| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Merkwürdige Anrufe auf s Handy - Datenklau vermutet - Virus auf PC?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
28.05.2020, 20:55
| #1 |
 |  Merkwürdige Anrufe auf s Handy - Datenklau vermutet - Virus auf PC? Hallo zusammen Ich bekomme seit einigen Wochen Anrufe von Ärzten. Bei diesen hat jemand in meinem Namen, mit meinen Daten (Geburtstag, Name, ...) in der Praxis angerufen und um dringenden Rückruf von eiem Arzt gebeten. Die Rückrufe kommen dann natürlich direkt zu mir auf mein Handy. Was das soll weiß ich nicht, vielleicht ist es jemand aus meiner Vergangenheit, der sich einen Spaß erlaubt, oder ein Psycho, oder eben jemand, der die Kontrolle über meinen PC übernommen hat. Da mich das sehr besorgt ist auch die Polizei bereits informiert, aber außer einem Aktenvermerk für eventuelle weitere Vorkommnisse kann man da soweit erstmal nichts machen. Nun wollte ich mal fragen, ob einer hier schonmal sowas gehört hat oder generell einfach mal die Daten überprüfen kann. Ich kenne mich null aus, früher habe ich HijackThis benutzt, aber das ist ja nicht mehr "up to date". Jetzt versuche ich also fürs erste Mal diesen Beitrag hier nach den Regeln zu gestalten und hoffe auf Unterstützung von euch. Herzlichen Dank, Romy Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 28-05-2020
durchgeführt von Home (Administrator) auf LAPTOP-AMHCM5VG (Acer Aspire E5-774G) (28-05-2020 21:40:30)
Gestartet von C:\Users\Home\Downloads
Geladene Profile: Home
Platform: Windows 10 Home Version 1903 18362.836 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporated -> acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Acer Incorporated -> TODO: <Company name>) C:\Program Files\Acer\User Experience Improvement Program\Plugin\AppMonitor\AppMonitorPlugIn.exe
(Apache Software Foundation) [Datei ist nicht signiert] C:\open3A\apache\bin\httpd.exe <2>
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Appwork GmbH -> AppWork GmbH) C:\Users\Home\AppData\Local\JDownloader 2.0\JDownloader2.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Chip Digital GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe
(Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrB.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FoxitProxyServer_Socket_PH.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) D:\FOXIT\Foxit Reader\FoxitReader.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) D:\FOXIT\Foxit Reader\FoxitReaderConnectedPDFService.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) D:\FOXIT\Foxit Reader\FoxitReaderUpdateService.exe
(Foxit Software Incorporated -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
(Geek Software GmbH -> Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Hugh Bailey -> OBS) D:\obs-studio\bin\64bit\obs64.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) CN -> Intel Corporation) C:\Windows\System32\IntelSSTAPO\ParameterService\ParameterService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82119d956c80af5a\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82119d956c80af5a\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82119d956c80af5a\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82119d956c80af5a\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82119d956c80af5a\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(IObit Information Technology -> IObit) C:\Users\Home\AppData\Local\Temp\is-6C4EP.tmp\IUInstaller\Setup.exe
(Lavasoft Limited -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(MAGIX AG) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(MariaDB Corporation Ab -> ) C:\open3A\mysql\bin\mysqld.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20032.12611.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msinfo32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mspaint.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <13>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PHROZEN SOFTWARE (PHROZEN SAS) -> Phrozen SAS) D:\WhoStalkMyCam64.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(SweetLabs Inc. -> SweetLabs, Inc) C:\Users\Home\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Program Files (x86)\Common Files\Zoom\Support\CptService.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1767944 2016-06-14] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Datei ist nicht signiert]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [108728 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18390912 2018-11-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_TrueHarmony] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506176 2018-11-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6867968 2020-05-12] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [486536 2019-06-11] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ACHTUNG
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\Run: [HP ENVY 4520 series (NET)] => C:\Program Files\HP\HP ENVY 4520 series\Bin\ScanToPCActivationApp.exe [3770504 2017-04-06] (Hewlett Packard -> HP Inc.)
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\Run: [Spotify] => C:\Users\Home\AppData\Roaming\Spotify\Spotify.exe [22151072 2020-01-17] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7379744 2018-10-02] (Lavasoft Limited -> Lavasoft)
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\Run: [HP OfficeJet Pro 8710 (NET)] => C:\Program Files\HP\HP OfficeJet Pro 8710\Bin\ScanToPCActivationApp.exe [3770504 2018-04-06] (Hewlett Packard -> HP Inc.)
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [27775672 2020-04-27] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\Run: [QMxNetworkSync] => C:\Program Files\Common Files\MAGIX Services\QMxNetworkSync\QMxNetworkSync.exe [355584 2017-08-31] (MAGIX Software GmbH -> MAGIX)
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1613800 2018-10-10] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Home\AppData\Local\Microsoft\Teams\Update.exe [1790192 2019-10-08] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\Run: [ZoomRooms] => C:\Program Files (x86)\ZoomRooms\bin\ZoomRooms.exe [470360 2020-03-24] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Home\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Home\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\RunOnce: [Uninstall 19.232.1124.0012\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Home\AppData\Local\Microsoft\OneDrive\19.232.1124.0012\amd64"
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\RunOnce: [Uninstall 19.232.1124.0012] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Home\AppData\Local\Microsoft\OneDrive\19.232.1124.0012"
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\Policies\Explorer: [TaskbarNoNotification] 1
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\...\MountPoints2: {5f12db64-fb04-11e9-bd27-5800e3a485ea} - "I:\setup.exe"
HKLM\...\Print\Monitors\HP D711 Status Monitor: C:\Windows\system32\hpinkstsD711LM.dll [393352 2017-03-27] (Hewlett Packard -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe [2020-05-28] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\81.0.4127.129\Installer\chrmstp.exe [2020-05-20] (Avast Software s.r.o. -> AVAST Software)
GroupPolicy: Beschränkung - Chrome <==== ACHTUNG
GroupPolicy\User: Beschränkung ? <==== ACHTUNG
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {076F8463-0E3B-450F-9C85-4551740B6F42} - System32\Tasks\Connect => C:\Program Files (x86)\MAGIX\Connect\connect.exe [324680 2017-05-10] (MAGIX Software GmbH -> MAGIX Software GmbH)
Task: {077CA136-CFB4-48F4-9433-A2B2FACCF0CF} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-29] (Avast Software s.r.o. -> AVAST Software)
Task: {0CB6410D-D2B2-407D-9D7A-F1E3E00282B4} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0DB27F66-B119-4F6C-B140-13E9CA8B4967} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [110416 2020-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {12C936A7-775D-4436-B18A-01C2DA4367F0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-03] (Google Inc -> Google Inc.)
Task: {304754BA-F48C-4C1E-A475-CBD54AF1F135} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4644256 2016-06-24] (Acer Incorporated -> )
Task: {3189827E-D9A9-4ACC-A808-E41049BE38C5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1421704 2020-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {35169AC4-BCF0-4B6D-B8FB-E26DCF90BACD} - System32\Tasks\App Explorer => C:\Users\Home\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7470248 2020-05-09] (SweetLabs Inc. -> SweetLabs, Inc) <==== ACHTUNG
Task: {37A3F397-8673-4BBE-AF83-C94E8E510268} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {427D19F6-FF40-4B9F-B4C7-C2CAB95BB594} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {463A97C6-83B9-45E9-82B6-C23866B1F3C4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4460464 2020-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {466E3A7A-D7A9-4259-94DE-CA9BE7A5D1CE} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-12-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {477EEEAD-D362-40EF-B4B0-A32B2033F333} - System32\Tasks\ACC
Task: {5127DFA5-B3EF-4783-BE4A-38B2D37325CC} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"]
Task: {55FAC7DB-844B-45A2-A64A-10B22BA102E1} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473904 2016-09-13] (Acer Incorporated -> Acer Incorporated)
Task: {6993C794-29EB-4D09-8E75-DFD66F02F1E4} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [216296 2014-03-12] (Acer Incorporated -> TODO: <Company name>)
Task: {69B5A02E-1365-4B3D-BB67-8DDFDDF48324} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4460464 2020-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {74E755D1-D861-4CCD-97C2-0614AC5EC8BC} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-13] (AVAST Software s.r.o. -> AVAST Software)
Task: {7D97A71A-CB08-42C5-A576-B00ABE3D4F3D} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-29] (Avast Software s.r.o. -> AVAST Software)
"C:\Windows\System32\Tasks\Yahoo! Powered nitef" konnte nicht entsperrt werden. <==== ACHTUNG
Task: {83BFCFDC-4C07-4F53-8D01-676E354ADE5C} - System32\Tasks\Yahoo! Powered nitef
Task: {850C5122-1355-4252-A693-AAACD1D9393D} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [909112 2016-07-26] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {8F4215BE-AA93-4ACA-9522-069FC7E28C3E} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-12-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {92966022-3294-4F58-9392-F6B9A40D848B} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [64320 2019-07-11] (Acer Incorporated -> Acer)
Task: {99ECC456-17F4-4A5B-B2B0-A8A837EE5360} - System32\Tasks\Acer Collection Monitor Application => C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe [417072 2017-12-13] (Acer Incorporated -> Acer Incorporated)
Task: {9B3BDCAD-CF8D-4D70-92DB-FDB3DC2C06B2} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {9D01BACC-9B34-4772-9E2D-8398AE8C68B6} - System32\Tasks\FubToolByPLD => C:\OEM\Preload\FubTool\FubTool.exe [30976 2015-05-14] (Acer Incorporated -> )
Task: {AB082995-52E4-4151-A3AF-D8AC57F0E6C8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-03] (Google Inc -> Google Inc.)
Task: {B04DEA77-B9AD-48A7-A622-22DEA606A969} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27369352 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {B2850E9D-ADDC-42E1-ABAE-070125180490} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3339472 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
Task: {B3505F70-5693-4CBC-82EA-A8D03678FF50} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {B574A25D-C24C-4C59-B9D8-DB0212D995D1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2017-10-12] (Apple Inc. -> Apple Inc.)
Task: {B6526358-16EE-45B7-BF75-07C91A437816} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-13] (AVAST Software s.r.o. -> AVAST Software)
Task: {BDCA6D5B-0E78-40BD-BEC1-695D0303D700} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1421704 2020-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {BF38E98E-52BB-4E33-B871-BEA1A112F1CB} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65824 2017-09-26] (Acer Incorporated -> Acer Incorporated)
Task: {C3D950F1-672D-4DC6-A54C-9562F7710846} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-13] (Adobe Inc. -> Adobe)
Task: {CA96BAD2-EBCC-4998-A4C2-9A4B323A8453} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [23571128 2020-04-27] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D11C3956-35E0-411F-9BA6-2CEA1F3D6AFA} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2767152 2016-09-13] (Acer Incorporated -> Acer Incorporated)
Task: {D30001DA-F6AB-4974-A2ED-5A464CE58813} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1571216 2020-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {D8D041A0-2468-4637-A34A-676DDACCD4A1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27369352 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {DDEFCA7A-F3C9-40BD-B6BF-28B0059E4BB5} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [110416 2020-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {DF818FA3-8BB7-4883-9A4E-66E6456A7F46} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [422704 2016-09-13] (Acer Incorporated -> Acer Incorporated)
Task: {E12A8D6B-4482-44B1-B5CB-FD5F26EE17E7} - System32\Tasks\Acer Collection Application => C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe [479024 2017-12-14] (Acer Incorporated -> )
Task: {E146C391-E800-4B17-AD14-E573C72AB824} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [127176 2020-05-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {E9EB3AC7-BF99-4DFF-AB2B-D66AB5D98D38} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-04-27] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F50707F8-5869-47C8-8396-5F2A2E029400} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-13] (Adobe Inc. -> Adobe)
Task: {FEC01753-B7F5-48DC-9872-87C1882DA9B0} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [40352 2016-06-24] (Acer Incorporated -> )
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Connect.job => C:\Program Files (x86)\MAGIX\Connect\connect.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\Yahoo! Powered nitef.job => Wscript.exe C:\ProgramData\{F0633500-7A21-BFC6-FCE7-218466A5AA4A}\tido.txt <==== ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{91365180-0c94-49b8-acd8-6ef3a6d6b144}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{f1571f8f-d6f7-4b3e-be4a-966fff798661}: [DhcpNameServer] 192.168.49.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://de.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_14_ssg01¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AzztC0EzzyEyEtB0D0FyBzz0CyBzz0BtN0D0Tzu0StCzytBtBtN1L2XzutAtFtBzytFtAtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StByC0DtA0C0D0B0EtGyBzz0EtAtG0F0A0BzztGtD0A0DtAtG0A0CyBtCyE0Ezy0DtByCtAzy2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0D0BtC0EtCtB0EtGzyyE0EtDtGyEtAtC0BtG0AtD0FyBtG0CyD0CyEtBzyyCtB0Azy0Bzy2QtN0A0LzuyE%26cr%3D833923879%26a%3Dwbf_secureddownload_17_14_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.gg-de.com/
HKU\S-1-5-21-4019036141-3525676238-3849331610-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
SearchScopes: HKLM -> DefaultScope {21ACF08C-B0B0-414E-8522-B0FA8AE1C197} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_14_ssg01¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AzztC0EzzyEyEtB0D0FyBzz0CyBzz0BtN0D0Tzu0StCzytBtBtN1L2XzutAtFtBzytFtAtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StByC0DtA0C0D0B0EtGyBzz0EtAtG0F0A0BzztGtD0A0DtAtG0A0CyBtCyE0Ezy0DtByCtAzy2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0D0BtC0EtCtB0EtGzyyE0EtDtGyEtAtC0BtG0AtD0FyBtG0CyD0CyEtBzyyCtB0Azy0Bzy2QtN0A0LzuyE%26cr%3D833923879%26a%3Dwbf_secureddownload_17_14_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM -> {21ACF08C-B0B0-414E-8522-B0FA8AE1C197} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_14_ssg01¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AzztC0EzzyEyEtB0D0FyBzz0CyBzz0BtN0D0Tzu0StCzytBtBtN1L2XzutAtFtBzytFtAtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StByC0DtA0C0D0B0EtGyBzz0EtAtG0F0A0BzztGtD0A0DtAtG0A0CyBtCyE0Ezy0DtByCtAzy2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0D0BtC0EtCtB0EtGzyyE0EtDtGyEtAtC0BtG0AtD0FyBtG0CyD0CyEtBzyyCtB0Azy0Bzy2QtN0A0LzuyE%26cr%3D833923879%26a%3Dwbf_secureddownload_17_14_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {21ACF08C-B0B0-414E-8522-B0FA8AE1C197} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_14_ssg01¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AzztC0EzzyEyEtB0D0FyBzz0CyBzz0BtN0D0Tzu0StCzytBtBtN1L2XzutAtFtBzytFtAtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StByC0DtA0C0D0B0EtGyBzz0EtAtG0F0A0BzztGtD0A0DtAtG0A0CyBtCyE0Ezy0DtByCtAzy2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0D0BtC0EtCtB0EtGzyyE0EtDtGyEtAtC0BtG0AtD0FyBtG0CyD0CyEtBzyyCtB0Azy0Bzy2QtN0A0LzuyE%26cr%3D833923879%26a%3Dwbf_secureddownload_17_14_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> {21ACF08C-B0B0-414E-8522-B0FA8AE1C197} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_14_ssg01¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AzztC0EzzyEyEtB0D0FyBzz0CyBzz0BtN0D0Tzu0StCzytBtBtN1L2XzutAtFtBzytFtAtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StByC0DtA0C0D0B0EtGyBzz0EtAtG0F0A0BzztGtD0A0DtAtG0A0CyBtCyE0Ezy0DtByCtAzy2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0D0BtC0EtCtB0EtGzyyE0EtDtGyEtAtC0BtG0AtD0FyBtG0CyD0CyEtBzyyCtB0Azy0Bzy2QtN0A0LzuyE%26cr%3D833923879%26a%3Dwbf_secureddownload_17_14_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-4019036141-3525676238-3849331610-1001 -> DefaultScope {A9B154DF-22E3-4BB1-A93C-82318E2F6AF3} URL = hxxp://www.gg-de.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4019036141-3525676238-3849331610-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D060518-AE5EBDDD906&form=CONBDF&conlogo=CT3335827&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4019036141-3525676238-3849331610-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL =
SearchScopes: HKU\S-1-5-21-4019036141-3525676238-3849331610-1001 -> {A9B154DF-22E3-4BB1-A93C-82318E2F6AF3} URL = hxxp://www.gg-de.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/x64/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Users\Home\Documents\java\bin\ssv.dll [2019-12-18] (Oracle America, Inc. -> Oracle Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-04-13] (McAfee, LLC -> McAfee, LLC)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Users\Home\Documents\java\bin\jp2ssv.dll [2019-12-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO-x32: Foxit PhantomPDF Create PDF ToolBar Helper -> {A5DD10F7-5ABB-4EEF-B4C8-6748D44DAF2A} -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\IEAddin\IEAddin.dll [2019-06-28] (FOXIT SOFTWARE INC. -> )
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-04-13] (McAfee, LLC -> McAfee, LLC)
Toolbar: HKLM-x32 - Foxit PhantomPDF Create PDF ToolBar - {BFD9D8A8-57FF-488A-B919-065EC77CF82F} - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\IEAddin\IEAddin.dll [2019-06-28] (FOXIT SOFTWARE INC. -> )
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
DownloadDir: C:\Users\Home\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-4019036141-3525676238-3849331610-1001 -> hxxp://www.gg-de.com/
FireFox:
========
FF DefaultProfile: gg2h2z9s.default
FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\gg2h2z9s.default [2020-05-28]
FF Homepage: Mozilla\Firefox\Profiles\gg2h2z9s.default -> about:blank
FF NewTab: Mozilla\Firefox\Profiles\gg2h2z9s.default -> hxxp://www.bing.com/?pc=COSP&ptag=D060518-N0600AE5EBDDD906&form=CONMHP&conlogo=CT3335827
FF Extension: (Facebook Container) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\gg2h2z9s.default\Extensions\@contain-facebook.xpi [2020-04-14]
FF Extension: (OffersOlymp) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\gg2h2z9s.default\Extensions\@offersolymp.xpi [2017-08-17]
FF Extension: (MyJDownloader Browser Erweiterung) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\gg2h2z9s.default\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2020-03-01] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: ([von Firefox deaktiviert]) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\gg2h2z9s.default\Extensions\mail@quick-buttons.de.xpi [2019-10-27]
FF Extension: (Personas Plus) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\gg2h2z9s.default\Extensions\personas@christopher.beard.xpi [2018-03-06]
FF Extension: (Avast SafePrice | Vergleich, Angebote, Gutscheine) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\gg2h2z9s.default\Extensions\sp@avast.com.xpi [2020-05-02]
FF Extension: (Avast Online Security) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\gg2h2z9s.default\Extensions\wrc@avast.com.xpi [2020-04-19]
FF Extension: (OldWood) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\gg2h2z9s.default\Extensions\{1268dd7d-073e-4bf1-81dc-f1bb0f4f0c2e}.xpi [2019-10-28]
FF Extension: (Citavi Picker) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\gg2h2z9s.default\Extensions\{8AA36F4F-6DC7-4c06-77AF-5035170634FE}.xpi [2020-05-25]
FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\gg2h2z9s.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-04-01]
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2020-05-11] []
FF Extension: (Deutsch (DE) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-de@firefox.mozilla.org [2020-05-11] []
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2020-05-11] []
FF Extension: (Citavi Picker) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\{8AA36F4F-6DC7-4c06-77AF-5035170634FE}.xpi [2017-12-05]
FF HKLM\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2019-05-05] []
FF HKLM\...\Firefox\Extensions: [FireFoxNew-WebExtensions@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FireFoxNew-WebExtensions@foxitsoftware.com.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FireFoxNew-WebExtensions@foxitsoftware.com.xpi [2019-05-05]
FF HKLM-x32\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF HKLM-x32\...\Firefox\Extensions: [FireFoxNew-WebExtensions@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FireFoxNew-WebExtensions@foxitsoftware.com.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-05-13] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.231.2 -> C:\Users\Home\Documents\java\bin\dtplugin\npDeployJava1.dll [2019-12-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.231.2 -> C:\Users\Home\Documents\java\bin\plugin2\npjp2.dll [2019-12-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-13] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2019-06-26] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> D:\plugins\npFoxitPhantomPDFPlugin.dll [Keine Datei]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2019-06-26] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2019-06-26] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2019-06-26] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> D:\FOXIT\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> D:\FOXIT\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> D:\FOXIT\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> D:\FOXIT\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> D:\FOXIT\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-4019036141-3525676238-3849331610-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Home\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-13] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default [2020-05-02]
CHR HomePage: Default -> hxxp://www.gg-de.com/
CHR StartupUrls: Default -> "hxxp://www.gg-de.com/"
CHR Extension: (Präsentationen) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-12]
CHR Extension: (Docs) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-12]
CHR Extension: (Google Drive) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-10]
CHR Extension: (OffersOlymp) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbiilhoacmmppcmcogfmaailncbelbgn [2019-09-12]
CHR Extension: (YouTube) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-10]
CHR Extension: (Avast SafePrice | Vergleich, Angebote, Gutscheine) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-01-17]
CHR Extension: (Tabellen) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-09-12]
CHR Extension: (Google Docs Offline) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-17]
CHR Extension: (AdBlock*– der beste Ad-Blocker) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-03-04]
CHR Extension: (Avast Online Security) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-03-04]
CHR Extension: (Mossy Oak) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfeamajahaehllnkjblpabncjhbnngkd [2020-01-17]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-17]
CHR Extension: (Citavi Picker) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgndokldibnndfnjnagojmheejlengn [2020-03-04]
CHR Extension: (Amazon Assistant for Chrome) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2020-01-17]
CHR Extension: (Google Mail) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-09-12]
CHR Extension: (Chrome Media Router) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-04]
CHR Profile: C:\Users\Home\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-04-30]
CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2019-05-05]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [bbiilhoacmmppcmcogfmaailncbelbgn]
CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2019-05-05]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ohgndokldibnndfnjnagojmheejlengn]
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 Apache2.4; C:\open3A\apache\bin\httpd.exe [26112 2016-12-17] (Apache Software Foundation) [Datei ist nicht signiert]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-01-05] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6350752 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2016-08-31] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-13] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [348968 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-13] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\81.0.4127.129\elevation_service.exe [954600 2020-04-29] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R2 chip1click; C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2018-10-25] (Chip Digital GmbH) [Datei ist nicht signiert] <==== ACHTUNG
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11600776 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-12-06] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-12-06] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-05-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2018-10-10] (Digital Wave Ltd -> Digital Wave Ltd.)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Datei ist nicht signiert]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert]
R2 FoxitReaderService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659456 2018-04-17] (Foxit Software Incorporated -> Foxit Software Inc.)
R2 FoxitReaderUpdateService; D:\FOXIT\Foxit Reader\FoxitReaderUpdateService.exe [1995184 2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [806144 2018-11-08] (ICEpower a/s -> ICEpower)
R2 IntelSSTSvc; C:\WINDOWS\system32\IntelSSTAPO\ParameterService\ParameterService.exe [26576 2018-01-11] (Intel(R) CN -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-08-30] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [916712 2020-04-22] (McAfee, LLC -> McAfee, LLC)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\System32\MixedRealityRuntime.dll [139952 2020-05-15] (Microsoft Windows -> Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll [105840 2020-05-15] (Microsoft Windows -> Microsoft Corporation)
R2 mysql; C:\open3A\mysql\bin\my.ini [5769 2019-02-14] () [Datei ist nicht signiert]
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-01] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation -> NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [486536 2019-06-11] (Geek Software GmbH -> Geek Software GmbH)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [66872 2019-04-12] (Even Balance, Inc. -> )
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [107832 2019-04-12] (Even Balance, Inc. -> )
R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [441136 2016-09-13] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [482608 2016-09-13] (Acer Incorporated -> Acer Incorporated)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2018-12-12] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10823184 2020-04-20] (TeamViewer Germany GmbH -> TeamViewer GmbH)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [301872 2018-01-10] (Acer Incorporated -> acer)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25888 2018-10-02] (Lavasoft Limited -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZoomCptService; "C:\Program Files (x86)\Common Files\Zoom\Support\CptService.exe" -user_path "C:\Users\Home\AppData\Roaming\ZoomRooms"
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205880 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [234560 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [178760 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2020-02-25] (Microsoft Windows Early Launch Anti-Malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175704 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [501472 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851592 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460992 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [235488 2020-05-13] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319112 2020-05-28] (Avast Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131904 2018-12-12] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-10-31] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-10-31] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R3 MEIx64; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [204912 2016-08-23] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvacwu.inf_amd64_9d2734742a07f3cf\nvlddmkm.sys [14456920 2017-05-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56376 2016-08-04] (NVIDIA Corporation -> NVIDIA Corporation)
R3 Qcamain10x64; C:\WINDOWS\System32\drivers\Qcamain10x64.sys [2360048 2018-08-29] (Qualcomm Atheros -> Qualcomm Atheros, Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-22] (Realtek Semiconductor Corp. -> Realtek)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167232 2018-12-12] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [57432 2016-09-05] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46688 2019-10-10] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [350136 2019-10-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-10] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-05-28 21:40 - 2020-05-28 21:43 - 000056948 _____ C:\Users\Home\Downloads\FRST.txt
2020-05-28 21:31 - 2020-05-28 21:42 - 000000000 ____D C:\FRST
2020-05-28 21:30 - 2020-05-28 21:30 - 002288640 _____ (Farbar) C:\Users\Home\Downloads\FRST64.exe
2020-05-28 21:24 - 2020-05-28 21:24 - 000000000 ____D C:\Users\Home\AppData\Roaming\IObit
2020-05-28 21:24 - 2020-05-28 21:24 - 000000000 ____D C:\ProgramData\IObit
2020-05-28 21:24 - 2020-05-28 21:24 - 000000000 ____D C:\Program Files (x86)\IObit
2020-05-28 21:19 - 2020-05-28 21:19 - 001353232 _____ (CHIP Digital GmbH) C:\Users\Home\Downloads\IObit Uninstaller - CHIP-Installer.exe
2020-05-28 21:13 - 2020-05-28 21:13 - 000000000 ____D C:\Users\Home\Desktop\HiJackThis
2020-05-28 21:12 - 2020-05-28 21:12 - 001353232 _____ (CHIP Digital GmbH) C:\Users\Home\Downloads\HijackThis - CHIP-Installer.exe
2020-05-28 21:00 - 2020-05-28 21:00 - 001353232 _____ (CHIP Digital GmbH) C:\Users\Home\Downloads\Who Stalks My Cam - CHIP-Installer.exe
2020-05-28 15:19 - 2020-05-28 15:19 - 000043318 _____ C:\Users\Home\Downloads\Ergänzungen zum 1. Teil Projektmanagement (2).pdf
2020-05-28 15:16 - 2020-05-28 15:16 - 000037826 _____ C:\Users\Home\Downloads\4. Übungsaufgabe.pdf
2020-05-28 14:27 - 2020-05-28 14:27 - 005568852 _____ C:\Users\Home\Downloads\Folien Teil 4 Qualitätsentwicklung SS_2020(1).pdf
2020-05-28 13:44 - 2020-05-28 13:45 - 005568852 _____ C:\Users\Home\Downloads\Folien Teil 4 Qualitätsentwicklung SS_2020.pdf
2020-05-28 13:04 - 2020-05-28 13:04 - 000048106 _____ C:\Users\Home\Downloads\o2-my-home-m-20200427-download-data.pdf
2020-05-28 12:55 - 2020-05-28 12:55 - 000049642 _____ C:\Users\Home\Downloads\o2-my-home-s-20181016-1-download-data.pdf
2020-05-28 12:55 - 2020-05-28 12:55 - 000048494 _____ C:\Users\Home\Downloads\o2-my-home-l-20181016-1-download-data.pdf
2020-05-28 12:54 - 2020-05-28 12:54 - 000047496 _____ C:\Users\Home\Downloads\1_dsl_o2-dsl-s-flex_-2012-_20120223_1.0-download-data.pdf
2020-05-28 12:53 - 2020-05-28 12:53 - 000050130 _____ C:\Users\Home\Downloads\1_dsl_o2-dsl-s-flex_20170427_1.1-download-data.pdf
2020-05-28 10:15 - 2020-05-28 10:15 - 000133817 _____ C:\Users\Home\Downloads\Prüfungsankündigung 2020 Sommer (Prüfungsänderungen und -rücknahmen).pdf
2020-05-28 09:47 - 2020-05-28 09:47 - 002228240 _____ C:\Users\Home\Downloads\Personalwirtschaft Teil 5a Personaleinsatz und Arbeitszeitgestaltung Teilnehmer.pdf
2020-05-28 09:06 - 2020-05-28 09:06 - 000006382 _____ C:\Users\Home\Downloads\Online-Lehre 28-05-2020 Gruppe 4a.pdf
2020-05-27 15:03 - 2020-05-27 15:03 - 000016481 _____ C:\Users\Home\Downloads\Erwartungen_Leistungsnachweis(1).pdf
2020-05-25 11:28 - 2020-05-25 11:28 - 000134184 _____ C:\Users\Home\Downloads\Aufgabe Word - Geschäftsbericht.pdf
2020-05-25 11:28 - 2020-05-25 11:28 - 000056549 _____ C:\Users\Home\Downloads\Excel Übung Einsatzstatistik(1).pdf
2020-05-25 10:48 - 2020-05-25 10:48 - 000196499 _____ C:\Users\Home\Downloads\Excel Übung Einfache Rechnung WD(1).pdf
2020-05-25 10:47 - 2020-05-25 10:47 - 000425941 _____ C:\Users\Home\Downloads\Aufgabe Wertschöpfung in Ihrer Organisation.pdf
2020-05-25 10:47 - 2020-05-25 10:47 - 000425941 _____ C:\Users\Home\Downloads\Aufgabe Wertschöpfung in Ihrer Organisation(1).pdf
2020-05-25 10:40 - 2020-05-25 10:40 - 001182404 _____ C:\Users\Home\Downloads\Investition_SS2020_Skript.pdf
2020-05-25 10:40 - 2020-05-25 10:40 - 000048369 _____ C:\Users\Home\Downloads\Fragen_SS2020_Stud.pdf
2020-05-25 10:34 - 2020-05-25 10:34 - 000322881 _____ C:\Users\Home\Downloads\Klickanleitung Abbildungsverzeichnis.pdf
2020-05-23 10:53 - 2020-05-23 10:53 - 000138469 _____ C:\Users\Home\Downloads\Klickanleitungen Word(1).pdf
2020-05-23 10:45 - 2020-05-23 10:45 - 000196499 _____ C:\Users\Home\Downloads\Excel Übung Einfache Rechnung WD.pdf
2020-05-23 10:45 - 2020-05-23 10:45 - 000056549 _____ C:\Users\Home\Downloads\Excel Übung Einsatzstatistik.pdf
2020-05-23 08:57 - 2020-05-23 08:57 - 001517259 _____ C:\Users\Home\Downloads\chapter.php
2020-05-23 08:14 - 2020-05-23 08:14 - 000112090 _____ C:\Users\Home\Downloads\Quiz Folie Summe.pdf
2020-05-23 07:51 - 2020-05-23 07:51 - 000803154 _____ C:\Users\Home\Downloads\Folien Veranstaltung 2.pdf
2020-05-23 07:49 - 2020-05-23 07:49 - 000370592 _____ C:\Users\Home\Downloads\Folien Veranstaltung 1(1).pdf
2020-05-22 17:24 - 2020-05-22 17:24 - 000123243 _____ C:\Users\Home\Downloads\Antrag_auf_Kinderzuschlag.pdf
2020-05-22 17:24 - 2020-05-22 17:24 - 000040785 _____ C:\Users\Home\Desktop\Lohn April.pdf
2020-05-22 17:05 - 2020-05-22 17:05 - 000271711 _____ C:\Users\Home\Downloads\mietstufen-2020.pdf
2020-05-20 15:35 - 2020-05-20 15:35 - 000130198 _____ C:\Users\Home\Downloads\Aushang Hochschule Kempten Pflegekräfte gesucht _20190717.pdf
2020-05-20 15:35 - 2020-05-20 15:35 - 000130198 _____ C:\Users\Home\Downloads\Aushang Hochschule Kempten Pflegekräfte gesucht _20190717(1).pdf
2020-05-20 15:34 - 2020-05-20 15:34 - 000310821 _____ C:\Users\Home\Downloads\Praktikant (m w d) im Bereich HR (1)(2).pdf
2020-05-20 15:20 - 2020-05-20 15:20 - 000097643 _____ C:\Users\Home\Downloads\Lebenslauf Romina Heiss(5).pdf
2020-05-20 13:47 - 2020-05-20 13:47 - 001243212 _____ C:\Users\Home\Downloads\E-Mail-Umleitung_einrichten_mit_OWA(1).pdf
2020-05-20 13:46 - 2020-05-20 13:46 - 001243212 _____ C:\Users\Home\Downloads\E-Mail-Umleitung_einrichten_mit_OWA.pdf
2020-05-20 10:01 - 2020-05-20 10:01 - 001701305 _____ C:\Users\Home\Downloads\Literatur zum Thema Führung.pdf
2020-05-20 10:00 - 2020-05-20 10:00 - 000214471 _____ C:\Users\Home\Downloads\Weiteres Beispiel Inhalte Projektauftrag.pdf
2020-05-20 09:51 - 2020-05-20 09:51 - 000097643 _____ C:\Users\Home\Downloads\Lebenslauf Romina Heiss(4).pdf
2020-05-20 09:29 - 2020-05-20 09:29 - 000664236 _____ C:\Users\Home\Downloads\Transaktionsanalyse_Unternehmen.pdf
2020-05-20 09:29 - 2020-05-20 09:29 - 000121323 _____ C:\Users\Home\Downloads\TA-Übung-Chef_rastet_aus.pdf
2020-05-20 09:29 - 2020-05-20 09:29 - 000104938 _____ C:\Users\Home\Downloads\Übung_TA(2).pdf
2020-05-19 11:34 - 2020-05-19 11:34 - 000022949 _____ C:\Users\Home\Downloads\Excel Übung Noten Studium(1).pdf
2020-05-19 10:23 - 2020-05-19 10:23 - 000097643 _____ C:\Users\Home\Downloads\Lebenslauf Romina Heiss(3).pdf
2020-05-19 10:18 - 2020-05-19 10:18 - 000097643 _____ C:\Users\Home\Downloads\Lebenslauf Romina Heiss(2).pdf
2020-05-19 09:43 - 2020-05-19 09:43 - 000097643 _____ C:\Users\Home\Downloads\Lebenslauf Romina Heiss(1).pdf
2020-05-19 09:21 - 2020-05-19 09:21 - 000026032 _____ C:\Users\Home\Downloads\Excel Übung einfache Rechnung(2).pdf
2020-05-19 09:15 - 2020-05-19 09:15 - 000370592 _____ C:\Users\Home\Downloads\Folien Veranstaltung 1.pdf
2020-05-19 09:15 - 2020-05-19 09:15 - 000138469 _____ C:\Users\Home\Downloads\Klickanleitungen Word.pdf
2020-05-19 09:15 - 2020-05-19 09:15 - 000026032 _____ C:\Users\Home\Downloads\Excel Übung einfache Rechnung(1).pdf
2020-05-19 09:15 - 2020-05-19 09:15 - 000022949 _____ C:\Users\Home\Downloads\Excel Übung Noten Studium.pdf
2020-05-19 09:08 - 2020-05-19 09:08 - 000026032 _____ C:\Users\Home\Downloads\Excel Übung einfache Rechnung.pdf
2020-05-18 10:42 - 2020-05-18 10:42 - 000473836 _____ C:\Users\Home\Downloads\BelegungsplanTVH_Sommer2020.pdf
2020-05-18 07:50 - 2020-05-18 07:50 - 000857461 _____ C:\Users\Home\Downloads\SW STHA Folien 1bis10 So 2020(1).pdf
2020-05-15 00:15 - 2020-05-15 00:15 - 025444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 018029056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 007822888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 007011840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 006291456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 005098352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 003822080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 003513856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 002073176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001637376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001559040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001556200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001539072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2020-05-15 00:15 - 2020-05-15 00:15 - 001417760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001344000 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001343488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001336320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001306112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001151824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001099600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 001034752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000852992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000747832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000540200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000345016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-05-15 00:15 - 2020-05-15 00:15 - 000262848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000139952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityRuntime.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000105840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkspbrokerAx.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSSessionUX.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSa.exe
2020-05-15 00:15 - 2020-05-15 00:15 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-05-15 00:15 - 2020-05-15 00:15 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSaProxy.exe
2020-05-15 00:14 - 2020-05-15 00:15 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-05-15 00:14 - 2020-05-15 00:14 - 025902080 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 022638592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 019851264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 014819328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 009929528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 007902912 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 007267840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 007257816 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 006710272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 006525936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 006435328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 006168576 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 006082808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 005945856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 005757872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 005340568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 005280192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 004858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 004612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 004565456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 003807232 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 003747328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-05-15 00:14 - 2020-05-15 00:14 - 003655680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 003371416 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-05-15 00:14 - 2020-05-15 00:14 - 002854400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002798592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-05-15 00:14 - 2020-05-15 00:14 - 002774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002769000 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-05-15 00:14 - 2020-05-15 00:14 - 002736640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002354688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002259664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002147328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 002072576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001999968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001990576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001975808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001952872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001934824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001825280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001737216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001686016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001665720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001654952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001646552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001510912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001507328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001505592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001461760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001428480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001373184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001370112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001336832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001306424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001288648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001250816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001222656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001218560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001214264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001213440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001184256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001178608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001158144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001150784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001132544 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001085752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 001068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001048480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001023128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001011712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000994304 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000979264 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000975360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000943640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000911872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000896000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000894016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000891544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000881664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000879064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000859944 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000854528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000847872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000847168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2020-05-15 00:14 - 2020-05-15 00:14 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000843576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000801832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000792808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000778552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000777840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000752584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2020-05-15 00:14 - 2020-05-15 00:14 - 000748544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000742200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000716800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000693672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000685368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000683848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000683288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000676072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 000673296 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000672944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-05-15 00:14 - 2020-05-15 00:14 - 000655360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000639400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000602224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000594472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000592944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000581544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000573952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000568136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000564480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000553664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-05-15 00:14 - 2020-05-15 00:14 - 000547992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000543824 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000540160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000539184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000524208 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000523264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.PredictionUnit.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000501200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-05-15 00:14 - 2020-05-15 00:14 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000466344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000460200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-05-15 00:14 - 2020-05-15 00:14 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 000451584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneOm.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000441856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000441584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 000437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-05-15 00:14 - 2020-05-15 00:14 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskApis.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000405424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-05-15 00:14 - 2020-05-15 00:14 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-05-15 00:14 - 2020-05-15 00:14 - 000396800 _____ (Microsoft Corporation)
|
| Themen zu Merkwürdige Anrufe auf s Handy - Datenklau vermutet - Virus auf PC? |
| antivirus, askbar, bonjour, desktop, dsl, excel, firefox, flash player, frage, google, hijack, hijackthis, home, homepage, internet, mozilla, prozesse, realtek, registry, rundll, scan, software, system, usb, virus, webadvisor, windows, windowsapps |
Baum-Darstellung