HTTP_E_STATUS_BAD_REQUEST)

Error: (04/04/2017 12:18:33 PM) (Source: CertEnroll) (EventID: 86) (User: NT-AUTORITÄT)
Description: Fehler bei der Initialisierung der SCEP-Zertifikatregistrierung für WORKGROUP\DESKTOP-4N5ED6S$ über https://STM-KeyId-1adb994ab58be57a0cc9b900e7851e1a43c08660.microsoftaik.azure.net/templates/Aik/scep:

GetCACaps

Methode: GET(93ms)
Phase: GetCACaps
Der Servername oder die Serveradresse konnte nicht verarbeitet werden. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (04/04/2017 09:24:39 AM) (Source: CertEnroll) (EventID: 86) (User: NT-AUTORITÄT)
Description: Fehler bei der Initialisierung der SCEP-Zertifikatregistrierung für WORKGROUP\DESKTOP-4N5ED6S$ über https://STM-KeyId-1adb994ab58be57a0cc9b900e7851e1a43c08660.microsoftaik.azure.net/templates/Aik/scep:

GetCACaps

Methode: GET(10157ms)
Phase: GetCACaps
Der Servername oder die Serveradresse konnte nicht verarbeitet werden. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (04/04/2017 08:55:32 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile  1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (04/04/2017 08:46:04 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-4N5ED6S)
Description: Bei der Aktivierung der App „Microsoft.ZuneVideo_8wekyb3d8bbwe!Microsoft.ZuneVideo“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (04/04/2017 08:46:05 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Video.UI.exe, Version 10.17022.1031.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 29e4

Startzeit: 01d2ad0eda326dc4

Beendigungszeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17022.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe

Berichts-ID: 5f5314a2-1902-11e7-8d8d-5800e3d0cddc

Vollständiger Name des fehlerhaften Pakets: Microsoft.ZuneVideo_10.17022.10311.0_x64__8wekyb3d8bbwe

Auf das fehlerhafte Paket bezogene Anwendungs-ID: Microsoft.ZuneVideo

Error: (04/03/2017 06:21:14 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile  1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.


Systemfehler:
=============
Error: (04/04/2017 07:02:34 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/04/2017 07:02:25 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/04/2017 07:02:25 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/04/2017 07:01:50 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/04/2017 06:53:17 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/04/2017 06:53:17 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/04/2017 06:53:16 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/04/2017 06:52:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Lenovo PM Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (04/04/2017 06:52:16 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/04/2017 06:51:40 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
Es wird bereits eine Instanz des Dienstes ausgeführt.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz
Prozentuale Nutzung des RAM: 19%
Installierter physikalischer RAM: 16287.05 MB
Verfügbarer physikalischer RAM: 13084.61 MB
Summe virtueller Speicher: 18719.05 MB
Verfügbarer virtueller Speicher: 15367.66 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:237.92 GB) (Free:69.91 GB) NTFS
Drive d: (FREE_DOS) (Fixed) (Total:1 GB) (Free:1 GB) FAT32
Drive f: (Volume) (Fixed) (Total:464.76 GB) (Free:209.49 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 6E477329)
Partition 1: (Active) - (Size=1 GB) - (Type=0B)
Partition 2: (Not Active) - (Size=464.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Ende von Addition.txt ============================
         
Alle Scans erledigt. Vielen Dank für deine Hilfe.

Grüße Torsten

Alt 04.04.2017, 21:03   #13
M-K-D-B
/// TB-Ausbilder
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



Servus,





Schritt 1
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument


Code:
ATTFilter
start
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
CMD: dir "%ProgramFiles%"
CMD: dir "%ProgramFiles(x86)%"
CMD: dir "%ProgramData%"
CMD: dir "%Appdata%"
CMD: dir "%LocalAppdata%"
CMD: dir "%CommonProgramFiles(x86)%"
CMD: dir "%CommonProgramW6432%"
CMD: dir "%UserProfile%"
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.







Schritt 2
Lade dir die passende Version von SystemLook vom folgenden Spiegel herunter und speichere das Tool auf dem Desktop:
SystemLook (32 bit) | SystemLook (64 bit)
  • Doppelklicke auf die SystemLook.exe, um das Tool zu starten.
  • Kopiere den Inhalt der folgenden Codebox in das Textfeld des Tools:

    Code:
    ATTFilter
    :filefind
    *VLC UPDATER*
    *Startfenster*
    *GreatDealz*
    *LavasoftTcpService*
    *Web Companion*
    
    :folderfind
    *VLC UPDATER*
    *Startfenster*
    *GreatDealz*
    *LavasoftTcpService*
    *Web Companion*
    
    :regfind
    VLC UPDATER
    Startfenster
    GreatDealz
    LavasoftTcpService
    Web Companion
             
  • Klicke nun auf den Button Look, um den Scan zu starten.
  • Der Suchlauf kann einige Zeit dauern.
  • Wenn der Suchlauf beendet ist, wird sich dein Editor mit den Ergebnissen öffnen, poste diese in deinen Thread.
  • Die Ergebnisse werden auch auf dem Desktop als SystemLook.txt gespeichert.







Schritt 3
  • Starte die FRST.exe erneut. Vergewissere dich, dass vor Addition.txt ein Haken gesetzt ist und drücke auf Untersuchen.
  • FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
  • Poste mir beide Logdateien mit deiner nächsten Antwort.






Bitte poste mit deiner nächsten Antwort
  • die Logdatei des FRST-Fix,
  • die Logdatei von SystemLook,
  • die beiden neuen Logdateien von FRST (FRST.txt und Addition.txt).
__________________
Gruß
M-K-D-B


==========================================================
offline vom 22.12.2018 bis 01.01.2019
==========================================================

Das Trojaner-Board unterstützen

Alt 04.04.2017, 22:07   #14
Torsten_
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



Vielen Dank für deine Hilfe nochmals. Schritt 1 ist erledigt.
Code:
ATTFilter
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-03-2017
durchgeführt von Torsten Wetzel (04-04-2017 21:39:47) Run:1
Gestartet von C:\Users\Torsten Wetzel\Desktop
Geladene Profile: Torsten Wetzel (Verfügbare Profile: Torsten Wetzel)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
start
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
CMD: dir "%ProgramFiles%"
CMD: dir "%ProgramFiles(x86)%"
CMD: dir "%ProgramData%"
CMD: dir "%Appdata%"
CMD: dir "%LocalAppdata%"
CMD: dir "%CommonProgramFiles(x86)%"
CMD: dir "%CommonProgramW6432%"
CMD: dir "%UserProfile%"
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
         
*****************

Prozesse erfolgreich geschlossen.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Wert erfolgreich entfernt

========= dir "%ProgramFiles%" =========

 Volume in Laufwerk C: hat keine Bezeichnung.
 Volumeseriennummer: 1C21-C0E3

 Verzeichnis von C:\Program Files

04.04.2017  18:56    <DIR>          .
04.04.2017  18:56    <DIR>          ..
18.03.2017  20:33    <DIR>          Common Files
18.03.2017  20:44    <DIR>          CONEXANT
18.03.2017  20:44    <DIR>          Dolby
09.03.2017  15:33    <DIR>          HP
18.03.2017  20:35    <DIR>          Intel
18.03.2017  20:30    <DIR>          Internet Explorer
07.03.2017  18:32    <DIR>          Lenovo
04.04.2017  18:56    <DIR>          Malwarebytes
08.03.2017  01:13    <DIR>          Microsoft Office 15
07.03.2017  20:08    <DIR>          MiKTeX 2.9
18.03.2017  20:21    <DIR>          MSBuild
18.03.2017  20:33    <DIR>          Realtek
18.03.2017  20:21    <DIR>          Reference Assemblies
07.03.2017  20:09    <DIR>          SumatraPDF
18.03.2017  20:33    <DIR>          Synaptics
07.03.2017  19:31    <DIR>          VideoLAN
18.03.2017  20:30    <DIR>          Windows Defender
20.11.2016  23:48    <DIR>          Windows Defender Advanced Threat Protection
18.03.2017  20:30    <DIR>          Windows Mail
20.11.2016  23:27    <DIR>          Windows Media Player
16.07.2016  13:47    <DIR>          Windows Multimedia Platform
18.03.2017  20:40    <DIR>          Windows NT
18.03.2017  20:30    <DIR>          Windows Photo Viewer
16.07.2016  13:47    <DIR>          Windows Portable Devices
16.07.2016  13:47    <DIR>          WindowsPowerShell
               0 Datei(en),              0 Bytes
              27 Verzeichnis(se), 73.597.186.048 Bytes frei

========= Ende von CMD: =========


========= dir "%ProgramFiles(x86)%" =========

 Volume in Laufwerk C: hat keine Bezeichnung.
 Volumeseriennummer: 1C21-C0E3

 Verzeichnis von C:\Program Files (x86)

04.04.2017  18:51    <DIR>          .
04.04.2017  18:51    <DIR>          ..
07.03.2017  20:18    <DIR>          Activ Software
07.03.2017  19:33    <DIR>          Adobe
08.03.2017  23:51    <DIR>          Avira
07.03.2017  19:22    <DIR>          CDex
04.04.2017  18:51    <DIR>          Common Files
25.03.2017  02:24    <DIR>          Dropbox
14.03.2017  19:53    <DIR>          Freemake
07.03.2017  19:28    <DIR>          GeoGebra 5.0
07.03.2017  20:25    <DIR>          gsview6.0
09.03.2017  00:07    <DIR>          Hewlett-Packard
09.03.2017  15:33    <DIR>          HP
07.03.2017  18:32    <DIR>          Intel
18.03.2017  20:30    <DIR>          Internet Explorer
07.03.2017  19:47    <DIR>          Java
07.03.2017  23:27    <DIR>          Lenovo
07.03.2017  19:52    <DIR>          MediathekView-13.0.1
01.04.2017  18:49    <DIR>          Microsoft Office
18.03.2017  20:35    <DIR>          Microsoft.NET
02.04.2017  07:24    <DIR>          Mozilla Firefox
02.04.2017  07:24    <DIR>          Mozilla Maintenance Service
07.03.2017  19:34    <DIR>          Mozilla Thunderbird
18.03.2017  20:21    <DIR>          MSBuild
18.03.2017  20:21    <DIR>          Reference Assemblies
07.03.2017  19:03    <DIR>          Skype
07.03.2017  20:20    <DIR>          TeXnicCenter
07.03.2017  19:28    <DIR>          Tinypic
11.03.2017  22:37    <DIR>          Winamp
18.03.2017  20:30    <DIR>          Windows Defender
18.03.2017  20:30    <DIR>          Windows Mail
20.11.2016  23:27    <DIR>          Windows Media Player
16.07.2016  13:47    <DIR>          Windows Multimedia Platform
16.07.2016  13:47    <DIR>          Windows NT
18.03.2017  20:30    <DIR>          Windows Photo Viewer
16.07.2016  13:47    <DIR>          Windows Portable Devices
16.07.2016  13:47    <DIR>          WindowsPowerShell
               0 Datei(en),              0 Bytes
              37 Verzeichnis(se), 73.597.128.704 Bytes frei

========= Ende von CMD: =========


========= dir "%ProgramData%" =========

 Volume in Laufwerk C: hat keine Bezeichnung.
 Volumeseriennummer: 1C21-C0E3

 Verzeichnis von C:\ProgramData

07.03.2017  20:18    <DIR>          Activ Software
08.03.2017  21:40    <DIR>          Adobe
09.03.2017  15:33                57 Ament.ini
08.03.2017  23:51    <DIR>          Avira
16.07.2016  13:47    <DIR>          Comms
18.03.2017  21:17    <DIR>          Conexant
18.03.2017  20:44    <DIR>          Dolby
07.03.2017  18:12    <DIR>          Dropbox
14.03.2017  19:53    <DIR>          Freemake
10.03.2017  00:23    <DIR>          Hewlett-Packard
09.03.2017  15:33    <DIR>          HP
07.03.2017  18:32    <DIR>          Intel
07.03.2017  23:27    <DIR>          Lenovo
04.04.2017  18:56    <DIR>          Malwarebytes
20.11.2016  23:50    <DIR>          Microsoft OneDrive
18.03.2017  20:44               102 Microsoft.SqlServer.Compact.400.64.bc
07.03.2017  20:08    <DIR>          MiKTeX
07.03.2017  19:47    <DIR>          Oracle
22.03.2017  05:19    <DIR>          Package Cache
07.03.2017  20:18    <DIR>          Promethean
21.03.2017  00:43    <DIR>          regid.1991-06.com.microsoft
07.03.2017  19:03    <DIR>          Skype
16.07.2016  13:47    <DIR>          SoftwareDistribution
18.03.2017  20:44    <DIR>          UIU
20.11.2016  23:37    <DIR>          USOPrivate
20.11.2016  23:37    <DIR>          USOShared
               2 Datei(en),            159 Bytes
              24 Verzeichnis(se), 73.597.067.264 Bytes frei

========= Ende von CMD: =========


========= dir "%Appdata%" =========

 Volume in Laufwerk C: hat keine Bezeichnung.
 Volumeseriennummer: 1C21-C0E3

 Verzeichnis von C:\Users\Torsten Wetzel\AppData\Roaming

18.03.2017  20:35    <DIR>          .
18.03.2017  20:35    <DIR>          ..
22.03.2017  09:28    <DIR>          Adobe
08.03.2017  23:55    <DIR>          Avira
07.03.2017  18:13    <DIR>          Dropbox
01.04.2017  18:46    <DIR>          dvdcss
08.03.2017  21:30    <DIR>          GeoGebra 5.0
09.03.2017  15:33    <DIR>          HpUpdate
07.03.2017  18:54    <DIR>          Macromedia
07.03.2017  20:09    <DIR>          MiKTeX
07.03.2017  18:59    <DIR>          Mozilla
10.03.2017  19:54    <DIR>          Skype
07.03.2017  20:34    <DIR>          SumatraPDF
07.03.2017  19:47    <DIR>          Sun
02.04.2017  08:57    <DIR>          vlc
11.03.2017  22:37    <DIR>          Winamp
               0 Datei(en),              0 Bytes
              16 Verzeichnis(se), 73.597.014.016 Bytes frei

========= Ende von CMD: =========


========= dir "%LocalAppdata%" =========

 Volume in Laufwerk C: hat keine Bezeichnung.
 Volumeseriennummer: 1C21-C0E3

 Verzeichnis von C:\Users\Torsten Wetzel\AppData\Local

04.04.2017  19:04    <DIR>          .
04.04.2017  19:04    <DIR>          ..
31.03.2017  20:57    <DIR>          Adobe
07.03.2017  18:24    <DIR>          Apps
13.03.2017  12:55    <DIR>          CDex
22.03.2017  09:28    <DIR>          CEF
18.03.2017  21:16    <DIR>          Comms
18.03.2017  21:17    <DIR>          Conexant
19.03.2017  02:53    <DIR>          ConnectedDevicesPlatform
08.03.2017  00:33    <DIR>          Diagnostics
10.03.2017  19:52    <DIR>          Dropbox
14.03.2017  19:53    <DIR>          FreemakeVideoConverter
09.03.2017  15:35    <DIR>          HP
07.03.2017  19:10    <DIR>          Lenovo
07.03.2017  18:25    <DIR>          LenovoServiceBridge
07.03.2017  23:07    <DIR>          Macromedia
18.03.2017  23:23    <DIR>          Microsoft
07.03.2017  18:05    <DIR>          MicrosoftEdge
07.03.2017  20:08    <DIR>          MiKTeX
07.03.2017  19:04    <DIR>          Mozilla
07.03.2017  18:15    <DIR>          NetworkTiles
23.03.2017  18:21    <DIR>          Packages
07.03.2017  18:13    <DIR>          PeerDistRepub
03.04.2017  06:40               337 Perfmon.PerfmonCfg
07.03.2017  18:25    <DIR>          Programs
08.03.2017  00:25    <DIR>          Publishers
04.04.2017  21:35    <DIR>          Temp
08.03.2017  00:25    <DIR>          TileDataLayer
07.03.2017  23:29    <DIR>          Tvsukernel
10.03.2017  17:00    <DIR>          VirtualStore
               1 Datei(en),            337 Bytes
              29 Verzeichnis(se), 73.596.956.672 Bytes frei

========= Ende von CMD: =========


========= dir "%CommonProgramFiles(x86)%" =========

 Volume in Laufwerk C: hat keine Bezeichnung.
 Volumeseriennummer: 1C21-C0E3

 Verzeichnis von C:\Program Files (x86)\Common Files

04.04.2017  18:51    <DIR>          .
04.04.2017  18:51    <DIR>          ..
07.03.2017  20:18    <DIR>          Activ Software
07.03.2017  19:33    <DIR>          Adobe
21.03.2017  00:43    <DIR>          DESIGNER
18.03.2017  20:33    <DIR>          Intel
07.03.2017  19:47    <DIR>          Java
21.03.2017  00:43    <DIR>          Microsoft Shared
07.03.2017  18:32    <DIR>          PostureAgent
11.03.2017  22:37    <DIR>          PX Storage Engine
16.07.2016  13:47    <DIR>          Services
07.03.2017  19:03    <DIR>          Skype
20.11.2016  22:59    <DIR>          System
               0 Datei(en),              0 Bytes
              13 Verzeichnis(se), 73.596.895.232 Bytes frei

========= Ende von CMD: =========


========= dir "%CommonProgramW6432%" =========

 Volume in Laufwerk C: hat keine Bezeichnung.
 Volumeseriennummer: 1C21-C0E3

 Verzeichnis von C:\Program Files\Common Files

18.03.2017  20:33    <DIR>          .
18.03.2017  20:33    <DIR>          ..
18.03.2017  20:33    <DIR>          Atheros
18.03.2017  20:35    <DIR>          microsoft shared
16.07.2016  13:47    <DIR>          Services
20.11.2016  22:59    <DIR>          System
               0 Datei(en),              0 Bytes
               6 Verzeichnis(se), 73.596.321.792 Bytes frei

========= Ende von CMD: =========


========= dir "%UserProfile%" =========

 Volume in Laufwerk C: hat keine Bezeichnung.
 Volumeseriennummer: 1C21-C0E3

 Verzeichnis von C:\Users\Torsten Wetzel

19.03.2017  22:56    <DIR>          .
19.03.2017  22:56    <DIR>          ..
04.04.2017  19:14    <DIR>          .mediathek3
18.03.2017  21:16    <DIR>          Contacts
04.04.2017  21:39    <DIR>          Desktop
23.03.2017  06:30    <DIR>          Documents
04.04.2017  19:05    <DIR>          Downloads
04.04.2017  19:03    <DIR>          Dropbox
04.04.2017  18:51    <DIR>          Favorites
07.03.2017  18:32    <DIR>          Intel
18.03.2017  21:16    <DIR>          Links
04.04.2017  19:15    <DIR>          MediathekView
18.03.2017  21:16    <DIR>          Music
18.03.2017  21:18    <DIR>          OneDrive
18.03.2017  21:16    <DIR>          Pictures
18.03.2017  21:16    <DIR>          Saved Games
18.03.2017  21:16    <DIR>          Searches
07.03.2017  19:03    <DIR>          Tracing
23.03.2017  18:31    <DIR>          Videos
               0 Datei(en),              0 Bytes
              19 Verzeichnis(se), 73.596.260.352 Bytes frei

========= Ende von CMD: =========


========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt


========= Ende von RemoveProxy: =========


========= ipconfig /flushdns =========


Windows-IP-Konfiguration

Der DNS-Aufl”sungscache wurde geleert.

========= Ende von CMD: =========


========= netsh winsock reset =========


Der Winsock-Katalog wurde zurckgesetzt.
Sie mssen den Computer neu starten, um den Vorgang abzuschlieáen.


========= Ende von CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 22215181 B
Java, Flash, Steam htmlcache => 714 B
Windows/system/drivers => 310061608 B
Edge => 52437782 B
Chrome => 0 B
Firefox => 375989675 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 128 B
LocalService => 23662 B
NetworkService => 824 B
Torsten Wetzel => 82279681 B

RecycleBin => 0 B
EmptyTemp: => 804 MB temporäre Dateien entfernt.

================================


Das System musste neu gestartet werden.

==== Ende von Fixlog 21:43:29 ====
         
Schritt 2 SystemLook.txt:
Code:
ATTFilter
SystemLook 30.07.11 by jpshortstuff
Log created at 21:47 on 04/04/2017 by Torsten Wetzel
Administrator - Elevation successful

========== filefind ==========

Searching for "*VLC UPDATER*"
No files found.

Searching for "*Startfenster*"
C:\AdwCleaner\quarantine\files\jehgfmoidqeqnffywoflijzcivjrzktd\Startfenster.lnk	--a---- 1232 bytes	[16:51 04/04/2017]	[17:30 07/03/2017] C2BD79F90F5FEC4E768A12DA0BB033EE

Searching for "*GreatDealz*"
No files found.

Searching for "*LavasoftTcpService*"
No files found.

Searching for "*Web Companion*"
No files found.

========== folderfind ==========

Searching for "*VLC UPDATER*"
No folders found.

Searching for "*Startfenster*"
No folders found.

Searching for "*GreatDealz*"
No folders found.

Searching for "*LavasoftTcpService*"
No folders found.

Searching for "*Web Companion*"
No folders found.

========== regfind ==========

Searching for "VLC UPDATER"
No data found.

Searching for "Startfenster"
No data found.

Searching for "GreatDealz"
No data found.

Searching for "LavasoftTcpService"
No data found.

Searching for "Web Companion"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{85A60A59-D3D8-468F-B598-FB4393789EF4}]
"FaviconPath"="C:\ProgramData\Lavasoft\Web Companion\Icons\google.ico"
[HKEY_USERS\S-1-5-21-3849580528-1159643680-2895358133-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{85A60A59-D3D8-468F-B598-FB4393789EF4}]
"FaviconPath"="C:\ProgramData\Lavasoft\Web Companion\Icons\google.ico"

Searching for "         "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WSMAN\Plugin\Microsoft.PowerShell]
"ConfigXML"="             <PlugInConfiguration xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Name="microsoft.powershell" Filename="%windir%\system32\pwrshplugin.dll" SDKVersion="2" XmlRenderingType="text" Enabled="true" >                 <InitializationParameters>                     <Param Name="PSVersion" Value="5.1"/>                 </InitializationParameters>                 <Resources>                     <Resource ResourceUri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell" SupportsOptions="true" ExactMatch="true">                         <Security xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Uri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell" ExactMatch="true" Sddl="O:NSG:BAD:P(A;;GA;;;BA)(A;;GA;;;IU)(A;;GA;;;RM)S:P(AU;FA;GA;;;WD)(AU;SA;GXGW;;;WD)"/>                         <Capability Type="Shell"/>               
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WSMAN\Plugin\Microsoft.PowerShell.Workflow]
"ConfigXML"="             <PlugInConfiguration xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Name="microsoft.powershell.workflow" Filename="%windir%\system32\pwrshplugin.dll" SDKVersion="2" XmlRenderingType="text" UseSharedProcess="true" ProcessIdleTimeoutSec="1209600" RunAsUser="" RunAsPassword="" AutoRestart="false"     Enabled="true" >                 <InitializationParameters>                     <Param Name="PSVersion" Value="5.1"/>                     <Param Name="AssemblyName" Value="Microsoft.PowerShell.Workflow.ServiceCore, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL"/>                     <Param Name="PSSessionConfigurationTypeName" Value="Microsoft.PowerShell.Workflow.PSWorkflowSessionConfiguration"/>                     <Param Name="SessionConfigurationData"                          Value="                       
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WSMAN\Plugin\Microsoft.PowerShell32]
"ConfigXML"="<PlugInConfiguration xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Name="microsoft.powershell32" Filename="%windir%\system32\pwrshplugin.dll" SDKVersion="2" XmlRenderingType="text" Architecture="32" Enabled="true" >                         <InitializationParameters>                             <Param Name="PSVersion" Value="5.1"/>                         </InitializationParameters>                         <Resources>                             <Resource ResourceUri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell32" SupportsOptions="true" ExactMatch="true">                                 <Security xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Uri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell32" ExactMatch="true" Sddl="O:NSG:BAD:P(A;;GA;;;BA)(A;;GA;;;IU)(A;;GA;;;RM)S:P(AU;FA;GA;;;WD)(AU;SA;GXGW;;;WD)"/>     

-= EOF =-
         
Schritt 3, FRST.txt
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
durchgeführt von Torsten Wetzel (Administrator) auf DESKTOP-4N5ED6S (04-04-2017 22:03:48)
Gestartet von C:\Users\Torsten Wetzel\Desktop
Geladene Profile: Torsten Wetzel (Verfügbare Profile: Torsten Wetzel)
Platform: Windows 10 Pro Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igfxCUIService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHDCPSvc.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe
(Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SAII\CxUtilSvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHeciSvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igfxEM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Realtek Semiconductor Corp.) C:\Windows\RtsCM64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
() C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Lenovo) C:\Users\Torsten Wetzel\AppData\Local\Apps\2.0\D21ACA6Y.VWW\ATZ7GCEH.6V1\lsb...tion_2d7b41b05b24775e_0001.0006_3b0a905c8de4f74a\LSB.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17022.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-11-20] (Microsoft Corporation)
HKLM\...\Run: [RtsFT] => C:\Windows\RTFTrack.EXE [5456392 2016-11-09] (Realtek semiconductor)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [28065728 2017-03-21] (Dropbox, Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [61944 2017-02-22] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [909744 2017-03-27] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6056bc2a-39ff-466c-9410-b3711373dd64}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{665c8fc1-86de-4d14-97a5-f6c989ebed8b}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKU\S-1-5-21-3849580528-1159643680-2895358133-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com
SearchScopes: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001 -> DefaultScope {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.de/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3849580528-1159643680-2895358133-1001 -> {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.de/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-03-06] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-03-06] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-03-07] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-03-07] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: i2bo6qt8.default
FF ProfilePath: C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default [2017-04-04]
FF NewTab: Mozilla\Firefox\Profiles\i2bo6qt8.default -> about:home
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\i2bo6qt8.default -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\i2bo6qt8.default -> Google
FF Homepage: Mozilla\Firefox\Profiles\i2bo6qt8.default -> about:home
FF Extension: (Avira Browser Safety) - C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default\Extensions\abs@avira.com [2017-03-08]
FF Extension: (Site Deployment Checker) - C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla\Firefox\Profiles\i2bo6qt8.default\features\{632f0dee-e6c6-4edc-ae07-ad3eab8291a9}\deployment-checker@mozilla.org.xpi [2017-03-25]
FF Extension: (Site Deployment Checker) - C:\Program Files (x86)\Mozilla Firefox\browser\features\deployment-checker@mozilla.org.xpi [2017-03-31] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_268.dll [2017-03-07] ()
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_268.dll [2017-03-07] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-03-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-03-07] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-02-17] (Adobe Systems Inc.)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lobonlhedgiilkfmbbbfhkaoefacipgj] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1115552 2017-03-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [487432 2017-03-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [487432 2017-03-27] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1519136 2017-03-27] (Avira Operations GmbH & Co. KG)
R2 AtherosSvc; C:\WINDOWS\system32\AdminService.exe [347064 2017-03-07] (Windows (R) Win 7 DDK provider)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [349560 2017-03-09] (Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3737792 2017-03-26] (Microsoft Corporation)
R2 connect2hotspot; C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe [100680 2017-02-08] (Lenovo)
R3 cphs; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHeciSvc.exe [301504 2017-03-07] (Intel Corporation)
R2 cplspcon; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\IntelCpHDCPSvc.exe [480200 2017-03-07] (Intel Corporation)
R2 CxUtilSvc; C:\Program Files\Conexant\SAII\CxUtilSvc.exe [132096 2016-05-12] (Conexant Systems, Inc.) [Datei ist nicht signiert]
R2 DAX2API; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [154816 2016-07-18] ()
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-07] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-07] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46408 2017-03-11] (Dropbox, Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igfxCUIService.exe [341952 2017-03-07] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [630048 2016-10-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-12-05] (Intel Corporation)
R2 LPlatSvc; C:\WINDOWS\system32\LPlatSvc.exe [710144 2017-03-07] (Lenovo.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 SAService; C:\WINDOWS\system32\SAsrv.exe [409088 2016-07-27] (Conexant Systems, Inc.) [Datei ist nicht signiert]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-11-20] (Microsoft Corporation)
R3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23416 2017-01-18] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [267864 2017-01-11] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-03-18] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [161824 2017-02-15] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [163976 2017-02-15] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-02-15] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-02-15] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [48584 2017-02-15] (Avira Operations GmbH & Co. KG)
R3 BHTPCRDR; C:\WINDOWS\System32\drivers\bhtpcrdr.sys [184856 2017-03-07] (BayHubTech/O2Micro )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-03-24] ()
R3 igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5aa7fd7c584002dd\igdkmd64.sys [11039680 2017-03-07] (Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-04-04] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [111544 2017-04-04] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-04-04] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [251832 2017-04-04] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [92096 2017-04-04] (Malwarebytes)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 Qcamain10x64; C:\WINDOWS\system32\DRIVERS\Qcamain10x64.sys [2403256 2016-08-29] (Qualcomm Atheros, Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-23] (Realtek                                            )
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3150856 2016-11-09] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [64088 2017-01-11] (Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-04-04 22:03 - 2017-04-04 22:04 - 00021458 _____ C:\Users\Torsten Wetzel\Desktop\FRST.txt
2017-04-04 22:03 - 2017-04-04 22:03 - 00000000 ____D C:\Users\Torsten Wetzel\Desktop\Neuer Ordner
2017-04-04 21:46 - 2017-04-04 21:46 - 00165376 _____ C:\Users\Torsten Wetzel\Desktop\SystemLook_x64.exe
2017-04-04 18:56 - 2017-04-04 21:44 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-04-04 18:56 - 2017-04-04 21:44 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-04-04 18:56 - 2017-04-04 21:44 - 00092096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-04-04 18:56 - 2017-04-04 21:44 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-04-04 18:56 - 2017-04-04 18:56 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-04-04 18:56 - 2017-04-04 18:56 - 00001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-04-04 18:56 - 2017-04-04 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-04-04 18:56 - 2017-04-04 18:56 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-04-04 18:56 - 2017-04-04 18:56 - 00000000 ____D C:\Program Files\Malwarebytes
2017-04-04 18:56 - 2017-03-24 04:10 - 00077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-04-04 18:54 - 2017-04-04 18:55 - 59272008 _____ (Malwarebytes ) C:\Users\Torsten Wetzel\Downloads\mb3-setup-consumer-3.0.6.1469-1096.exe
2017-04-04 18:48 - 2017-04-04 18:51 - 00000000 ____D C:\AdwCleaner
2017-04-04 18:45 - 2017-04-04 18:48 - 04089296 _____ C:\Users\Torsten Wetzel\Desktop\AdwCleaner_6.045.exe
2017-04-03 08:35 - 2017-04-03 08:57 - 00271992 _____ C:\TDSSKiller.3.1.0.12_03.04.2017_08.35.46_log.txt
2017-04-03 08:34 - 2017-04-03 08:35 - 04747704 _____ (AO Kaspersky Lab) C:\Users\Torsten Wetzel\Downloads\tdsskiller.exe
2017-04-03 08:31 - 2017-04-03 08:32 - 00042403 _____ C:\Users\Torsten Wetzel\Downloads\Addition.txt
2017-04-03 08:30 - 2017-04-04 22:03 - 00000000 ____D C:\FRST
2017-04-03 08:30 - 2017-04-03 08:32 - 00189343 _____ C:\Users\Torsten Wetzel\Downloads\FRST.txt
2017-04-03 06:47 - 2017-04-03 08:30 - 02424832 _____ (Farbar) C:\Users\Torsten Wetzel\Desktop\FRST64.exe
2017-04-01 00:34 - 2017-04-01 00:34 - 00084437 _____ C:\Users\Torsten Wetzel\Desktop\KA3_82.xlsx
2017-03-31 20:56 - 2017-03-31 20:57 - 01201256 _____ (Adobe Systems Incorporated) C:\Users\Torsten Wetzel\Downloads\flashplayer25_xa_install.exe
2017-03-25 02:24 - 2017-03-25 02:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-03-23 06:39 - 2017-04-04 19:24 - 00000000 ____D C:\Users\Torsten Wetzel\Desktop\Jill
2017-03-22 09:28 - 2017-03-22 09:28 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\LocalLow\Adobe
2017-03-22 09:28 - 2017-03-22 09:28 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\CEF
2017-03-21 10:21 - 2017-03-28 06:03 - 00013694 _____ C:\Users\Torsten Wetzel\Desktop\Vera8_2017.xlsx
2017-03-19 22:56 - 2017-04-04 19:15 - 00000000 ____D C:\Users\Torsten Wetzel\MediathekView
2017-03-18 23:17 - 2016-12-21 09:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-03-18 23:17 - 2016-12-21 06:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-03-18 21:18 - 2017-03-18 21:18 - 00002414 _____ C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-18 21:17 - 2017-03-18 21:17 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Conexant
2017-03-18 21:16 - 2017-03-19 02:53 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\ConnectedDevicesPlatform
2017-03-18 21:16 - 2017-03-18 21:16 - 00000020 ___SH C:\Users\Torsten Wetzel\ntuser.ini
2017-03-18 21:16 - 2017-03-18 21:16 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Comms
2017-03-18 20:45 - 2017-03-18 20:45 - 00000000 ____D C:\WINDOWS\UCI
2017-03-18 20:45 - 2017-03-18 20:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2017-03-18 20:45 - 2016-07-27 11:43 - 00409088 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\SASrv.exe
2017-03-18 20:44 - 2017-03-18 21:17 - 00000000 ____D C:\ProgramData\Conexant
2017-03-18 20:44 - 2017-03-18 20:44 - 01701376 _____ (TODO: <Company name>) C:\WINDOWS\SysWOW64\RebootPrompt.exe
2017-03-18 20:44 - 2017-03-18 20:44 - 00000102 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\ProgramData\UIU
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\ProgramData\Dolby
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\Program Files\Dolby
2017-03-18 20:44 - 2017-03-18 20:44 - 00000000 ____D C:\Program Files\CONEXANT
2017-03-18 20:44 - 2016-08-24 15:58 - 00004664 _____ C:\WINDOWS\system32\Drivers\CxSfPt.dat
2017-03-18 20:44 - 2015-09-16 17:10 - 00225624 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxAudMsg64.exe
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Vorlagen
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Startmenü
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2017-03-18 20:40 - 2017-03-18 20:40 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2017-03-18 20:39 - 2017-03-18 20:39 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2017-03-18 20:39 - 2017-03-18 20:39 - 00007623 _____ C:\WINDOWS\diagerr.xml
2017-03-18 20:38 - 2017-03-18 20:38 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-03-18 20:38 - 2017-03-18 20:38 - 00003776 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2017-03-18 20:38 - 2017-03-18 20:38 - 00003552 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2017-03-18 20:38 - 2017-03-18 20:38 - 00003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-03-18 20:38 - 2017-03-18 20:38 - 00003332 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F9B501D5-1172-45E5-8976-7E66D83CE673}
2017-03-18 20:38 - 2017-03-18 20:38 - 00003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2017-03-18 20:38 - 2017-03-18 20:38 - 00003098 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-03-18 20:38 - 2017-03-18 20:38 - 00002772 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-18 20:38 - 2017-03-18 20:38 - 00002016 _____ C:\WINDOWS\System32\Tasks\RtsCM
2017-03-18 20:38 - 2017-03-18 20:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\TVT
2017-03-18 20:38 - 2017-03-18 20:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2017-03-18 20:38 - 2017-03-18 20:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2017-03-18 20:37 - 2017-03-18 20:37 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-03-18 20:35 - 2017-03-18 20:35 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-03-18 20:34 - 2017-03-19 22:56 - 00000000 ____D C:\Users\Torsten Wetzel
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Vorlagen
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Startmenü
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Netzwerkumgebung
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Lokale Einstellungen
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Eigene Dateien
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Druckumgebung
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Documents\Eigene Videos
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Documents\Eigene Musik
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Documents\Eigene Bilder
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\AppData\Local\Verlauf
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\AppData\Local\Anwendungsdaten
2017-03-18 20:34 - 2017-03-18 20:34 - 00000000 _SHDL C:\Users\Torsten Wetzel\Anwendungsdaten
2017-03-18 20:33 - 2017-03-18 20:35 - 00000000 ____D C:\Program Files\Intel
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____D C:\Program Files\Synaptics
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____D C:\Program Files\Realtek
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 ____D C:\Program Files\Common Files\Atheros
2017-03-18 20:33 - 2017-03-18 20:33 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-03-18 20:33 - 2017-03-07 18:09 - 00113648 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-03-18 20:32 - 2017-03-18 20:40 - 00000000 ___DC C:\WINDOWS\Panther
2017-03-18 20:31 - 2017-03-30 06:19 - 00000000 ____D C:\Windows.old
2017-03-18 20:30 - 2017-03-18 20:35 - 00000000 ____D C:\WINDOWS\CSC
2017-03-18 20:29 - 2017-03-18 20:29 - 23676416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 22565376 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 19411968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 18362368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 17198592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 13873664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 13441536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 13085184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 12178944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 09130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 08886976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSetup.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 08169536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 08125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 08076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07812096 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07786336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07468544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07220696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 07216640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06667528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 06285824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05380608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05114368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04674360 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 04613120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04596224 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 04260576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04136448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04060672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 04023000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03753984 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 03542016 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 03478528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03441664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03405312 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03370496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03289088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03202048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02996736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 02953216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02914816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02913144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02895872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02828384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02750384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02677544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02643456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02536288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02512304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02483200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02475008 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02446704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02363904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02287104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02277288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02256080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 02213760 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02189664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02170720 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02109952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 02084352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 02003968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01989072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01981440 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01937920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01917440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01913856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01886344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01860288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01853224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01837056 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01780224 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01738560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01723560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01692160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01691136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01669984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01633792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01617760 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01595904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01589760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01576448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01571840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01570208 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01562112 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01536000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 01512448 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01507840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01493504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01477632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01473048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01470816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01454512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01416224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01415240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01400160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01399296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Pimstore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01369088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01366016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01362512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01357312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01354312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-03-18 20:29 - 2017-03-18 20:29 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01345024 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01344448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01336320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01328640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01320448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01301112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01299968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01294688 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01293152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01280512 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01277856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01266176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01260784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01202384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01196544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 01189376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01184256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01181024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 01172984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01157000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01154560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Pimstore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01137152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01133568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01123912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01117024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 01092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01069720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01063472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01054048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-03-18 20:29 - 2017-03-18 20:29 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01025536 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01016320 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01013760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 01000280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-03-18 20:29 - 2017-03-18 20:29 - 00998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00992096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00989016 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00981376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00976184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00975872 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2017-03-18 20:29 - 2017-03-18 20:29 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00945152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00937472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00935936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmclient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00869848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00862208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00822624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00820224 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00818176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00813408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00794416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00781152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00779776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00779616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabletPC.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00753152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00752992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00746496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00741888 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_sr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00714752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00682808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00681312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00655200 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00646688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00643072 _____ (Microsoft Corporation) C:\WINDOWS\system32\main.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00635864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00635456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\main.cpl
2017-03-18 20:29 - 2017-03-18 20:29 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00596040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00590952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00579072 _____ (Microsoft Corporation)
         
Fortsetzung folgt ...

Alt 04.04.2017, 22:07   #15
Torsten_
 
Great Dealz und Preisvergleich Toolbar bei Firefox - Standard

Great Dealz und Preisvergleich Toolbar bei Firefox



Code:
ATTFilter
C:\WINDOWS\system32\ddraw.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00578392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2017-03-18 20:29 - 2017-03-18 20:29 - 00571744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00557400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00549088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00545944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPTpm12.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00530480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-03-18 20:29 - 2017-03-18 20:29 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00524776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00513376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2017-03-18 20:29 - 2017-03-18 20:29 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00497416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00493912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00454592 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00450400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00448285 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-03-18 20:29 - 2017-03-18 20:29 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00443232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00432992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00424616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00418304 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-03-18 20:29 - 2017-03-18 20:29 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00409952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2017-03-18 20:29 - 2017-03-18 20:29 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00406368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00404320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00387872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00377184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00374448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00372432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxclu.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00352760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00352096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00343904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00342456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00315232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00313568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00306800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscandui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-03-18 20:29 - 2017-03-18 20:29 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\accountaccessor.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00266544 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00265728 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ppcsnap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcuiu.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-03-18 20:29 - 2017-03-18 20:29 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscandui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00248992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00241496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00219488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00219040 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cemapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00201568 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00198856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinRtTracing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00192352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00190816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00187520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00184416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2017-03-18 20:29 - 2017-03-18 20:29 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCCSEngineShared.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00178520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00173408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00168424 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00167848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Tabbtn.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00163752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00157536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00152416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCCSEngineShared.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.SecureAssessment.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00137936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00130912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00128648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00126568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfaudiocnv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveExt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityCommon.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00122208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00119808 ____R (Microsoft Corporation) C:\WINDOWS\system32\SecureAssessmentHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersGPExt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00112120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00110944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReportingCSP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00106896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DuCsps.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfui.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00091936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfaudiocnv.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00090976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.UI.GameBar.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00086368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\tabcal.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00080224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dggpext.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.UI.GameBar.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00063328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WPDShServiceObj.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothDesktopHandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MultiDigiMon.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInputUap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\EAMProgressHandler.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInputUap.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00038768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00038240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2017-03-18 20:29 - 2017-03-18 20:29 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00025088 _____ C:\WINDOWS\system32\GamePanelExternalHook.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2017-03-18 20:29 - 2017-03-18 20:29 - 00019968 _____ C:\WINDOWS\SysWOW64\GamePanelExternalHook.dll
2017-03-18 20:29 - 2017-03-18 20:29 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CspCellularSettings.dll
2017-03-18 20:22 - 2017-03-18 20:22 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\WINDOWS\SysWOW64\SDA
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\WINDOWS\system32\SDA
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\Program Files\MSBuild
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-03-18 20:21 - 2017-03-18 20:21 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-03-18 20:21 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-03-18 20:21 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-03-18 20:21 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-03-18 20:21 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-03-18 20:21 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-03-18 20:21 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-03-18 02:24 - 2017-03-19 12:40 - 00011922 ____H C:\Users\Torsten Wetzel\Desktop\~WRL0003.tmp
2017-03-17 06:56 - 2017-03-17 06:57 - 00000000 ____D C:\Users\Torsten Wetzel\Desktop\Programme
2017-03-14 19:53 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2017-03-14 19:53 - 2017-03-18 20:34 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2017-03-14 19:53 - 2017-03-14 19:53 - 00000000 ____D C:\Users\Torsten Wetzel\Documents\Freemake
2017-03-14 19:53 - 2017-03-14 19:53 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\FreemakeVideoConverter
2017-03-14 19:53 - 2017-03-14 19:53 - 00000000 ____D C:\ProgramData\Freemake
2017-03-14 19:53 - 2017-03-14 19:53 - 00000000 ____D C:\Program Files (x86)\Freemake
2017-03-14 19:52 - 2017-03-14 19:52 - 34480440 _____ (Ellora Assets Corporation ) C:\Users\Torsten Wetzel\Downloads\FreemakeVideoConverterFull.exe
2017-03-14 16:36 - 2017-04-01 18:46 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\dvdcss
2017-03-13 12:55 - 2017-03-13 12:55 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\CDex
2017-03-11 22:37 - 2017-03-11 22:37 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Winamp
2017-03-11 22:37 - 2017-03-11 22:37 - 00000000 ____D C:\Program Files (x86)\Winamp
2017-03-11 22:37 - 2009-09-04 18:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2017-03-11 22:37 - 2006-09-28 17:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2017-03-11 22:35 - 2017-03-11 22:36 - 12855384 _____ (Nullsoft, Inc.) C:\Users\Torsten Wetzel\Downloads\winamp5666_full_de-de.exe
2017-03-11 02:07 - 2017-03-11 13:36 - 00000000 ____D C:\Users\Torsten Wetzel\Desktop\Mathe
2017-03-11 01:17 - 2017-03-11 01:17 - 00046408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-03-11 01:17 - 2017-03-11 01:17 - 00045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-03-11 01:17 - 2017-03-11 01:17 - 00045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-03-11 01:17 - 2017-03-11 01:17 - 00045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-03-10 00:23 - 2017-03-10 00:23 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2017-03-09 15:33 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-03-09 15:33 - 2017-03-09 15:33 - 00000988 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk
2017-03-09 15:33 - 2017-03-09 15:33 - 00000057 _____ C:\ProgramData\Ament.ini
2017-03-09 15:33 - 2017-03-09 15:33 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\HpUpdate
2017-03-09 15:33 - 2017-03-09 15:33 - 00000000 ____D C:\ProgramData\HP
2017-03-09 15:33 - 2017-03-09 15:33 - 00000000 ____D C:\Program Files\HP
2017-03-09 15:33 - 2017-03-09 15:33 - 00000000 ____D C:\Program Files (x86)\HP
2017-03-09 15:33 - 2012-10-17 05:31 - 00741480 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\HPDiscoPM5912.dll
2017-03-09 15:32 - 2017-03-09 15:35 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\HP
2017-03-09 15:25 - 2017-03-09 15:31 - 123809984 _____ C:\Users\Torsten Wetzel\Downloads\OJ8600_1315-1.exe
2017-03-09 08:59 - 2017-03-09 08:59 - 00001219 _____ C:\Users\Torsten Wetzel\Desktop\Teaching.lnk
2017-03-09 00:07 - 2017-03-09 00:07 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2017-03-08 23:55 - 2017-03-08 23:55 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Avira
2017-03-08 23:51 - 2017-03-08 23:51 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2017-03-08 23:51 - 2017-02-15 17:55 - 00163976 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2017-03-08 23:51 - 2017-02-15 17:55 - 00161824 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2017-03-08 23:51 - 2017-02-15 17:55 - 00088488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2017-03-08 23:51 - 2017-02-15 17:55 - 00048584 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2017-03-08 23:51 - 2017-02-15 17:55 - 00044488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2017-03-08 23:48 - 2017-03-27 06:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-03-08 23:48 - 2017-03-08 23:51 - 00000000 ____D C:\ProgramData\Avira
2017-03-08 23:48 - 2017-03-08 23:51 - 00000000 ____D C:\Program Files (x86)\Avira
2017-03-08 21:30 - 2017-03-08 21:30 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\GeoGebra 5.0
2017-03-08 20:50 - 2017-04-03 06:40 - 00000337 _____ C:\Users\Torsten Wetzel\AppData\Local\Perfmon.PerfmonCfg
2017-03-08 07:32 - 2017-03-08 07:32 - 00000000 ____D C:\Users\Torsten Wetzel\Documents\Benutzerdefinierte Office-Vorlagen
2017-03-08 01:16 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2017-03-08 01:16 - 2017-03-08 01:16 - 00002586 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002583 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002579 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002558 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002536 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002533 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2017-03-08 01:16 - 2017-03-08 01:16 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2017-03-08 01:13 - 2017-04-01 18:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-03-08 01:13 - 2017-03-08 01:13 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-03-08 00:27 - 2017-03-18 21:18 - 00000000 ___RD C:\Users\Torsten Wetzel\OneDrive
2017-03-08 00:25 - 2017-03-23 18:21 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Packages
2017-03-08 00:25 - 2017-03-22 09:28 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Adobe
2017-03-08 00:25 - 2017-03-10 17:00 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\VirtualStore
2017-03-08 00:25 - 2017-03-08 00:25 - 00016148 _____ C:\WINDOWS\system32\DESKTOP-4N5ED6S_defaultuser0_HistoryPrediction.bin
2017-03-08 00:25 - 2017-03-08 00:25 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\TileDataLayer
2017-03-08 00:25 - 2017-03-08 00:25 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Publishers
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Videos
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Programme
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Vorlagen
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Startmenü
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Dokumente
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2017-03-08 00:22 - 2017-03-08 00:22 - 00000000 _SHDL C:\Dokumente und Einstellungen
2017-03-08 00:21 - 2017-03-08 00:21 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-03-07 23:29 - 2017-03-07 23:29 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Tvsukernel
2017-03-07 23:25 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2017-03-07 23:25 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-03-07 23:07 - 2017-03-07 23:07 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Macromedia
2017-03-07 22:31 - 2016-10-28 03:22 - 00485032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-03-07 22:30 - 2017-03-18 20:35 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-03-07 22:30 - 2017-03-16 02:21 - 138634176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-03-07 22:25 - 2016-09-30 05:28 - 00161792 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2017-03-07 22:22 - 2016-09-07 06:22 - 00041472 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2017-03-07 22:17 - 2017-04-02 08:57 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\vlc
2017-03-07 20:25 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\gsview
2017-03-07 20:25 - 2017-03-07 20:25 - 00000000 ____D C:\Program Files (x86)\gsview6.0
2017-03-07 20:20 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeXnicCenter
2017-03-07 20:20 - 2017-03-07 20:20 - 00000000 ____D C:\Program Files (x86)\TeXnicCenter
2017-03-07 20:19 - 2017-03-18 15:45 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-03-07 20:18 - 2017-03-18 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activ Software
2017-03-07 20:18 - 2017-03-07 20:18 - 00000000 ____D C:\Users\Public\Documents\Activ Software
2017-03-07 20:18 - 2017-03-07 20:18 - 00000000 ____D C:\ProgramData\Promethean
2017-03-07 20:18 - 2017-03-07 20:18 - 00000000 ____D C:\ProgramData\Activ Software
2017-03-07 20:18 - 2017-03-07 20:18 - 00000000 ____D C:\Program Files (x86)\Activ Software
2017-03-07 20:09 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9
2017-03-07 20:09 - 2017-03-07 20:34 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\SumatraPDF
2017-03-07 20:09 - 2017-03-07 20:09 - 00001948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk
2017-03-07 20:09 - 2017-03-07 20:09 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\MiKTeX
2017-03-07 20:09 - 2017-03-07 20:09 - 00000000 ____D C:\Program Files\SumatraPDF
2017-03-07 20:08 - 2017-03-07 20:08 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\MiKTeX
2017-03-07 20:08 - 2017-03-07 20:08 - 00000000 ____D C:\ProgramData\MiKTeX
2017-03-07 20:07 - 2017-03-07 20:08 - 00000000 ____D C:\Program Files\MiKTeX 2.9
2017-03-07 19:48 - 2017-04-04 19:14 - 00000000 ____D C:\Users\Torsten Wetzel\.mediathek3
2017-03-07 19:47 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-03-07 19:47 - 2017-03-07 19:47 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-03-07 19:47 - 2017-03-07 19:47 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Sun
2017-03-07 19:47 - 2017-03-07 19:47 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\LocalLow\Sun
2017-03-07 19:47 - 2017-03-07 19:47 - 00000000 ____D C:\ProgramData\Oracle
2017-03-07 19:47 - 2017-03-07 19:47 - 00000000 ____D C:\Program Files (x86)\Java
2017-03-07 19:46 - 2017-03-07 19:46 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\LocalLow\Oracle
2017-03-07 19:44 - 2017-03-07 19:52 - 00000000 ____D C:\Program Files (x86)\MediathekView-13.0.1
2017-03-07 19:34 - 2017-03-27 17:51 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-03-07 19:34 - 2017-03-07 19:34 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2017-03-07 19:34 - 2017-03-07 19:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2017-03-07 19:33 - 2017-03-08 21:40 - 00000000 ____D C:\ProgramData\Adobe
2017-03-07 19:33 - 2017-03-07 19:33 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-03-07 19:32 - 2017-03-31 20:57 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Adobe
2017-03-07 19:31 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-03-07 19:31 - 2017-03-07 19:31 - 00000000 ____D C:\Program Files\VideoLAN
2017-03-07 19:28 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tinypic
2017-03-07 19:28 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGebra 5
2017-03-07 19:28 - 2017-03-07 19:28 - 00000000 ____D C:\Program Files (x86)\Tinypic
2017-03-07 19:28 - 2017-03-07 19:28 - 00000000 ____D C:\Program Files (x86)\GeoGebra 5.0
2017-03-07 19:22 - 2017-03-18 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDex
2017-03-07 19:22 - 2017-03-07 19:22 - 00000000 ____D C:\Program Files (x86)\CDex
2017-03-07 19:03 - 2017-03-18 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-03-07 19:03 - 2017-03-07 19:03 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-03-07 19:03 - 2017-03-07 19:03 - 00000000 ____D C:\Users\Torsten Wetzel\Tracing
2017-03-07 19:03 - 2017-03-07 19:03 - 00000000 ____D C:\ProgramData\Skype
2017-03-07 18:59 - 2017-04-04 21:44 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\LocalLow\Mozilla
2017-03-07 18:59 - 2017-04-02 07:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-07 18:59 - 2017-04-02 07:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-03-07 18:59 - 2017-03-07 19:04 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Mozilla
2017-03-07 18:59 - 2017-03-07 18:59 - 00001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-03-07 18:59 - 2017-03-07 18:59 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Mozilla
2017-03-07 18:54 - 2017-03-07 18:54 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Macromedia
2017-03-07 18:48 - 2017-03-07 19:10 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Lenovo
2017-03-07 18:44 - 2017-03-10 19:54 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Skype
2017-03-07 18:34 - 2017-01-11 20:08 - 00803928 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2017-03-07 18:34 - 2017-01-11 20:08 - 00427608 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2017-03-07 18:34 - 2017-01-11 20:08 - 00343128 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo50-7.dll
2017-03-07 18:34 - 2017-01-11 20:08 - 00279128 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2017-03-07 18:34 - 2017-01-11 20:08 - 00064088 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2017-03-07 18:34 - 2017-01-11 20:07 - 00060504 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2017-03-07 18:34 - 2017-01-11 20:07 - 00057432 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys
2017-03-07 18:34 - 2017-01-11 03:08 - 00002564 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mouse Properties (Touchpad Clickpad Trackpad TrackPoint Mouse Pointer Pointing Pad).lnk
2017-03-07 18:34 - 2017-01-05 14:39 - 00798728 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2017-03-07 18:32 - 2017-03-07 18:32 - 00000000 ____D C:\Users\Torsten Wetzel\Intel
2017-03-07 18:32 - 2017-03-07 18:32 - 00000000 ____D C:\ProgramData\Intel
2017-03-07 18:32 - 2017-03-07 18:32 - 00000000 ____D C:\Program Files\Lenovo
2017-03-07 18:31 - 2017-03-22 05:19 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-07 18:31 - 2017-03-18 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Connect2
2017-03-07 18:31 - 2016-08-29 16:37 - 02403256 _____ (Qualcomm Atheros, Inc.) C:\WINDOWS\system32\Drivers\Qcamain10x64.sys
2017-03-07 18:31 - 2016-08-29 16:29 - 01088096 _____ C:\WINDOWS\system32\Drivers\qca61x4_2_2.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00097210 _____ C:\WINDOWS\system32\Drivers\Data61x4_2_2.msc
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_6.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_5.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_4.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_3.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_2.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX_LE_1.bin
2017-03-07 18:31 - 2016-08-29 16:29 - 00008124 _____ C:\WINDOWS\system32\Drivers\eeprom_ar6320_3p0_NFA344a_highTX.bin
2017-03-07 18:31 - 2016-08-23 05:19 - 00943112 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2017-03-07 18:31 - 2016-08-23 05:19 - 00082544 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-03-07 18:30 - 2016-11-09 17:54 - 05456392 _____ (Realtek semiconductor) C:\WINDOWS\RTFTrack.exe
2017-03-07 18:30 - 2016-11-09 17:54 - 03150856 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\rtsuvc.sys
2017-03-07 18:30 - 2016-11-09 17:54 - 00224000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtsCM64.exe
2017-03-07 18:30 - 2016-11-09 17:53 - 00560648 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtCamP.dll
2017-03-07 18:30 - 2016-11-09 17:53 - 00104456 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtCamO64.dll
2017-03-07 18:30 - 2016-11-09 17:51 - 00645640 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtCamP64.dll
2017-03-07 18:30 - 2016-11-09 17:40 - 01157563 _____ C:\WINDOWS\FTDataP.xml
2017-03-07 18:30 - 2016-11-09 17:40 - 00946032 _____ C:\WINDOWS\FTData.xml
2017-03-07 18:30 - 2016-11-09 17:40 - 00817241 _____ C:\WINDOWS\FTDataR1.xml
2017-03-07 18:30 - 2016-11-09 17:40 - 00817191 _____ C:\WINDOWS\FTDataR0.xml
2017-03-07 18:30 - 2016-11-09 17:40 - 00003034 _____ C:\WINDOWS\RtsCM64.xml
2017-03-07 18:25 - 2017-03-07 23:27 - 00000000 ____D C:\ProgramData\Lenovo
2017-03-07 18:25 - 2017-03-07 23:27 - 00000000 ____D C:\Program Files (x86)\Lenovo
2017-03-07 18:25 - 2017-03-07 18:25 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\LenovoServiceBridge
2017-03-07 18:24 - 2017-03-18 20:37 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-03-07 18:24 - 2017-03-07 18:24 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Apps\2.0
2017-03-07 18:17 - 2017-04-04 21:45 - 00000000 ___RD C:\Users\Torsten Wetzel\Dropbox
2017-03-07 18:15 - 2017-03-07 18:15 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\NetworkTiles
2017-03-07 18:13 - 2017-03-07 18:13 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Roaming\Dropbox
2017-03-07 18:13 - 2017-03-07 18:13 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\PeerDistRepub
2017-03-07 18:12 - 2017-03-25 02:24 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-03-07 18:12 - 2017-03-18 20:17 - 00001262 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2017-03-07 18:12 - 2017-03-18 20:00 - 00001258 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2017-03-07 18:12 - 2017-03-10 19:52 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\Dropbox
2017-03-07 18:12 - 2017-03-07 18:12 - 00000000 ____D C:\ProgramData\Dropbox
2017-03-07 18:10 - 2017-04-04 21:44 - 00000000 __SHD C:\Users\Torsten Wetzel\IntelGraphicsProfiles
2017-03-07 18:10 - 2017-03-07 18:32 - 00000000 ____D C:\Program Files (x86)\Intel
2017-03-07 18:10 - 2017-03-07 18:10 - 00000000 ____D C:\Intel
2017-03-07 18:09 - 2017-03-07 18:09 - 00560260 _____ C:\WINDOWS\system32\cp_resources.bin
2017-03-07 18:09 - 2017-03-07 18:09 - 00271344 _____ C:\WINDOWS\system32\igfxCPL.cpl
2017-03-07 18:09 - 2017-03-07 18:09 - 00141296 _____ C:\WINDOWS\SysWOW64\libEGL.dll
2017-03-07 18:09 - 2017-03-07 18:09 - 00113648 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2017-03-07 18:09 - 2017-03-07 18:09 - 00112112 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll
2017-03-07 18:09 - 2017-03-07 18:09 - 00104432 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2017-03-07 18:09 - 2017-03-07 18:09 - 00101360 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 01287168 _____ (BayHubTech/O2Micro International) C:\WINDOWS\SysWOW64\bhtv5Icon.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 01287168 _____ (BayHubTech/O2Micro International) C:\WINDOWS\system32\bhtv5Icon.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00710144 _____ (Lenovo.) C:\WINDOWS\system32\LPlatSvc.exe
2017-03-07 18:08 - 2017-03-07 18:08 - 00601960 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btfilter.sys
2017-03-07 18:08 - 2017-03-07 18:08 - 00347064 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\AdminService.exe
2017-03-07 18:08 - 2017-03-07 18:08 - 00344680 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo50-4.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00191504 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\BtContextMenu.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00190480 _____ (Qualcomm Atheros Communications Inc.) C:\WINDOWS\system32\btcoinst.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00184856 _____ (BayHubTech/O2Micro ) C:\WINDOWS\system32\Drivers\bhtpcrdr.sys
2017-03-07 18:08 - 2017-03-07 18:08 - 00180736 _____ (Lenovo.) C:\WINDOWS\system32\ibmpmsvc.exe
2017-03-07 18:08 - 2017-03-07 18:08 - 00088064 _____ (Lenovo.) C:\WINDOWS\system32\ibmpmctl.exe
2017-03-07 18:08 - 2017-03-07 18:08 - 00082232 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\ibmpmdrv.sys
2017-03-07 18:08 - 2017-03-07 18:08 - 00058488 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000200.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00058368 _____ (Lenovo.) C:\WINDOWS\system32\tpinspm.dll
2017-03-07 18:08 - 2017-03-07 18:08 - 00057592 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000300.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00039064 _____ C:\WINDOWS\system32\Drivers\AthrBT_TF_0x00000302.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00034996 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000302.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00019984 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\BtContextMenu.dll.muien-US
2017-03-07 18:08 - 2017-03-07 18:08 - 00001982 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000302_48_NFA354A_10db.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001982 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000302_48.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001969 _____ C:\WINDOWS\system32\Drivers\ramps_TF_0x00000302_48_NFA435_10dbm.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001969 _____ C:\WINDOWS\system32\Drivers\ramps_TF_0x00000302_48.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001890 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000300_48_NFA435_10db.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001890 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000300_48.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001859 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000200_48_NFA354.dfu
2017-03-07 18:08 - 2017-03-07 18:08 - 00001859 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000200_48.dfu
2017-03-07 18:08 - 2017-01-11 20:08 - 00064088 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2017-03-07 18:08 - 2017-01-11 20:07 - 00923224 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2017-03-07 18:08 - 2014-01-30 19:17 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2017-03-07 18:04 - 2017-03-07 18:05 - 00000000 ____D C:\Users\Torsten Wetzel\AppData\Local\MicrosoftEdge

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-04-04 21:49 - 2016-11-20 23:46 - 02030708 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-04 21:49 - 2016-11-20 23:00 - 00804026 _____ C:\WINDOWS\system32\perfh007.dat
2017-04-04 21:49 - 2016-11-20 23:00 - 00174208 _____ C:\WINDOWS\system32\perfc007.dat
2017-04-04 21:44 - 2016-11-20 23:36 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-04 21:44 - 2016-07-16 08:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-04-04 20:17 - 2016-11-20 14:36 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-04-04 08:44 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-03 06:21 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-25 23:17 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-03-23 16:55 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-03-21 00:43 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-03-19 11:31 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2017-03-19 02:51 - 2016-11-20 14:36 - 00342056 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-03-18 23:18 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-03-18 21:16 - 2016-11-20 23:50 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-03-18 20:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2017-03-18 20:40 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT
2017-03-18 20:39 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-03-18 20:39 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration
2017-03-18 20:39 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-03-18 20:38 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries
2017-03-18 20:37 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-03-18 20:37 - 2015-07-10 11:47 - 00000000 ____D C:\Users\Default.migrated
2017-03-18 20:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-03-18 20:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-03-18 20:35 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-03-18 20:34 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-03-18 20:32 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ___RD C:\Program Files\Windows Defender
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\setup
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Provisioning
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-03-18 20:30 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-03-18 20:30 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-03-18 20:30 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-03-18 20:30 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\servicing
2017-03-18 20:29 - 2016-11-20 23:40 - 02717184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-03-18 20:21 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-03-18 20:21 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-03-10 07:17 - 2016-07-16 13:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-03-10 07:17 - 2016-07-16 13:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-07 22:04 - 2015-07-10 05:36 - 00635904 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2017-03-07 22:04 - 2015-07-10 05:36 - 00014848 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2017-03-07 18:09 - 2016-11-20 23:27 - 00104432 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2017-03-08 20:50 - 2017-04-03 06:40 - 0000337 _____ () C:\Users\Torsten Wetzel\AppData\Local\Perfmon.PerfmonCfg
2017-03-09 15:33 - 2017-03-09 15:33 - 0000057 _____ () C:\ProgramData\Ament.ini
2017-03-18 20:44 - 2017-03-18 20:44 - 0000102 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-03-29 07:56

==================== Ende von FRST.txt ============================
         

Antwort

Themen zu Great Dealz und Preisvergleich Toolbar bei Firefox
aufgesetzt, benötigte, browser, deinstalliere, deinstallieren, firefox, great, greatdealz, installiere, installieren, kurzem, meinem, neu, neu aufgesetzt, preisvergleich, programme, rechner, schei, toolbar, unerwünschte, unerwünschten, werbung



Ähnliche Themen: Great Dealz und Preisvergleich Toolbar bei Firefox


  1. Ads by Great Hub entfernen
    Anleitungen, FAQs & Links - 05.02.2016 (2)
  2. Ads By Dealz entfernen
    Anleitungen, FAQs & Links - 09.11.2015 (2)
  3. Trojaner Great Find
    Plagegeister aller Art und deren Bekämpfung - 31.08.2015 (3)
  4. Ads By Great Find entfernen
    Anleitungen, FAQs & Links - 19.08.2015 (2)
  5. Great Find
    Plagegeister aller Art und deren Bekämpfung - 21.07.2015 (5)
  6. Great Canon: Chinesische Waffe gegen unliebsame Webseiten
    Nachrichten - 12.04.2015 (0)
  7. great-free-apps.net entfernen
    Anleitungen, FAQs & Links - 12.04.2014 (2)
  8. unerwünschte Toolbar und Werbung in Firefox und IE, Snap.Do, better surf, media view
    Log-Analyse und Auswertung - 15.03.2014 (9)
  9. Windows XP, schwedisch, Firefox, certified toolbar entfernen misslingt
    Log-Analyse und Auswertung - 10.01.2014 (17)
  10. search.certified-toolbar.com einfach gelöscht in Firefox
    Log-Analyse und Auswertung - 05.10.2013 (3)
  11. wie entferne ich Utility Chest Internet Explorer Toolbar Utility Chest Firefox Toolbar?
    Plagegeister aller Art und deren Bekämpfung - 23.07.2013 (32)
  12. Superfish Deal Finder Preisvergleich bei ebay
    Plagegeister aller Art und deren Bekämpfung - 22.07.2013 (12)
  13. MyStart Search Toolbar im Firefox Browser
    Plagegeister aller Art und deren Bekämpfung - 23.12.2012 (10)
  14. MyStart Incredibar Toolbar - Firefox
    Plagegeister aller Art und deren Bekämpfung - 28.09.2012 (6)
  15. Schwachstelle in Wikipedia Toolbar für Firefox
    Nachrichten - 17.11.2009 (0)
  16. ZA u. Win2000. Great Problem!
    Antiviren-, Firewall- und andere Schutzprogramme - 19.01.2003 (4)

Zum Thema Great Dealz und Preisvergleich Toolbar bei Firefox - Hallo, ich habe gerade meinen Rechner neu aufgesetzt und scheine beim Installieren der benötigten Programme auch gleich einen unerwünschten Beifang gemacht zu haben. Seit kurzem habe ich in meinem Browser - Great Dealz und Preisvergleich Toolbar bei Firefox...
Archiv
Du betrachtest: Great Dealz und Preisvergleich Toolbar bei Firefox auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.